name: Tests

on:
  push:
    branches: ["**"]
  pull_request:
    branches: ["**"]

jobs:
  test:
    strategy:
      matrix:
        os: [ubuntu-latest, macos-latest, windows-latest]
    runs-on: ${{ matrix.os }}
    steps:
      - uses: actions/checkout@v4
      - uses: actions/setup-python@v5
        with:
          python-version: "3.11"
      - uses: astral-sh/setup-uv@v3
      - name: Install dependencies
        run: uv pip sync --frozen requirements.lock
      - name: Check formatting
        run: uvx black --check .
      - name: Run security audit
        run: |
          uvx pip-audit || echo "::warning::pip-audit found vulnerabilities"
      - name: Run tests with coverage
        run: |
          uv run coverage run -m pytest
          uv run coverage xml
      - name: Upload coverage report
        uses: actions/upload-artifact@v4
        with:
          name: coverage-${{ matrix.os }}
          path: coverage.xml