Skip to content

ci(release): Fix automated release process#545

Open
vishal-bala wants to merge 2 commits intomainfrom
ci/automated-release-fix
Open

ci(release): Fix automated release process#545
vishal-bala wants to merge 2 commits intomainfrom
ci/automated-release-fix

Conversation

@vishal-bala
Copy link
Collaborator

@vishal-bala vishal-bala commented Mar 26, 2026
edited by cursor bot
Loading

Summary

  • Fix the release gate to retry PR association lookup when GitHub briefly lags after a merge, which was causing valid auto:release merges to be skipped
  • Fix release creation by resolving the version once, tagging the bumped commit explicitly, and using auto release for notes instead of re-running auto shipit after the bot commit
  • Publish from the resolved release tag rather than main so the built artifact matches the tagged release commit

Testing

  • Not run (not requested)

Note

Medium Risk
Changes the GitHub Actions release/tagging flow and gating logic; mistakes could cause missed releases, incorrect tags, or publishing the wrong commit, but scope is limited to CI configuration.

Overview
Improves the release gate by retrying PR association lookup for the merge commit before deciding whether the auto:release label is present.

Reworks the release job to resolve the version once, commit the pyproject.toml bump, capture the resulting commit SHA, create/push an explicit vX.Y.Z tag (with safety checks), and generate GitHub release notes via auto release over the exact tag range.

Updates publishing to build from the newly created tag (using the release job’s version output) instead of main, ensuring the published artifact matches the tagged release commit.

Written by Cursor Bugbot for commit 92a754c. This will update automatically on new commits. Configure here.

@jit-ci
Copy link

jit-ci bot commented Mar 26, 2026
edited
Loading

🛡️ Jit Security Scan Results

CRITICAL HIGH MEDIUM

✅ No security findings were detected in this PR

Security scan by Jit

@vishal-bala vishal-bala changed the title fix: harden automated release workflow ci(release): Fix automated release process Mar 26, 2026
@vishal-bala vishal-bala added the auto:ci Updates to CI/CD workflows and processes label Mar 26, 2026
@vishal-bala vishal-bala self-assigned this Mar 26, 2026
@vishal-bala vishal-bala marked this pull request as ready for review March 26, 2026 15:57
chatgpt-codex-connector[bot]
chatgpt-codex-connector bot reviewed Mar 26, 2026
View reviewed changes
Copy link

@chatgpt-codex-connector chatgpt-codex-connector bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

💡 Codex Review

Here are some automated review suggestions for this pull request.

Reviewed commit: b6879b2ac3

ℹ️ About Codex in GitHub

Your team has set up Codex to review pull requests in this repo. Reviews are triggered when you

  • Open a pull request for review
  • Mark a draft as ready
  • Comment "@codex review".

If Codex has suggestions, it will comment; otherwise it will react with 👍.

Codex can also answer questions or update the PR. Try commenting "@codex address that feedback".

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@chatgpt-codex-connector chatgpt-codex-connector[bot] chatgpt-codex-connector[bot] left review comments

At least 1 approving review is required to merge this pull request.

Assignees

@vishal-bala vishal-bala

Labels

auto:ci Updates to CI/CD workflows and processes

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@vishal-bala