feat: improve code quality, CI/CD pipelines and health monitoring

- Add GitLab CI support and improve GitHub Actions workflows
- Enhance health.php with SOLID architecture and comprehensive checks
- Fix Dockerfile linting issues and PHPIZE_DEPS build error
- Update TESTING.md with new CI/CD procedures
- Improve Makefile with health monitoring targets

BREAKING CHANGE: Replace docker-publish.yml with test.yml workflow

Author: walmir-silva

.github/workflows/docker-publish.yml

@@ -0,0 +1,124 @@
+name: Test PHP API Stack
+
+on:
+    push:
+        branches: [main, develop]
+    pull_request:
+        branches: [main]
+    workflow_dispatch:
+
+jobs:
+    lint:
+        name: Lint Dockerfile
+        runs-on: ubuntu-latest
+        steps:
+            - uses: actions/checkout@v3
+
+            - name: Run hadolint
+              run: make lint
+
+    build:
+        name: Build Image
+        needs: lint
+        runs-on: ubuntu-latest
+        steps:
+            - uses: actions/checkout@v3
+
+            - name: Build production image
+              run: make build
+
+            - name: Quick component tests
+              run: make test-quick
+
+            - name: Save image
+              run: docker save kariricode/php-api-stack:latest | gzip > image.tar.gz
+
+            - name: Upload artifact
+              uses: actions/upload-artifact@v3
+              with:
+                  name: docker-image
+                  path: image.tar.gz
+
+    test:
+        name: Run Tests
+        needs: build
+        runs-on: ubuntu-latest
+        steps:
+            - uses: actions/checkout@v3
+
+            - name: Download image
+              uses: actions/download-artifact@v3
+              with:
+                  name: docker-image
+
+            - name: Load image
+              run: docker load < image.tar.gz
+
+            - name: Run comprehensive tests
+              run: make test
+
+            - name: Run integration tests
+              run: |
+                  make run
+                  sleep 10
+                  curl -f http://localhost:8080
+                  curl -f http://localhost:8080/health
+                  make stop
+
+    test-health:
+        name: Test Health Checks
+        needs: build
+        runs-on: ubuntu-latest
+        steps:
+            - uses: actions/checkout@v3
+
+            - name: Download image
+              uses: actions/download-artifact@v3
+              with:
+                  name: docker-image
+
+            - name: Load image
+              run: docker load < image.tar.gz
+
+            - name: Build test image
+              run: make build-test-image
+
+            - name: Run test container
+              run: make run-test
+
+            - name: Test comprehensive health check
+              run: |
+                  sleep 10
+                  make test-health
+                  curl -s http://localhost:8080/health.php | jq '.status' | grep -q "healthy"
+
+            - name: Stop test container
+              run: make stop-test
+
+    security:
+        name: Security Scan
+        needs: build
+        runs-on: ubuntu-latest
+        steps:
+            - uses: actions/checkout@v3
+
+            - name: Download image
+              uses: actions/download-artifact@v3
+              with:
+                  name: docker-image
+
+            - name: Load image
+              run: docker load < image.tar.gz
+
+            - name: Run Trivy scan
+              uses: aquasecurity/trivy-action@master
+              with:
+                  image-ref: "kariricode/php-api-stack:latest"
+                  format: "sarif"
+                  output: "trivy-results.sarif"
+                  severity: "CRITICAL,HIGH"
+
+            - name: Upload Trivy results
+              uses: github/codeql-action/upload-sarif@v2
+              with:
+                  sarif_file: "trivy-results.sarif"

.github/workflows/test.yml

@@ -0,0 +1,95 @@
+stages:
+  - lint
+  - build
+  - test
+  - security
+
+variables:
+  DOCKER_DRIVER: overlay2
+  IMAGE_NAME: kariricode/php-api-stack
+
+lint:dockerfile:
+  stage: lint
+  image: hadolint/hadolint:latest
+  script:
+    - hadolint Dockerfile
+  only:
+    - merge_requests
+    - main
+    - develop
+
+build:production:
+  stage: build
+  image: docker:latest
+  services:
+    - docker:dind
+  script:
+    - make build
+    - docker save $IMAGE_NAME:latest | gzip > image.tar.gz
+  artifacts:
+    paths:
+      - image.tar.gz
+      - VERSION
+    expire_in: 1 hour
+
+test:quick:
+  stage: test
+  image: docker:latest
+  services:
+    - docker:dind
+  dependencies:
+    - build:production
+  script:
+    - docker load < image.tar.gz
+    - make test-quick
+
+test:full:
+  stage: test
+  image: docker:latest
+  services:
+    - docker:dind
+  dependencies:
+    - build:production
+  script:
+    - docker load < image.tar.gz
+    - make test
+
+test:integration:
+  stage: test
+  image: docker:latest
+  services:
+    - docker:dind
+  dependencies:
+    - build:production
+  script:
+    - docker load < image.tar.gz
+    - make run
+    - sleep 10
+    - curl -f http://localhost:8080
+    - curl -f http://localhost:8080/health
+    - make stop
+
+test:health:
+  stage: test
+  image: docker:latest
+  services:
+    - docker:dind
+  dependencies:
+    - build:production
+  script:
+    - docker load < image.tar.gz
+    - make build-test-image
+    - make run-test
+    - sleep 10
+    - make test-health
+    - make stop-test
+
+security:trivy:
+  stage: security
+  image: aquasec/trivy:latest
+  dependencies:
+    - build:production
+  script:
+    - docker load < image.tar.gz
+    - trivy image --severity HIGH,CRITICAL --exit-code 1 $IMAGE_NAME:latest
+  allow_failure: false