devopsfactory-io/release-and-versioning
.claude/skills/release-and-versioning/SKILL.md
Cuts a new release with semantic versioning and GoReleaser. Use when the user wants to release a new version, tag a release, or understand release workflow.
$ install --global
skillsauthnpx skillsauth add devopsfactory-io/neptune release-and-versioningInstall this skill globally with one command. Works with Claude Code, Cursor, and Windsurf.
Security Scan Results
3 of 9 scanners reported clean
Some scanners were skipped, did not run, or reported a non-clean status. Review each row below.
3
Scanners Passed
9
Scanners in report
Clean
TrivyContainer and dependency vulnerability scanner
95%
Clean
SemgrepStatic code analysis for vulnerabilities
95%
Clean
mcp-scan (Snyk)Model Context Protocol security validation
95%
Skipped
Snyk (dep)Open source security scanning
50%
Skipped
Socket.devSupply chain security analysis
50%
Skipped
VirusTotalMulti-engine malware detection
50%
Skipped
CrowdStrikeAdvanced threat intelligence
50%
Skipped
OSV-ScannerOpen Source Vulnerability database check
50%
Skipped
OWASP Dep-Check
50%
Last scanned: Apr 15, 2026, 11:50 PM6.1s1 file scanned
SKILL.md
- name:
- release-and-versioning
- description:
- Cuts a new release with semantic versioning and GoReleaser. Use when the user wants to release a new version, tag a release, or understand release workflow.
Release and Versioning
Semantic Versioning
- Tags use the form vMAJOR.MINOR.PATCH (e.g.
v0.2.0,v1.0.0). - The
vprefix is required for the release workflow. Do not add a version ingo.modfor release; the binary gets version from ldflags at build time.
Release Steps
- Ensure main is green – CI (test, lint) must pass on the branch you will tag.
- Create and push the tag:
git tag vX.Y.Zgit push origin vX.Y.Z
- Let CI run –
.github/workflows/release.ymlruns on tag push. GoReleaser creates the GitHub Release with neptune binaries (lowercase archives e.g.neptune_linux_amd64.tar.gzand raw binaries),neptune-webhook.zipand rawneptune-webhook_linux_amd64(Lambda binary isneptune-webhook), checksums, and release notes. The release body is generated by GitHub (changelog.use: github-native) and categorized by.github/release.ymland PR labels. - Do not run destructive commands (e.g.
git pushor creating tags) without user confirmation.
GoReleaser
- .goreleaser.yml: Builds
neptunefrom the repo root (ldflags setmain.version,main.commit,main.date) and Lambdaneptune-webhookfromlambda/(released asneptune-webhook.zipand rawneptune-webhook_linux_amd64). Produces lowercase-named archives (e.g.neptune_linux_amd64.tar.gz), raw binaries, and checksums. Withchangelog.use: github-native, the release body is generated by GitHub and categorized via.github/release.ymland PR labels. Release footer links to full changelog. - release.yml: Uses
goreleaser/goreleaser-actionwithrelease --cleanandcontents: writepermission.
Breaking changes and changelog
With github-native changelog, release-note sections are determined by PR labels and .github/release.yml, not by commit subject. Apply the breaking-change label to PRs that introduce breaking changes so they appear under "Breaking Changes" in the generated release notes. The commit subject convention (!:) is still recommended for semver and human readers (e.g. feat!: remove old API) but does not drive the release notes sections. Maintainers should apply the appropriate label (e.g. breaking-change, enhancement, bug) when merging so the next release is correctly categorized.
If the user only wants to understand the workflow, explain the steps and point to .goreleaser.yml, .github/release.yml, and .github/workflows/release.yml without running any commands.
Related Skills
devopsfactory-io/testing-and-ci
development
VerifiedTrustedCommunity
Runs tests, lint, and format checks; explains CI workflows. Use when running or debugging tests, lint, or GitHub Actions.
3SKILL.mdUpdated Apr 15, 2026
devopsfactory-io/release-and-versioning
development
VerifiedTrustedCommunity
Cuts a new release with semantic versioning and GoReleaser. Use when the user wants to release a new version, tag a release, or understand release workflow.
3SKILL.mdUpdated Apr 15, 2026
devopsfactory-io/open-pull-request
tools
VerifiedTrustedCommunity
Commits current changes and opens a pull request via GitHub CLI (gh). Use only when the user explicitly says "open a pull request", "open an pull request", or "create a pull request". Do not run this workflow for other requests.
3SKILL.mdUpdated Apr 15, 2026
devopsfactory-io/maintain-documentation
development
VerifiedTrustedCommunity
Ensures human and AI documentation stay in sync with code and config. Use when changing behavior, adding features, refactoring, or when the user asks to update docs. Delegates the actual updates to the documentation-maintainer subagent.
3SKILL.mdUpdated Apr 15, 2026