Skip to content

Add inmutable releases#137

Merged
jiep merged 3 commits intomainfrom
136-add-inmutable-releases
Mar 22, 2026
Merged

Add inmutable releases#137
jiep merged 3 commits intomainfrom
136-add-inmutable-releases

Conversation

@jiep
Copy link
Owner

@jiep jiep commented Mar 22, 2026

No description provided.

@jiep jiep self-assigned this Mar 22, 2026
@jiep jiep added enhancement New feature or request github_actions Pull requests that update GitHub Actions code labels Mar 22, 2026
@jiep jiep linked an issue Mar 22, 2026 that may be closed by this pull request
Add inmutable releases #136
Closed
Copilot AI review requested due to automatic review settings March 22, 2026 15:38
Copilot AI reviewed Mar 22, 2026
View reviewed changes
Copy link
Contributor

Copilot AI left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull request overview

Updates the tag-triggered release workflow to make releases effectively “immutable” by publishing only if a release for the tag doesn’t already exist, and by reusing the previously built distribution artifacts from the build job.

Changes:

  • Replace in-workflow build steps with downloading the wheel-package artifact into dist/.
  • Switch GitHub Release creation from ncipollo/release-action to gh release create, with a pre-check to skip if the release already exists.

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

@jiep jiep requested a review from Copilot March 22, 2026 15:44
Copilot AI reviewed Mar 22, 2026
View reviewed changes
Copy link
Contributor

Copilot AI left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull request overview

Copilot reviewed 1 out of 1 changed files in this pull request and generated 1 comment.

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

@jiep jiep requested a review from Copilot March 22, 2026 15:49
Copilot AI reviewed Mar 22, 2026
View reviewed changes
Copy link
Contributor

Copilot AI left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull request overview

Copilot reviewed 1 out of 1 changed files in this pull request and generated 2 comments.

Comments suppressed due to low confidence (1)

.github/workflows/release.yml:77

  • The provenance attestation is generated in the release job, but the actual build now happens in a separate reusable workflow/job (wheel.yml). For stronger/clearer provenance, consider generating the attestation in the build job immediately after building (or otherwise ensuring the attestation clearly corresponds to the build environment rather than the release job that only downloads artifacts).
    - name: Generate attestation
      uses: actions/attest-build-provenance@a2bbfa25375fe432b6a289bc6b6cd05ecd0c4c32 # v4.1.0
      with:
        subject-path: "dist/*"

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

@jiep jiep merged commit 80f3c45 into main Mar 22, 2026
13 checks passed
@jiep jiep deleted the 136-add-inmutable-releases branch March 22, 2026 15:54
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

Copilot code review Copilot Copilot left review comments

Assignees

@jiep jiep

Labels

enhancement New feature or request github_actions Pull requests that update GitHub Actions code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

Add inmutable releases

2 participants

@jiep