Skip to content

chore: release workflow (tag-triggered, SBOM, GH Release publish)#53

Merged
constk merged 1 commit into
developfrom
feat/13-release
Apr 26, 2026
Merged

chore: release workflow (tag-triggered, SBOM, GH Release publish)#53
constk merged 1 commit into
developfrom
feat/13-release

Conversation

@constk
Copy link
Copy Markdown
Owner

@constk constk commented Apr 26, 2026

Closes #13. Tag-triggered (v*..) workflow: build image with version+latest tags, push to GHCR via GITHUB_TOKEN, generate CycloneDX SBOM, promote release-drafter draft (or create release with auto-generated notes), attach SBOM JSON to the release.

@constk @claude
chore: release workflow (tag-triggered, SBOM, GH Release publish) (#13)
c196f9a 
Port .github/workflows/release.yml from Teller; bump python-version to 3.14,
update setup-uv pin to v8 commit, checkout pin to v4 latest. Add a docker
login + push pair so the built image lands at
ghcr.io/<owner>/<repo>:<version> AND :latest (acceptance criterion: image
must publish to GHCR). Compute the lowercase repo path via parameter
expansion since GHCR rejects mixed-case path components.

Permissions: contents:write + packages:write. SBOM pinned to
cyclonedx-bom==7.3.0 in a uvx venv so the generator itself doesn't end up
in the SBOM. Sanity-check the JSON before upload.

Closes #13

Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
@constk constk merged commit 6bafc1d into develop Apr 26, 2026
@constk constk deleted the feat/13-release branch April 26, 2026 17:17
@constk constk mentioned this pull request Apr 26, 2026
Closed
4 tasks
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@constk