Prepare repo for v1.0.0 release

[lukekim]

Summary

Final v1.0.0 release-prep on top of trunk. (PR #7 — the CI fix — already landed; this PR now contains only the action-UX and docs polish from #8, rebased clean.)

Action UX

• tags input now accepts a YAML block mapping (the canonical workflow form) or a JSON object string, instead of the prior multi-line KEY=VALUE format. Tag keys still merge into the app's existing tags on every run.

  with:
    tags: |
      environment: production
      team: data-platform
      commit: \${{ github.sha }}

• Update action.yml description, README, and example workflows to the new tag form.

Docs

• Correct the GitHub slug from spiceai/spice-cloud-deploy-action → spicehq/spice-cloud-deploy-action everywhere it appeared (README badges + examples, package.json metadata, examples/), so a copy/pasted uses: line resolves to the published action at v1.
• Replace the duplicated tail-of-document "Required scopes" table with a single "Scope cheat sheet" right under the OAuth client setup steps, including an "All-in (recommended for a single CI client)" row that spells out which scopes to grant.

Tests

• New parseTags cases cover the YAML form, JSON form, quoted values, duplicates, and validation errors.
• Total: 70 unit tests, all green; lint, typecheck, build, and dist/ freshness all clean. npm audit reports 0 vulnerabilities.

Test plan

• npm run all passes locally.
• CI on this PR is green across Ubuntu/macOS/Windows.
• After merge: tag v1.0.0, confirm the release workflow moves the floating v1 tag and creates the GitHub release with the changelog body.

Out of scope

• ESM migration of @actions/core (tracked separately; pinned at v1).
• Marketplace listing submission (post-tag).

[Copilot]

Pull request overview

Prepares the repository for the v1.0.0 release by unblocking CI/build (Biome v2 config + pinning @actions/core to a CJS-compatible major), improving action UX (tags input now accepts YAML/JSON maps), and polishing docs/examples to match the v1 release slug and clarified OAuth scope guidance.

Changes:

• Migrate tags input from multiline KEY=VALUE to YAML block-map (recommended) or JSON object; add/adjust unit tests accordingly.
• Update docs/examples/metadata to use the correct GitHub slug (spicehq/...) and revise OAuth scope documentation.
• Update tooling/config: Biome v2 schema migration + pin @actions/core to ^1.11.1 with Dependabot major-bump ignore.

Reviewed changes

Copilot reviewed 10 out of 12 changed files in this pull request and generated 3 comments.

Show a summary per file

File	Description
src/tags.ts	Implements new YAML/JSON tags parsing and validation logic.
src/deploy.ts	Import reordering (Biome organizer).
package.json	Fix repository URLs and pin @actions/core to v1.x for CJS compatibility.
package-lock.json	Locks dependency tree to @actions/core@1.11.1 and related transitive deps.
examples/full.yml	Updates uses: slug and switches tags to YAML map form.
examples/basic.yml	Updates uses: slug.
biome.json	Migrates config to Biome 2.x schema/keys.
action.yml	Updates tags input docs/examples to YAML/JSON map format.
__tests__/tags.test.ts	Adds coverage for YAML map and JSON object forms + validation cases.
__tests__/deploy.test.ts	Updates deploy test to the new tags YAML form.
README.md	Updates repo slug, tags docs, and consolidates OAuth scopes into a “Scope cheat sheet”.
CHANGELOG.md	Notes new tags input formats for the initial release.
.github/workflows/test-action.yml	Updates workflow to new tags YAML map form.
.github/dependabot.yml	Ignores @actions/core semver-major updates until ESM migration.

---

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.