OpenSkillIndex← back to search
claude-codeautomation

Agentops release

Release your software. Pre-flight validation, changelog generation, version bumps, release commit, tag, curated release notes. Boundary: everything up to the git tag. Triggers: "release", "cut a release", "prepare release", "release check".

install
source · Clone the upstream repo
git clone https://github.com/boshu2/agentops
Claude Code · Install into ~/.claude/skills/
T=$(mktemp -d) && git clone --depth=1 https://github.com/boshu2/agentops "$T" && mkdir -p ~/.claude/skills && cp -r "$T/skills/release" ~/.claude/skills/boshu2-agentops-release-91e5c7 && rm -rf "$T"
manifest: skills/release/SKILL.md
tags
#release-management#versioning#git#changelog#automation
source content

Release Skill

Purpose: Take a project from "code is ready" to "tagged and ready to push."

Pre-flight validation, changelog from git history, version bumps across package files, release commit, annotated tag, and curated release notes. Everything is local and reversible. Publishing (including the GitHub Release page) is CI's job.

Quick Start

/release 1.7.0                # full release: changelog + bump + commit + tag
/release 1.7.0 --dry-run      # show what would happen, change nothing
/release --check               # readiness validation only (GO/NO-GO)
/release                       # suggest version from commit analysis

Arguments

ArgumentRequiredDescription
version
NoSemver string (e.g., 
1.7.0
). If omitted, suggest based on commit analysis
--check
NoReadiness validation only — don't generate or write anything
--dry-run
NoShow generated changelog + version bumps without writing
--skip-checks
NoSkip pre-flight validation (tests, lint)
--changelog-only
NoOnly update CHANGELOG.md — no version bumps, no commit, no tag

Modes

Default: Full Release

/release [version]
— the complete local release workflow.

Steps: pre-flight → changelog → release notes → version bump → user review → write → release commit → tag → guidance.

Check Mode

/release --check
— standalone readiness validation.

Runs all pre-flight checks and reports GO/NO-GO. Useful before starting the release, in CI as a gate, or composed with 

/vibe
. Does not generate or write anything.

Changelog Only

/release 1.7.0 --changelog-only
— just update CHANGELOG.md.

Generates the changelog entry and writes it. No version bumps, no commit, no tag.

Workflow

Step 1: Pre-flight

Run these checks before anything else:

./scripts/ci-local-release.sh      # mandatory local CI parity gate (blocking)
git rev-parse --git-dir           # must be in a git repo
git status --porcelain            # warn if dirty
git branch --show-current         # show current branch


/release
MUST run the repo-root 
ci-local-release.sh
gate first. If it fails, stop the release workflow and report the failing checks. The local CI gate writes publishable artifacts to 
.agents/releases/local-ci/<timestamp>/
, including SBOM files, a full security scan report, and 
release-artifacts.json
. Once the target version is known, rerun the gate as 
./scripts/ci-local-release.sh --release-version <version>
so the artifact manifest matches the final release version. Use 
./scripts/resolve-release-artifacts.sh <version>
when writing the audit trail.

Checks:

CheckHowSeverity
Git repo
git rev-parse --git-dir
Block — cannot proceed
CHANGELOG.md existsGlob for changelog (case-insensitive)Offer to create if missing
Has 
[Unreleased]
section		Read CHANGELOG.mdWarn
Working tree clean
git status --porcelain
Warn (show dirty files)
On expected branch
git branch --show-current
Warn if not main/master/release
Local CI parity gaterepo-root 
ci-local-release.sh
Block — must pass before release
Publishable SBOMGenerated by local CI gate (
CycloneDX
+ 
SPDX
)		Block — required artifact
Security scan reportGenerated by local CI gate (full toolchain scan JSON)Block — required artifact
Tests passDetect and run test commandWarn (show failures)
Lint cleanDetect and run lint commandWarn (show issues)
Dependency vulnerabilitiesRun 
/deps vuln
to confirm no critical vulnerabilities ship with this release		Warn (show findings)
Version consistencyCompare versions across package filesWarn (show mismatches)
Manifest versions syncCompare 
.claude-plugin/plugin.json
and 
marketplace.json
versions		Warn (show mismatches)
Commits since last tag
git log --oneline <range>
Block if empty — nothing to release
Unconsumed high-severity findingsCount items in 
.agents/rpi/next-work.jsonl
where 
consumed=false
and 
severity=high
Warn — not a blocker (see check below)

Unconsumed findings check (soft WARN, non-blocking):

if [ -f .agents/rpi/next-work.jsonl ] && command -v jq &>/dev/null; then
  high_count=$(jq -s '[.[] | select(.consumed == false) | .items[] | select(.severity == "high")] | length' \
    .agents/rpi/next-work.jsonl 2>/dev/null || echo 0)
  if [ "$high_count" -gt 0 ]; then
    echo "[WARN] $high_count unconsumed high-severity item(s) in .agents/rpi/next-work.jsonl"
    echo "       These carry-forward findings have not been addressed. Review before releasing."
    echo "       Run: jq -s '[.[] | select(.consumed==false) | .items[] | select(.severity==\"high\")]' .agents/rpi/next-work.jsonl"
  fi
fi

This is a soft WARN — it does not block the release. It surfaces carry-forward findings from prior retro/post-mortem sessions so the release engineer can make an informed decision.

Test/lint detection:

FileTest CommandLint Command
go.mod
go test ./...
golangci-lint run
(if installed)
package.json
npm test
npm run lint
(if script exists)
pyproject.toml
pytest
ruff check .
(if installed)
Cargo.toml
cargo test
cargo clippy
(if installed)
Makefile
with 
test:
make test
make lint
(if target exists)

If 

--skip-checks
is passed, skip ad-hoc test/lint detection only. It does not skip the repo-root 
ci-local-release.sh
gate.

In 

--check
mode, run all checks and output a summary table:

Release Readiness: NO-GO

  [PASS] Git repo
  [PASS] CHANGELOG.md exists
  [PASS] Working tree clean
  [WARN] Branch: feature/foo (expected main)
  [FAIL] Tests: 2 failures in auth_test.go
  [PASS] Lint clean
  [PASS] Version consistency (1.6.0 in all 2 files)
  [PASS] 14 commits since v1.6.0
  [WARN] 2 unconsumed high-severity item(s) in .agents/rpi/next-work.jsonl

In 

--check
mode, stop here. In default mode, continue (warnings don't block).

Step 2: Determine range

Find the last release tag:

git tag --sort=-version:refname -l 'v*' | head -1
  • If no 
    v*
    tags exist, use the first commit: 
    git rev-list --max-parents=0 HEAD
  • The range is 
    <last-tag>..HEAD
  • If range is empty (no new commits), stop and tell the user

Step 3: Read git history

Gather commit data for classification:

git log --oneline --no-merges <range>
git log --format="%H %s" --no-merges <range>
git diff --stat <range>

Use 

--oneline
for the summary view and full hashes for detail lookups when a commit message is ambiguous.

Step 4: Classify and group

Classify each commit into one of four categories:

CategorySignal
AddedNew features, new files, "add", "create", "implement", "introduce", 
feat
ChangedModifications, updates, refactors, "update", "refactor", "rename", "migrate"
FixedBug fixes, corrections, "fix", "correct", "resolve", "patch"
RemovedDeletions, "remove", "delete", "drop", "deprecate"

Grouping rules:

  • Group related commits that share a component prefix (e.g., 
    auth:
    , 
    api:
    , 
    feat(users)
    )
  • Combine grouped commits into a single bullet with a merged description
  • Match the existing CHANGELOG style — read the most recent versioned entry and replicate its bullet format, separator style, and heading structure
  • If a commit message is ambiguous, read the diff with 
    git show --stat <hash>
    to clarify

Key rules:

  • Don't invent — only document what git log shows
  • Omit empty sections — don't include 
    ### Removed
    if nothing was removed
  • Commits, not diffs — classify from commit messages; read diffs only when ambiguous
  • Merge-commit subjects are noise — already filtered by 
    --no-merges

Step 5: Suggest version

If no version was provided, suggest one based on the commit classification:

ConditionSuggestion
Any commit contains "BREAKING", "breaking change", or 
!:
(conventional commits)		Major bump
Any commits classified as Added (new features)Minor bump
Only Fixed/Changed commitsPatch bump

Show the suggestion with reasoning:

Suggested version: 1.7.0 (minor)
Reason: 3 new features added, no breaking changes

Current version: 1.6.0 (from package.json, go tags)

Use AskUserQuestion to confirm or let the user provide a different version.

Step 6: Generate changelog entry

Produce a markdown block in Keep a Changelog format:

## [X.Y.Z] - YYYY-MM-DD

### Added
- description of new feature

### Changed
- description of change

### Fixed
- description of fix

Use today's date in 

YYYY-MM-DD
format.

Style adaptation: Read the existing CHANGELOG entries and match their conventions:

  • Bullet format (plain text vs bold names vs backtick names)
  • Separator style (em-dash
    , hyphen 
    -
    , colon 
    :
    )
  • Grouping patterns (flat list vs sub-sections)
  • Level of detail (terse vs verbose)

If no existing entries to reference (first release), use plain Keep a Changelog defaults.

Step 7: Detect and offer version bumps

Scan for files containing version strings:

FilePatternExample
package.json
"version": "X.Y.Z"
"version": "1.6.0"
pyproject.toml
version = "X.Y.Z"
version = "1.6.0"
Cargo.toml
version = "X.Y.Z"
version = "1.6.0"
*.go
const Version = "X.Y.Z"
or 
var version = "X.Y.Z"
const Version = "1.6.0"
version.txt
Plain version string
1.6.0
VERSION
Plain version string
1.6.0
.goreleaser.yml
Version from ldflags (show, don't modify — goreleaser reads from git tags)

Show what was found:

Version strings detected:

  package.json:       "version": "1.6.0"  → "1.7.0"
  src/version.go:     const Version = "1.6.0"  → "1.7.0"
  .goreleaser.yml:    (reads from git tag — no change needed)

Use AskUserQuestion: "Update these version strings?" — "Yes, update all" / "Let me choose" / "Skip version bumps"

Step 8: User review

Present everything that will change:

  1. The generated changelog entry (fenced markdown block)
  2. The version bumps (file-by-file diff preview)
  3. What will happen: "Will write CHANGELOG.md, update 2 version files, create release commit, create tag v1.7.0"

If 

--dry-run
was passed, stop here.

Use AskUserQuestion:

  • "Proceed with this release?"
  • Options: "Yes, do it" / "Let me edit the changelog first" / "Abort"

Step 9: Write changes

After user confirms:

  1. Update CHANGELOG.md:
    • Find the 
      ## [Unreleased]
      line
    • Find where the unreleased section ends (next 
      ## [
      line or EOF)
    • Replace with: fresh empty 
      ## [Unreleased]
      + blank line + versioned entry
  2. Update version files (if user accepted bumps)

Step 10: Generate release notes

Read 

references/release-notes.md
for the full release notes format, quality bar, condensing rules, and examples. Key points:

  • Release notes are not the changelog — they're user-facing, plain-English, no jargon
  • Structure: Highlights → What's New → All Changes (condensed) → link to full CHANGELOG
  • Write to 
    docs/releases/YYYY-MM-DD-v<version>-notes.md

CRITICAL: Release notes MUST be written and staged BEFORE the release commit. GoReleaser checks out the tagged commit — if notes are committed after the tag, CI won't find them and falls back to raw changelog extraction.

Step 11: Write audit trail

Resolve the full local-CI artifact set that backs this release, then write the internal release audit record to 

docs/releases/YYYY-MM-DD-v<version>-audit.md
(see Step 16 format). Stage it alongside the release notes.

ARTIFACT_JSON="$(./scripts/resolve-release-artifacts.sh <version>)"
ARTIFACT_DIR="$(echo "$ARTIFACT_JSON" | jq -r '.artifact_dir')"

Step 12: Release commit

Stage and commit all release changes together:

git add CHANGELOG.md <version-files...> docs/releases/YYYY-MM-DD-v<version>-notes.md docs/releases/YYYY-MM-DD-v<version>-audit.md
git commit -m "Release v<version>"

The commit message is intentionally simple. The changelog has the details. The release notes and audit trail are included in this commit so the tagged tree contains them.

Step 13: Tag

Create an annotated tag:

git tag -a v<version> -m "Release v<version>"

Step 14: GitHub Release (CI handles this)

Do NOT create a draft GitHub Release locally. GoReleaser in CI is the sole release creator. A local 

gh release create --draft
conflicts with GoReleaser and results in an empty release body.

The curated release notes at 

docs/releases/YYYY-MM-DD-v<version>-notes.md
are included in the release commit (Step 12), so CI finds them in the tagged tree. The pipeline (
extract-release-notes.sh
) reads them and passes them to GoReleaser via 
--release-notes
. CI also publishes security artifacts to the GitHub Release assets:

  • sbom-cyclonedx-go-mod.json
  • security-gate-summary.json

Step 15: Post-release guidance

Show the user what to do next:

Release v1.7.0 prepared locally.

Next steps:
  git push origin main --tags     # push commit + tag

CI publisher will handle: release publish, GitHub Release page, SBOM/security assets, provenance
  (detected: .github/workflows/release.yml, .goreleaser.yml)
  Curated release notes: docs/releases/YYYY-MM-DD-v1.7.0-notes.md

If no CI detected:

Next steps:
  git push origin main --tags     # push commit + tag
  gh release create v1.7.0 --title "v1.7.0" --notes-file docs/releases/YYYY-MM-DD-v1.7.0-notes.md

No release CI detected. Consider adding a workflow for automated publishing.

Step 16: Audit trail format

The audit record (written in Step 11, committed in Step 12) uses this format:

mkdir -p docs/releases

Write to 

docs/releases/YYYY-MM-DD-v<version>-audit.md
:

# Release v<version> — Audit

**Date:** YYYY-MM-DD
**Previous:** v<previous-version>
**Commits:** N commits in range
**Local CI Artifacts:** `<artifact_dir>/`

## Version Bumps

<files updated>

## Pre-flight Results

<check summary table>

This is an internal record for the knowledge flywheel. It does NOT go on the GitHub Release page — that's the 

-notes.md
file from Step 12.

Two files, two audiences:

FileAudienceContains
*-notes.md
GitHub feed readersHighlights, What's New, All Changes
*-audit.md
Internal/flywheelVersion bumps, pre-flight results

New Changelog Template

When no 

CHANGELOG.md
exists and the user accepts creation, write:

# Changelog

All notable changes to this project will be documented in this file.

The format is based on [Keep a Changelog](https://keepachangelog.com/en/1.0.0/),
and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0.html).

## [Unreleased]

Then proceed with the normal workflow to populate the first versioned entry.

Boundaries

What this skill does

  • Pre-flight validation (tests, lint, clean tree, versions, branch)
  • Changelog generation from git history
  • Semver suggestion from commit classification
  • Version string bumps in package files
  • Release commit + annotated tag
  • Release notes (highlights + changelog) for GitHub Release page
  • Curated release notes for CI to publish on GitHub Release page
  • Post-release guidance
  • Audit trail

What this skill does NOT do

  • No publishing — no 
    npm publish
    , 
    cargo publish
    , 
    twine upload
    . CI handles this.
  • No building — no 
    go build
    , 
    npm pack
    , 
    docker build
    . CI handles this.
  • No pushing — no 
    git push
    , no 
    git push --tags
    . The user decides when to push.
  • No CI triggering — the tag push (done by the user) triggers CI.
  • No monorepo multi-version — one version, one changelog, one tag. Scope for v2.

Everything this skill does is local and reversible:

  • Bad changelog → edit the file
  • Wrong version bump → 
    git reset HEAD~1
  • Bad tag → 
    git tag -d v<version>
  • Bad release notes → edit 
    docs/releases/*-notes.md
    before push

Universal Rules

  • Don't invent — only document what git log shows
  • No commit hashes in the final output
  • No author names in the final output
  • Concise — one sentence per bullet, technical but readable
  • Adapt, don't impose — match the project's existing style rather than forcing a particular format
  • User confirms — never write without showing the draft first
  • Local only — never push, publish, or trigger remote actions
  • Two audiences — CHANGELOG.md is for contributors (file paths, issue IDs, implementation detail). Release notes are for feed readers (plain English, user-visible impact, no insider jargon). Never copy-paste the changelog into the release notes.

Examples

Full Release Workflow

User says: 

/release 1.7.0

What happens:

  1. Agent runs pre-flight checks (git status, tests, lint, versions)
  2. Agent reads git history since last tag (v1.6.0..HEAD)
  3. Agent classifies commits into Added/Changed/Fixed/Removed categories
  4. Agent generates changelog entry in Keep a Changelog format
  5. Agent detects version files (package.json, version.go) and proposes bumps
  6. Agent shows draft changelog and version diffs to user for review
  7. User approves. Agent writes CHANGELOG.md, updates version files
  8. Agent creates release commit and annotated tag (v1.7.0)
  9. Agent generates curated release notes (CI uses them for GitHub Release page)
  10. Agent displays post-release guidance (push commands)

Result: Local release fully prepared: changelog updated, versions bumped, tag created, draft release ready.

Readiness Check Only

User says: 

/release --check

What happens:

  1. Agent runs all pre-flight checks (git, tests, lint, versions, commits)
  2. Agent outputs GO/NO-GO summary table with pass/fail/warn for each check
  3. Agent stops without generating or writing anything

Result: Release readiness report only, no changes made.

Version Suggestion Mode

User says: 

/release
(no version provided)

What happens:

  1. Agent reads git history and classifies commits
  2. Agent suggests version based on classification (major if breaking, minor if features, patch if fixes only)
  3. Agent shows suggestion with reasoning: "Suggested version: 1.7.0 (minor). Reason: 3 new features added, no breaking changes."
  4. Agent asks user to confirm or provide different version
  5. Agent continues with user-selected version

Result: Suggested version based on commit analysis, user confirms or overrides.

Troubleshooting

ProblemCauseSolution
"No commits since last tag" errorWorking tree clean, no new commitsCommit pending changes or skip release (nothing to release)
Version mismatch warningpackage.json shows 1.6.0, go shows 1.5.9Manually sync versions before release, or choose one as source of truth
Tests fail during pre-flightBreaking changes not caught earlierFix failing tests or use 
--skip-checks
(not recommended)
Dirty working tree warningUncommitted changes presentCommit or stash changes before release for clean state
GitHub Release page has empty bodyGoReleaser conflicts with existing draft releaseCI workflow deletes existing releases before GoReleaser runs; do NOT 
gh release create
locally

See Also

  • deps — Dependency audit and vulnerability scanning

Reference Documents