ci(release): add automated release workflows with OIDC npm publishing#2
ci(release): add automated release workflows with OIDC npm publishing#2
Conversation
- Add release-pr.yml for automated release PR creation - Add release-publish.yml for npm publish on PR merge - Pin checkout to merge commit SHA to prevent race condition - Normalize commit message case in changelog generation - Add TODO for prerelease version handling - Document CHANGELOG single-line header assumption - Update RELEASE.md with automation instructions Signed-off-by: assagman <[email protected]>
Summary of ChangesHello @assagman, I'm Gemini Code Assist1! I'm currently reviewing this pull request and will post my feedback shortly. In the meantime, here's a summary to help you and other reviewers quickly get up to speed! This pull request establishes a comprehensive, automated release pipeline for the project using GitHub Actions. It automates the entire release lifecycle from version determination and release PR creation to secure, token-less publishing to npm via OIDC, significantly streamlining the release process and reducing manual intervention. Highlights
Ignored Files
Using Gemini Code AssistThe full guide for Gemini Code Assist can be found on our documentation page, here are some quick tips. Invoking Gemini You can request assistance from Gemini at any point by creating a comment using either
Customization To customize Gemini Code Assist for GitHub experience, repository maintainers can create a configuration file and/or provide a custom code review style guide (such as PEP-8 for Python) by creating and adding files to a Limitations & Feedback Gemini Code Assist may make mistakes. Please leave feedback on any instances where its feedback is incorrect or counter productive. You can react with 👍 and 👎 on @gemini-code-assist comments. If you're interested in giving your feedback about your experience with Gemini Code Assist for Github and other Google products, sign up here. You can also get AI-powered code generation, chat, as well as code reviews directly in the IDE at no cost with the Gemini Code Assist IDE Extension. Footnotes
|
![gemini-code-assist[bot]](https://avatars.githubusercontent.com/in/956858?s=60&v=4){kind=small}
There was a problem hiding this comment.
Code Review
This pull request introduces an excellent automated release process using GitHub Actions and thoroughly updates the RELEASE.md documentation. The new process is well-documented with a clear overview, step-by-step instructions, and helpful troubleshooting information. My review includes a couple of suggestions to improve the robustness of the commands in the manual fallback and troubleshooting sections of the new documentation. Specifically, I've recommended using npm version for version bumping and improving the tag deletion command. Overall, this is a significant improvement to the project's release infrastructure.
There was a problem hiding this comment.
Pull request overview
This PR introduces a fully automated release workflow using GitHub Actions to create release PRs with version bumping and publish to npm via OIDC trusted publisher authentication, eliminating the need for manual token management.
Changes:
- Added
release-pr.ymlworkflow to automate release branch creation with version bumping based on conventional commits - Added
release-publish.ymlworkflow to automatically publish releases on PR merge with git tags, GitHub releases, and npm publishing - Completely rewrote RELEASE.md documentation with detailed automated process instructions and troubleshooting guide
Reviewed changes
Copilot reviewed 3 out of 3 changed files in this pull request and generated 8 comments.
| File | Description |
|---|---|
.github/workflows/release-pr.yml |
Workflow to create release PRs with automated version determination and changelog generation |
.github/workflows/release-publish.yml |
Workflow to publish releases with OIDC npm authentication upon PR merge |
RELEASE.md |
Updated documentation describing the new automated release process, prerequisites, and troubleshooting |
💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.
Signed-off-by: assagman <[email protected]>
- Add prerelease version validation with clear error message - Fix CHANGELOG header preservation for multi-line headers - Fix misleading comment for 'Other changes' section Signed-off-by: assagman <[email protected]>
- Fix previous tag detection using --exclude instead of HEAD^ - Add npm publish idempotency check to handle re-runs Signed-off-by: assagman <[email protected]>
There was a problem hiding this comment.
Pull request overview
Copilot reviewed 3 out of 3 changed files in this pull request and generated 6 comments.
💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.
1 participant
Summary
Adds fully automated release process using GitHub Actions. Creates release PRs
with automatic version bumping and publishes to npm via OIDC trusted publisher
(no tokens required).
Changes
New Workflows
release-pr.yml: Manual dispatch to create release branches and PRsreleaselabelrelease-publish.yml: Triggers on release PR mergeDocumentation
Breaking Changes
None
Testing
Checklist