feat: add release workflow with beta tag management

[ashwin-ant]

Essentially the same as https://github.com/anthropics/claude-code-base-action/blob/main/.github/workflows/release.yml

• Auto-increment patch version for new releases
• Update beta tag to point to latest release
• Update major version tag (v0) for simplified action usage
• Support dry run mode for testing
• Keep beta as the "latest" release channel

🤖 Generated with Claude Code

[claude]

Claude finished @ashwin-ant's task —— View job

---

PR Review: Release Workflow with Beta Tag Management

Todo List:

• Read and analyze the new release workflow file
• Evaluate GitHub Actions best practices and security
• Check workflow logic and design decisions
• Provide detailed feedback and suggestions
• Complete review summary

---

🔍 Overall Assessment

This is a well-structured release workflow that implements automated version management with beta tag support. The design is solid with good separation of concerns across three jobs.

✅ Strengths

1. Security & Permissions

• Proper use of contents: write permissions (minimal required scope)
• Uses github.token instead of hardcoded tokens
• Bot user configuration follows GitHub best practices

2. Workflow Design

• Clean job separation with appropriate dependencies
• Dry-run mode for testing - excellent for CI/CD safety
• Proper use of workflow outputs for data passing between jobs
• Good conditional logic to skip operations in dry-run mode

3. Git Operations

• Uses fetch-depth: 0 for full history access
• Proper version sorting with sort -V
• Fallback handling for initial releases (v0.0.0)
• Annotated tags with meaningful commit messages

⚠️ Areas for Improvement

1. Error Handling & Robustness

Issue in .github/workflows/release.yml:99-100:

VERSION=$(git tag -l 'v[0-9]*' | sort -V | tail -1)

Problem: If no version tags exist, this could return empty string, causing issues in subsequent steps.
Suggestion: Add fallback logic like in the first job:

VERSION=$(git tag -l 'v[0-9]*' | sort -V | tail -1 || echo "v0.0.0")
if [ -z "$VERSION" ]; then
  VERSION="v0.0.0"
fi

2. Beta Release Assumption

Issue in .github/workflows/release.yml:112:

gh release edit beta --latest

Problem: This assumes a "beta" release already exists. If it doesn't, the command will fail.
Suggestion: Add existence check or create beta release if it doesn't exist:

if gh release view beta >/dev/null 2>&1; then
  gh release edit beta --latest
else
  echo "Beta release doesn't exist, will be created on next beta workflow run"
fi

3. Race Condition Risk

Issue in workflow structure:
Both update-beta-tag and update-major-tag jobs depend on create-release but run in parallel. They both:

• Fetch latest tags from git
• Push force updates to remote

Problem: Potential race condition where both jobs read git state before either writes.
Suggestion: Consider making update-major-tag depend on update-beta-tag completion, or ensure both jobs use the output from create-release job instead of re-querying git.

4. Version Parsing Robustness

Issue in .github/workflows/release.yml:41-48:
The version parsing assumes semantic versioning format but could be more defensive:

# Current approach
version=${latest_tag#v}
IFS='.' read -ra VERSION_PARTS <<< "$version"
major=${VERSION_PARTS[0]:-0}
minor=${VERSION_PARTS[1]:-0}
patch=${VERSION_PARTS[2]:-0}

Suggestion: Add validation for malformed version tags:

if [[ ! "$version" =~ ^[0-9]+\.[0-9]+\.[0-9]+$ ]]; then
  echo "Warning: Invalid version format '$version', using 0.0.0"
  version="0.0.0"
fi

💡 Enhancement Suggestions

1. Add Changelog Generation
Consider adding automatic changelog generation between releases:

- name: Generate changelog
  run: |
    git log --oneline ${{ steps.get_latest_tag.outputs.latest_tag }}..HEAD > CHANGELOG.tmp

2. Release Validation
Add a step to validate the release was created successfully before proceeding to tag updates.

3. Notification Support
Consider adding Slack/Discord notifications for successful releases.

🏗️ Architecture Feedback

Design Decision Analysis:

• Beta as "latest": Good choice for a pre-release action where users want the most recent updates
• Patch auto-increment: Appropriate for automated releases, though consider adding support for manual version bumps
• Force tag updates: Necessary for moving tags, but document this behavior for team awareness
• Job separation: Excellent modularity that allows for future extensions

🔧 Minor Improvements

Code Quality:

1. Line 82: Comment formatting could be improved:

   --latest=false  # Keep beta as the latest release channel

2. Consider extracting the git config setup into a reusable step template to reduce duplication.

📝 Summary

This is a solid implementation that demonstrates good understanding of GitHub Actions patterns and release management. The workflow correctly handles the complex requirements of managing multiple tag types while maintaining beta as the latest release.

Priority fixes:

1. Add error handling for missing version tags in update-beta-tag job
2. Add beta release existence check
3. Consider job dependency ordering to prevent race conditions

Overall recommendation: ✅ Approve with minor fixes - The workflow is production-ready with the suggested error handling improvements.