Revert "feat: release v0.2.0 (#309)" (#311) #2

Workflow file for this run

.github/workflows/create-release-tag.yml at f3b17cf

	# Create Release Tag workflow
	#
	# Triggered when the VERSION file changes on main (typically via merged release PR).
	# This workflow:
	# 1. Validates the VERSION file contains valid semver
	# 2. Verifies the commit message matches release pattern (to prevent accidental tags)
	# 3. Creates a git tag (v*) and GitHub Release
	#
	# The tag push then triggers (via `on: push: tags: ["v*"]`):
	# - docker-publish.yml (builds and pushes Docker image)
	# - releaser-helm-chart.yml (packages and publishes Helm chart)
	#

	name: Create Release Tag

	on:
	push:
	branches:
	- main
	paths:
	- "VERSION"

	permissions:
	contents: write

	jobs:
	create-tag:
	runs-on: ubuntu-latest
	steps:
	- name: Checkout
	uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
	with:
	fetch-depth: 0

	- name: Read version
	id: version
	run: \|
	VERSION=$(cat VERSION \| tr -d '[:space:]')
	if ! [[ "$VERSION" =~ ^[0-9]+\.[0-9]+\.[0-9]+$ ]]; then
	echo "Error: VERSION file does not contain valid semver: $VERSION"
	exit 1
	fi
	echo "version=$VERSION" >> $GITHUB_OUTPUT
	echo "Read version: $VERSION"

	- name: Verify release PR
	id: verify
	run: \|
	VERSION="${{ steps.version.outputs.version }}"

	# Get commit details
	COMMIT_MSG=$(git log -1 --pretty=%s)
	COMMIT_SHA=$(git rev-parse HEAD)

	echo "Commit SHA: $COMMIT_SHA"
	echo "Commit message: $COMMIT_MSG"
	echo ""

	# Track verification status
	VERIFIED=true

	# Check 1: Verify commit message contains release version pattern
	# Squash merge: "Release v1.0.0 (#123)" or "feat: release v1.0.0 (#123)"
	# Merge commit: "Merge pull request #123 from user/release/v1.0.0"
	# Direct: "Release v1.0.0"
	if [[ "$COMMIT_MSG" =~ (^\|[^a-zA-Z])[Rr]elease\ v[0-9]+\.[0-9]+\.[0-9]+ ]] \|\| \
	[[ "$COMMIT_MSG" =~ release/v[0-9]+\.[0-9]+\.[0-9]+ ]]; then
	echo "✅ Commit message matches release pattern"
	echo "message_verified=true" >> $GITHUB_OUTPUT
	else
	echo "❌ Commit message does not match release pattern"
	echo "Expected: 'Release v{semver}' or merge from 'release/v{semver}'"
	echo "Got: '$COMMIT_MSG'"
	echo "message_verified=false" >> $GITHUB_OUTPUT
	VERIFIED=false
	fi

	# Check 2: Verify the version in commit message matches VERSION file
	if [[ "$COMMIT_MSG" =~ v${VERSION} ]]; then
	echo "✅ VERSION file matches version in commit message"
	echo "version_match=true" >> $GITHUB_OUTPUT
	else
	echo "❌ VERSION file does not match version in commit message"
	echo "VERSION file: $VERSION"
	echo "Commit message: $COMMIT_MSG"
	echo "version_match=false" >> $GITHUB_OUTPUT
	VERIFIED=false
	fi

	echo ""
	if [ "$VERIFIED" = true ]; then
	echo "✅ All verification checks passed"
	echo "verified=true" >> $GITHUB_OUTPUT
	else
	echo "❌ Verification failed"
	echo ""
	echo "This could indicate:"
	echo " - A manual VERSION file edit (not via release PR)"
	echo " - An unexpected commit message format"
	echo ""
	echo "Blocking release. Please investigate."
	echo "verified=false" >> $GITHUB_OUTPUT
	exit 1
	fi

	- name: Check if tag exists
	id: check-tag
	run: \|
	TAG="v${{ steps.version.outputs.version }}"
	if git rev-parse "$TAG" >/dev/null 2>&1; then
	echo "Tag $TAG already exists"
	echo "exists=true" >> $GITHUB_OUTPUT
	else
	echo "Tag $TAG does not exist"
	echo "exists=false" >> $GITHUB_OUTPUT
	fi

	- name: Create tag and GitHub Release
	if: steps.check-tag.outputs.exists == 'false'
	run: \|
	TAG="v${{ steps.version.outputs.version }}"
	git config user.name "github-actions[bot]"
	git config user.email "github-actions[bot]@users.noreply.github.com"
	git tag -a "$TAG" -m "Release $TAG"
	git push https://x-access-token:${GH_TOKEN}@github.com/${{ github.repository }}.git "$TAG"
	echo "Created and pushed tag: $TAG"

	# Create GitHub Release (triggers docker-publish.yml and releaser-helm-chart.yml)
	# Note: Must use PAT (GH_TOKEN) because GITHUB_TOKEN cannot trigger other workflows
	gh release create "$TAG" \
	--title "Release $TAG" \
	--generate-notes
	echo "Created GitHub Release: $TAG"
	env:
	GH_TOKEN: ${{ secrets.RELEASE_TOKEN }}

	- name: Summary
	run: \|
	TAG="v${{ steps.version.outputs.version }}"
	if [ "${{ steps.check-tag.outputs.exists }}" == "true" ]; then
	echo "## Tag Already Exists" >> $GITHUB_STEP_SUMMARY
	echo "" >> $GITHUB_STEP_SUMMARY
	echo "Tag \`$TAG\` already exists. No action taken." >> $GITHUB_STEP_SUMMARY
	else
	echo "## Release Tag Created" >> $GITHUB_STEP_SUMMARY
	echo "" >> $GITHUB_STEP_SUMMARY
	echo "- Tag: \`$TAG\`" >> $GITHUB_STEP_SUMMARY
	echo "- Release URL: https://github.com/${{ github.repository }}/releases/tag/$TAG" >> $GITHUB_STEP_SUMMARY
	fi

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Revert "feat: release v0.2.0 (#309)" (#311) #2

Workflow file

Revert "feat: release v0.2.0 (#309)" (#311) #2

Uh oh!

Workflow file for this run