Skip to content

Release Process

This document describes the automated release process for router-hosts using release-please and GoReleaser.

Overview

  1. Push commits to main using Conventional Commits format
  2. release-please creates a Release PR with version bumps and changelog updates
  3. Merge the Release PR to trigger the release
  4. GoReleaser builds and publishes cross-platform binaries and Docker images
  5. docs.yml deploys updated documentation

Release Pipeline

Workflows

Workflow Trigger Purpose
release-please.yml Push to main Creates/updates release PR, pushes version tag on merge
release.yml Tag push (v*) Runs GoReleaser to build binaries and Docker images
docs.yml After release.yml completes Deploys documentation to Cloudflare Pages

What GoReleaser Produces

Artifact Platforms Description
router-hosts binary linux/darwin (amd64, arm64) Server + client CLI
operator binary linux (amd64, arm64) Kubernetes operator
Docker image linux (amd64, arm64) Multi-arch image at ghcr.io/fzymgc-house/router-hosts
Checksums - SHA256 checksums for all archives

Docker images are tagged with both the version (v0.9.0) and latest.

Conventional Commits

All commits to main must use Conventional Commits format. This enables:

  • Automatic version determination (major/minor/patch)
  • Automatic changelog generation
  • Pre-commit validation via cocogitto

Commit Format

<type>(<scope>): <subject>

<body>

<footer>

Version Bump Rules

Commit Type Version Bump Example
feat!: or BREAKING CHANGE: Major (0.x → 1.0) API breaking change
feat: Minor (0.8.0 → 0.9.0) New feature
fix:, perf: Patch (0.8.0 → 0.8.1) Bug fix, performance
docs:, refactor:, test:, ci:, chore: No bump Internal changes

Commit Validation

Commit messages are validated automatically via lefthook:

# Install lefthook hooks
brew install lefthook
lefthook install

If your commit message doesn't follow the format, the commit will be rejected with guidance.

Prerequisites

The commit message validation requires cocogitto:

# Install cocogitto (macOS)
brew install cocogitto

Creating a Release

Standard Release Flow

  1. Push conventional commits to main
git commit -m "feat(server): add metrics endpoint"
git push origin main
  1. Wait for Release PR
  2. release-please.yml workflow runs automatically
  3. Creates/updates PR titled "chore(main): release router-hosts X.Y.Z"

  4. PR contains version bumps and changelog updates

  5. Review the Release PR

  6. Verify changelog entries are accurate

  7. Confirm version bump is correct (major/minor/patch)

  8. Merge the Release PR

  9. Merging pushes the version tag (e.g., v0.9.0)

  10. Tag push triggers release.yml

  11. GoReleaser builds artifacts

  12. Cross-compiles binaries for all platforms
  13. Builds and pushes multi-arch Docker images to GHCR
  14. Creates GitHub Release with binary archives and checksums
  15. docs.yml triggers after release completes

Version Files

release-please automatically updates these files:

File Fields Updated
CHANGELOG.md New release section

Required GitHub Secrets

The following secrets must be configured in the repository:

Release Secrets

  • RELEASE_PLEASE_APP_ID: GitHub App ID for release-please authentication
  • The GitHub App must have contents: write and pull-requests: write permissions

  • Using a GitHub App allows the release PR merge to trigger downstream workflows

  • RELEASE_PLEASE_PRIVATE_KEY: GitHub App private key (PEM format)

  • Generate in the GitHub App settings

Documentation Deployment Secrets

For automated documentation deployment to Cloudflare Pages:

  • CLOUDFLARE_ACCOUNT_ID: Cloudflare account identifier
  • Find at: Cloudflare Dashboard → Account Home → right sidebar
  • CLOUDFLARE_PAGES_ACCOUNT_API: API token with Pages deployment permission
  • Create at: Cloudflare Dashboard → My Profile → API Tokens → Create Token
  • Use template: "Edit Cloudflare Pages"
  • Or custom token with: Zone:Read, Account:Cloudflare Pages:Edit

Documentation Setup

Create a Cloudflare Pages project before the first release:

  1. Go to Cloudflare Dashboard → Workers & Pages → Create
  2. Select "Pages" → "Direct Upload" (not Git connection)
  3. Name the project: router-hosts-docs
  4. The docs workflow will deploy using Wrangler

Post-Release Verification

After the release workflow completes:

# 1. Verify GitHub Release was created
gh release view v0.9.0

# 2. Download and test binary
gh release download v0.9.0
./router-hosts --help

# 3. Verify Docker image
docker pull ghcr.io/fzymgc-house/router-hosts:0.9.0
docker run --rm ghcr.io/fzymgc-house/router-hosts:0.9.0 --help

Release Tag Format

release-please uses semantic versioning with v prefix:

  • v0.9.0 - Standard release
  • v0.9.1-rc.1 - Pre-release (marked as prerelease in GitHub)

GoReleaser Configuration

The .goreleaser.yml file defines:

  • Builds: Cross-platform compilation for router-hosts and operator
  • Archives: tar.gz archives per OS/arch
  • Docker: Multi-arch images using Dockerfile.goreleaser (copies pre-built binaries)
  • Changelog: Disabled (release-please generates changelogs)

To test the GoReleaser configuration locally:

# Dry run (no publish)
goreleaser release --snapshot --clean

# Check config validity
goreleaser check

Workflow Configuration

release-please.yml

Creates/updates release PRs and pushes tags when merged. Configuration in release-please-config.json.

release.yml

Triggered by tag push. Runs GoReleaser with Docker Buildx and QEMU for multi-arch builds.

docs.yml

Triggered after release.yml completes. Downloads the release binary and builds documentation.

Rollback

If a release has issues:

  1. Don't delete the release - users may have already downloaded it
  2. Create a new patch release with the fix (e.g., v0.9.1)
  3. Add a note to the problematic release warning users
  4. If critical security issue:
  5. Create hotfix immediately
  6. Consider yanking the vulnerable release (rare)

Troubleshooting

Release PR not created

  1. Check that commits use Conventional Commits format
  2. Verify release-please.yml workflow ran successfully
  3. Look for existing release PR that needs updating
  4. Check GitHub App permissions (needs contents: write and pull-requests: write)

Version not bumping

  • Commits like docs:, chore:, ci: don't trigger version bumps
  • Use feat: for new features, fix: for bug fixes

GitHub App token issues

If the release PR doesn't trigger downstream workflows:

  1. Verify GitHub App has correct permissions
  2. Check that secrets RELEASE_PLEASE_APP_ID and RELEASE_PLEASE_PRIVATE_KEY are set
  3. Ensure the App is installed on the repository

GoReleaser build failures

  1. Check that go.mod and go.sum are up to date
  2. Verify CGO_ENABLED=0 builds pass locally: CGO_ENABLED=0 go build ./cmd/router-hosts
  3. Run goreleaser check to validate configuration
  4. Check Docker Buildx is available: docker buildx version