fix: comprehensive CI/CD improvements and test infrastructure overhaul (#2)

## Summary

This PR contains a comprehensive overhaul of the CI/CD pipeline and test
infrastructure, including security improvements, test stability fixes,
and new features. With 44 files changed, adding 1,265 lines and removing
392 lines across 37 commits.

## Major Changes

### 🔒 Security Enhancements
- **GitHub Actions Security**: Pinned all GitHub Actions to commit SHAs
instead of version tags to prevent supply chain attacks
- **Pre-commit Hooks**: Added comprehensive security scanning with
TruffleHog for secret detection

### 🏗️ CI/CD Infrastructure Improvements
- **Modularized CI Workflow**: Extracted reusable workflows to
`.github/workflows/reusable/` directory
- **Added Validation Scripts**: Created shell scripts for various
validation checks:
  - `check-case-conflicts.sh` - Prevents file naming conflicts
  - `check-line-endings.sh` - Ensures consistent line endings
  - `check-merge-conflicts.sh` - Detects merge conflict markers
  - `check-trailing-whitespace.sh` - Removes trailing whitespace
- `validate-json.sh` & `validate-yaml.sh` - Configuration file
validation
- **CI Status Monitoring**: Added scripts for CI status checks and PR
comment generation
- **Pre-commit Workflow**: New comprehensive pre-commit workflow with
security, validation, and conventional commits checks

### ✅ Test Infrastructure Improvements
- **Test Database Setup**: Major overhaul of
`scripts/prepare-test-db.sh`:
- Updated to use `api_keys` table (was `api_tokens`) for consistency
with schema changes
  - Improved reliability with better wait conditions and error handling
- Added automatic pocket-id binary download with OS/architecture
detection
  - Enhanced logging and debugging capabilities
- **Test Isolation**: Fixed test naming conflicts by using random
prefixes (`acctest.RandomWithPrefix`)
- **Terraform Compatibility Testing**: Added matrix testing across
Terraform versions 1.5.7, 1.6.6, 1.7.5, 1.8.5, and 1.9.8

### 🚀 New Features
- **User Data Source Enhancement**: Added username lookup support to the
user data source
- **Client-side Validation**: Added comprehensive validation to all
resources:
  - URL validation for callback URLs
  - Email format validation
  - String length constraints
  - Required field validation

### 📝 Documentation Updates
- Updated provider examples to remove version constraints
- Enhanced user data source documentation with username lookup examples
- Added markdownlint configuration (`.markdownlint.json`) for consistent
documentation

### 🐛 Bug Fixes
- Fixed API limitation handling for user disabled field
- Resolved test environment setup issues with absolute paths
- Fixed test failures due to naming conflicts
- Corrected validation error messages to match expectations
- Fixed CI workflow permission issues

### 🧪 Test Improvements
- Enhanced test coverage with better assertions
- Added random naming to prevent test conflicts
- Improved test reliability with proper environment setup
- Fixed groups data source test to handle dynamic group counts

## Files Changed (44 files)

**CI/CD Workflows (12 files)**:
- `.github/workflows/ci.yml`
- `.github/workflows/pre-commit.yml`
- `.github/workflows/reusable/*.yml` (10 files)

**Scripts (11 files)**:
- `scripts/prepare-test-db.sh` - Test database setup
- `scripts/ci-status-check.sh` - CI status monitoring
- `scripts/generate-ci-comment.sh` - PR comment generation
- `scripts/validation/*.sh` (7 validation scripts)

**Source Code (11 files)**:
- Resource validation improvements in `internal/resources/`
- Test improvements in `internal/provider/`
- Data source enhancements in `internal/datasources/`

**Configuration & Documentation (10 files)**:
- `.markdownlint.json` - Markdown linting rules
- `.pre-commit-config.yaml` - Pre-commit hook configuration
- Documentation templates and examples

## Testing

All tests are passing:
- ✅ Unit tests
- ✅ Integration tests  
- ✅ Acceptance tests
- ✅ Terraform compatibility tests (5 versions)
- ✅ Pre-commit checks

Author: Trozz

.github/ISSUE_TEMPLATE/breaking_change.md

@@ -0,0 +1,52 @@
+---
+name: Breaking Change Proposal
+about: Propose a breaking change for a future major version
+title: '[BREAKING] '
+labels: 'breaking-change, needs-discussion'
+assignees: ''
+
+---
+
+## Breaking Change Summary
+
+A clear and concise description of the proposed breaking change.
+
+## Motivation
+
+Why is this breaking change necessary? What problems does it solve that cannot be addressed in a backward-compatible way?
+
+## Current Behavior
+
+Describe how the provider currently works in this area.
+
+## Proposed Behavior
+
+Describe how the provider would work after this change.
+
+## Migration Path
+
+How would users migrate from the current behavior to the new behavior? Please provide:
+
+- Clear migration steps
+- Example configurations (before and after)
+- Any tools or scripts that could help with migration
+
+## Impact Assessment
+
+- Which resources/data sources are affected?
+- Approximately how many users might be impacted?
+- What is the severity of the breaking change (minor adjustment vs. major refactoring)?
+
+## Alternatives Considered
+
+What alternatives have you considered that would not require a breaking change?
+
+## Target Version
+
+Which major version should include this breaking change? (e.g., v1.0.0, v2.0.0)
+
+## Community Note
+
+- Breaking changes require careful consideration and community input
+- Please vote on this issue by adding a 👍 reaction
+- Join the discussion to share your thoughts on the proposal

.github/ISSUE_TEMPLATE/bug_report.md

@@ -0,0 +1,64 @@
+---
+name: Bug Report
+about: Create a report to help us improve
+title: '[BUG] '
+labels: 'bug, needs-triage'
+assignees: ''
+
+---
+
+## Bug Description
+
+A clear and concise description of what the bug is.
+
+## Terraform Version
+
+Run `terraform -v` to show the version. If you are not running the latest version of Terraform, please upgrade because your issue may have already been fixed.
+
+## Provider Version
+
+If you are not running the latest version of the provider, please upgrade because your issue may have already been fixed.
+
+## Affected Resource(s)
+
+Please list the resources as a list, for example:
+
+- pocketid_user
+- pocketid_group
+
+If this issue appears to affect multiple resources, it may be an issue with Terraform's core, so please mention this.
+
+## Terraform Configuration Files
+
+```hcl
+# Copy-paste your Terraform configuration here.
+# Please remove any sensitive information like API keys.
+```
+
+## Debug Output
+
+Please provide a link to a GitHub Gist containing the complete debug output: <https://www.terraform.io/docs/internals/debugging.html>. Please do NOT paste the debug output in the issue; just paste a link to the Gist.
+
+## Expected Behavior
+
+What should have happened?
+
+## Actual Behavior
+
+What actually happened?
+
+## Steps to Reproduce
+
+Please list the steps required to reproduce the issue, for example:
+
+1. `terraform apply`
+
+## Important Factoids
+
+Are there anything atypical about your accounts that we should know? For example: Running in a VPN environment, using a proxy, etc.
+
+## References
+
+Are there any other GitHub issues (open or closed) or Pull Requests that should be linked here? For example:
+
+- #0000

.github/ISSUE_TEMPLATE/config.yml

@@ -0,0 +1,14 @@
+blank_issues_enabled: false
+contact_links:
+  - name: Security Vulnerability
+    url: mailto:security@leer.dev
+    about: Please report security vulnerabilities via email instead of GitHub issues
+  - name: Terraform Provider Registry
+    url: https://registry.terraform.io/providers/trozz/pocketid/latest
+    about: View the provider documentation on the Terraform Registry
+  - name: Community Discussion
+    url: https://github.com/trozz/terraform-provider-pocketid/discussions
+    about: Ask questions and discuss ideas with the community
+  - name: Provider Development Guide
+    url: https://developer.hashicorp.com/terraform/plugin/sdkv2
+    about: Learn how to contribute to Terraform provider development

.github/ISSUE_TEMPLATE/documentation.md

@@ -0,0 +1,37 @@
+---
+name: Documentation Issue
+about: Report issues or improvements needed in documentation
+title: '[DOCS] '
+labels: 'documentation, good first issue'
+assignees: ''
+
+---
+
+## Documentation Location
+
+Please provide a link to the documentation page or file that needs improvement.
+
+## Current Documentation
+
+What does the documentation currently say? Please quote the relevant section if applicable.
+
+## Issue Description
+
+Please describe what is wrong, unclear, or missing in the documentation.
+
+## Suggested Improvement
+
+How would you improve this documentation? Please provide specific suggestions or even a draft of the improved text.
+
+## Additional Context
+
+Add any other context about the documentation issue here. For example:
+
+- Did this cause confusion when trying to use the provider?
+- Are there missing examples?
+- Is the information outdated?
+
+## Community Note
+
+- Please vote on this issue by adding a 👍 reaction to the original issue to help the community and maintainers prioritize this request
+- Documentation improvements are often good first issues for new contributors!

.github/ISSUE_TEMPLATE/feature_request.md

@@ -0,0 +1,41 @@
+---
+name: Feature Request
+about: Suggest an idea for this project
+title: '[FEATURE] '
+labels: 'enhancement, needs-triage'
+assignees: ''
+
+---
+
+## Is your feature request related to a problem? Please describe
+
+A clear and concise description of what the problem is. Ex. I'm always frustrated when [...]
+
+## Describe the solution you'd like
+
+A clear and concise description of what you want to happen.
+
+## Describe alternatives you've considered
+
+A clear and concise description of any alternative solutions or features you've considered.
+
+## Additional context
+
+Add any other context or screenshots about the feature request here.
+
+## Terraform Configuration
+
+If applicable, please provide a sample Terraform configuration that demonstrates the desired functionality:
+
+```hcl
+# Example of how you'd like to use this feature
+resource "pocketid_example" "this" {
+  # proposed configuration
+}
+```
+
+## Community Note
+
+- Please vote on this issue by adding a 👍 reaction to the original issue to help the community and maintainers prioritize this request
+- Please do not leave "+1" or "me too" comments, they generate extra noise for issue followers and do not help prioritize the request
+- If you are interested in working on this issue or have submitted a pull request, please leave a comment

.github/ISSUE_TEMPLATE/provider_crash.md

@@ -0,0 +1,58 @@
+---
+name: Provider Crash Report
+about: Report a provider crash or panic
+title: '[CRASH] '
+labels: 'bug, crash, priority-high'
+assignees: ''
+
+---
+
+## Crash Summary
+
+Brief description of what you were doing when the provider crashed.
+
+## Terraform Version
+
+Run `terraform -v` to show the version.
+
+## Provider Version
+
+Version of terraform-provider-pocketid that crashed.
+
+## Terraform Configuration
+
+```hcl
+# Minimal configuration that reproduces the crash
+# Please remove any sensitive information
+```
+
+## Crash Output
+
+```
+# Please paste the full panic output here
+# This typically starts with "panic:" and includes a stack trace
+```
+
+## Steps to Reproduce
+
+1.
+2.
+3.
+
+## Debug Logs
+
+Please provide a link to a GitHub Gist containing the complete debug output leading up to the crash: <https://www.terraform.io/docs/internals/debugging.html>
+
+## Environment Details
+
+- Operating System:
+- Architecture (x86_64, arm64, etc.):
+- Any special network configuration (proxy, VPN, etc.):
+
+## Workaround
+
+Have you found any way to avoid the crash? If so, please describe.
+
+## Note
+
+Provider crashes are high-priority issues. We'll investigate as soon as possible.

.github/ISSUE_TEMPLATE/question.md

@@ -0,0 +1,42 @@
+---
+name: Question
+about: Ask a question about using the provider
+title: '[QUESTION] '
+labels: 'question'
+assignees: ''
+
+---
+
+## Question
+
+A clear and concise description of your question.
+
+## Terraform Version
+
+Output of `terraform -v`:
+
+## Provider Version
+
+Version of terraform-provider-pocketid:
+
+## What I'm Trying to Achieve
+
+Describe what you're trying to accomplish. This helps us provide better guidance.
+
+## What I've Tried
+
+Please describe what you've already attempted, including:
+
+- Terraform configuration snippets
+- Any error messages you've encountered
+- Documentation or examples you've referenced
+
+## Additional Context
+
+Add any other context about your question here.
+
+## Note
+
+- For general Terraform questions unrelated to this provider, please visit the [Terraform Community Forum](https://discuss.hashicorp.com/c/terraform-core)
+- Consider checking existing issues and discussions before posting
+- If this turns out to be a bug, we'll convert it to a bug report

.github/ISSUE_TEMPLATE/security_vulnerability.md

@@ -0,0 +1,25 @@
+---
+name: Security Vulnerability
+about: Please report security vulnerabilities via email to security@leer.dev
+title: ''
+labels: ''
+assignees: ''
+
+---
+
+## STOP
+
+Please do NOT create a public issue for security vulnerabilities.
+
+Instead, please report security issues by emailing: <security@leer.dev>
+
+Include:
+
+- Description of the vulnerability
+- Steps to reproduce
+- Potential impact
+- Any suggested fixes
+
+We will respond within 48 hours and work with you to understand and address the issue responsibly.
+
+Thank you for helping keep terraform-provider-pocketid secure!