RELEASING.md

Releasing

Note This document is relevant only for maintainers that have permissions to release new versions of Storybook. Anyone can read it for interest or to suggest changes, but it's not required knowledge.

Table of Contents

• Introduction
  • Branches
• Release Pull Requests
  • Patch Releases
  • Non-patch Releases
  • Publishing
• 👉 How to Release
  • 1. Find the Prepared Pull Request
  • 2. Freeze the Pull Request and run CI
  • 3. QA Each Merged Pull Request
  • 4. Re-trigger the Workflow
  • 5. Make Manual Changes
  • 6. Merge
  • 7. See the "Publish" Workflow Finish
• Releasing changes to older minor versions
• Releasing Locally in an Emergency 🚨
• Canary Releases
  • With GitHub UI
  • With the CLI
• Versioning Scenarios
  • Prereleases - 7.1.0-alpha.12 -> 7.1.0-alpha.13
  • Prerelease promotions - 7.1.0-alpha.13 -> 7.1.0-beta.0
  • Minor/major releases - 7.1.0-rc.2 -> 7.1.0 or 8.0.0-rc.3 -> 8.0.0
  • First prerelease of new major/minor - 7.1.0 -> 7.2.0-alpha.0 or 8.0.0-alpha.0
  • Patch releases to stable - subset of 7.1.0-alpha.13 -> 7.0.14
  • Patch releases to earlier versions - subset of 7.1.0-alpha.13 -> 6.5.14
  • Prerelease of upcoming patch release - 7.0.20 -> 7.0.21-alpha.0
  • Merges to main without versioning
• FAQ
  • When should I use the "patch:yes" label?
  • How do I make changes to the release tooling/process?
  • Why do I need to re-trigger workflows to update the changelog?
  • Which combination of inputs creates the version bump I need?
  • Which changes are considered "releasable", and what does it mean?
  • Why are no release PRs being prepared?
  • Why do we need separate release branches?

Introduction

This document explains the release process for the Storybook monorepo. There are two types:

1. Non-patch releases - releasing any content that is on the next branch, either prereleases or stable releases
2. Patch releases - picking any content from next to main, that needs to be patched back to the current stable minor release

The release process is based on automatically created "Release Pull Requests", that when merged will trigger a new version to be released.

A designated Releaser -- which may rotate between core team members -- will go through the release process in the current Release PR. This process is implemented with NodeJS scripts in scripts/release and three GitHub Actions workflows:

• Prepare next PR
• Prepare patch PR
• Publish

Note This document distinguishes between patch and non-patch releases. The distinction reflects the difference between patching an existing minor version on main or releasing a new minor/major/prerelease from next.

Branches

To understand the release structure, it's important to know the branching strategy used. All development is done on the next branch, where new features and bug fixes are added. This branch contains content to be released in the next prerelease (eg. v7.1.0-alpha.22).

The main branch contains the content for the current stable release (eg. v7.0.20). When changes need to be made to both the next major/minor release and the current patch release (bug fixes or small improvements), they are made to next. If the change needs to be patched back to the current minor version (eg. from 7.1.0-alpha.20 to 7.0.18), the PR containing the fix is labeled with the "patch" label, so the release workflow can pick it up. This ensures changes are tested in a prerelease before being released to stable.

The actual (pre)releases are not made from next nor main, but from next-release and latest-release respectively. This indirection is explained in the "Why do we need separate release branches?" section below.

The branches in the monorepo can be summarized in this diagram (simplified):

%%{init: { 'gitGraph': { 'showCommitLabel': false } } }%%
gitGraph
    commit
    branch latest-release
    branch next
    commit
    branch next-release
    commit
    commit tag: "7.1.0-alpha.18"
    checkout next
    merge next-release
    commit id: "bugfix"
    commit
    checkout latest-release
    cherry-pick id: "bugfix"
    commit tag: "7.0.20"
    checkout next-release
    merge next
    commit tag: "7.1.0-alpha.19"
    checkout next
    merge next-release
    commit
    checkout main
    merge latest-release

Loading

Release Pull Requests

Two GitHub Actions workflows automatically create release pull requests, one for each type of release. These pull requests act as the "interface" for the Releaser to create a new release. Although the behavior between the two is similar, some minor differences exist, as described in the subsections below.

The high-level flow is:

1. When a PR is merged to next (or a commit is pushed), both release pull requests are (re)generated.
2. They create a new branch - version-(patch|non-patch)-from-<CURRENT-VERSION>.
3. They calculate which version to bump to according to the version strategy.
4. They update CHANGELOG(.prerelease).md with all changes detected.
5. They commit everything.
6. They force push.
7. They open/edit a pull request towards next-release or latest-release.

A few key points to note in this flow:

• The PRs are regenerated on any changes to next, or can be manually triggered (see the Re-trigger the Workflow section).
• The changes are force pushed to the branch, so any manual changes on the release branch before merging risk being overwritten if someone else merges a new change to next, triggering the workflow. To avoid this, apply the "freeze" label to the pull request.
• The changelogs are committed during the preparation, but the packages are not version bumped and not published until later.
• The release pull requests don't target their working branches (next and main), but rather next-release and latest-release.

Patch Releases

Note Workflow: prepare-patch-release.yml

Patch releases are created by cherry-picking any merged, unreleased pull requests that have the "patch:yes" label applied to the next branch. The merge commit of said pull requests are cherry-picked.

Sometimes it is desired to pick pull requests back to main even if they are not considered "releasable". Unlike non-patch release preparation, patch releases will not be canceled if the content is not releasable. It might not make sense to create a new patch release if the changes are only for documentation and/or internal build systems. However, getting the changes back to main is the only way to deploy the documentation to the production docs site. You may also want to cherry-pick changes to internal CI to fix issues. These are valid scenarios where you want to cherry-pick the changes without being blocked on "releasable" content. In these cases, where all cherry picks are non-releasable, the preparation workflow creates a "merging" pull request instead of a "releasing" pull request. This pull request does not bump versions or update changelogs; it just cherry-picks the changes and allows you to merge them into latest-release -> main.

The preparation workflow sequentially cherry-picks each patch pull request to its branch. If this cherry-picking fails due to conflicts or other reasons, it is ignored and the next pull request is processed. All failing cherry-picks are listed in the release pull request's description, for the Releaser to manually cherry-pick during the release process. This problem occurs more often when main and next diverge, i.e. the longer it has been since a stable major/minor release.

Similar to the non-patch release flow, the preparation workflow for patches will create a new branch from main called version-patch-from-<CURRENT-STABLE-VERSION>, and open a pull request that targets latest-release. When the pull request is merged by the Releaser, the publish workflow will eventually merge latest-release into main.

Here is an example of a workflow where a feature and two bug fixes have been merged to next. Only the bug fixes have the "patch:yes" label, so only those two go into the new 7.0.19 release. Note that it is the merge commits to next that are cherry-picked, not the commits on the bugfix branches.

gitGraph
    commit
    branch latest-release
    branch next
    checkout latest-release
    commit tag: "v7.0.18"
    checkout main
    merge latest-release
    checkout next
    commit
    branch some-patched-bugfix
    commit
    commit id: "patch1"
    checkout next
    merge some-patched-bugfix
    branch new-feature
    commit
    checkout next
    merge new-feature
    branch other-patched-bugfix
    commit id: "patch2"
    checkout next
    merge other-patched-bugfix
    checkout main
    branch version-patch-from-7.0.18
    cherry-pick id: "patch1"
    cherry-pick id: "patch2"
    commit id: "write changelog"
    checkout latest-release
    merge version-patch-from-7.0.18
    commit id: "bump versions" tag: "v7.0.19"
    checkout main
    merge latest-release

Loading

Non-patch Releases

Note Workflow: prepare-non-patch-release.yml

Non-patch releases are prepared with all content from the next branch. The changelog is generated by examining the git history, and looking up all the commits and pull requests between the current prerelease (on next-release) and HEAD of next.

The default versioning strategy is to increase the current prerelease number, as described in Prereleases - 7.1.0-alpha.12 -> 7.1.0-alpha.13. If there is no prerelease number (i.e., we just released a new stable minor/major version), it will add one to a patch bump, so it would go from 7.2.0 to 7.2.1-0 by default.

next-PRs are only created if there are actual changes to release. Content labeled with "build" or "documentation" is not considered "releasable" and is not user-facing, so it doesn't make sense to create a release. This is explained in more detail in Why are no release PRs being prepared?.

The preparation workflow will create a new branch from next, called version-non-patch-from-<CURRENT-NEXT-VERSION>, and open a pull request targeting next-release. When the Releaser merges it, the publish workflow will merge next-release into next.

Here's an example of a workflow where a feature and a bugfix have been created and then released to a new 7.1.0-alpha.29 version. All the commits highlighted with square dots are the ones that will be considered when generating the changelog.

%%{init: { 'gitGraph': { 'mainBranchName': 'next' } } }%%
gitGraph
    commit
    branch next-release
    commit tag: "7.1.0-alpha.28"
    checkout next
    merge next-release
    commit type: HIGHLIGHT id: "direct commit"
    branch new-feature
    commit
    commit
    checkout next
    merge new-feature type: HIGHLIGHT
    branch some-bugfix
    commit
    checkout next
    merge some-bugfix type: HIGHLIGHT
    branch version-non-patch-from-7.1.0-alpha.28
    commit id: "write changelog"
    checkout next-release
    merge version-non-patch-from-7.1.0-alpha.28
    commit id: "bump versions" tag: "7.1.0-alpha.29"
    checkout next
    merge next-release

Loading

Publishing

Note Workflow: publish.yml

When either a non-patch release or a patch release branch is merged into latest-release or next-release, the publishing workflow is triggered. This workflow performs the following tasks:

1. Bump versions of all packages according to the plan from the prepared PRs
2. Install dependencies and build all packages.
3. Publish packages to npm.
4. (If this is a patch release, add the "patch:done" label to all relevant pull requests.)
5. Create a new GitHub Release, including a version tag in the release branch (latest-release or next-release).
6. Merge the release branch into the core branch (main or next).
7. (If this is a patch release, copy the CHANGELOG.md changes from main to next.)

The publish workflow runs in the "release" GitHub environment, which has the npm token required to publish packages to the @storybook npm organization. For security reasons, this environment can only be accessed from the four "core" branches: main, next, latest-release and next-release.

👉 How to Release

This section explains what a Releaser should do when it's time to release. The steps are also outlined in the release pull requests, to provide guidance for inexperienced Releasers.

The high-level workflow for a Releaser is:

1. Find the prepared pull request
2. Freeze the pull request
3. Make changes to merged pull requests (revert, rename, relabel)
4. Re-trigger the workflow to get changes from step 3 in
5. Make any manual changes needed
6. Merge
7. Check that the "publish" workflow has finished successfully

1. Find the Prepared Pull Request

Look for the release pull request that has been prepared for the type of release you're about to release:

• "Release: Prerelease|Minor|Major <NEXT-VERSION>" for releases from next
• "Release: Patch <NEXT-VERSION>" for patch releases
• "Release: Merge patches to main (without version bump)" for patches without releases

For example: #23148

2. Freeze the Pull Request and run CI

Add the "freeze" label to the pull request. This will stop the preparation workflows from running when new changes to next are merged. This allows you to make changes without worrying about other people's work overriding yours.

The "freeze" label does not cancel the workflows when they are triggered manually, so you can still run the workflow.

You also need to add the "ci:daily" label to the pull request to trigger CI runs. This will start a full CI run and re-run on any changes. CI does not run by default to avoid unnecessary re-runs until a new release is being created.

3. QA Each Merged Pull Request

It is important to verify that the release includes the right content. Key elements to account for are:

1. Is the change suitable for the version bump?

For example, check if it's a breaking change that isn't allowed in a minor prerelease, or if it's a new feature in a patch release. If it's not suitable, revert the pull request and notify the author.

Sometimes when doing a patch release, a pull request can have the "patch:yes" label but you don't want that change to be part of this release. Maybe you're not confident in the change, or you require more input from maintainers before releasing it. In those situations you should remove the "patch:yes" label from the pull request and follow through with the release (make sure to re-trigger the workflow). When the release is done, add the "patch:yes" label back again, so it will be part of the next release.

2. Is the pull request title correct?

The title of pull requests is added to the user-facing changelogs, so it must be accurate and understandable. It should follow the pattern "[Area]: [Summary]", where [Area] is the part of the repo that has been changed, and the summary is what has changed.

It's easy to confuse [Area] with labels, but they are not the same. For example, the "build" label indicates that the changes are internal, but a "build" [Area] is not correct. The area could be "Core" or "CI", but rarely is the area being changed actually the "build" area. If a pull request changes multiple places, it can be hard to choose an area - this is often the case when upgrading dependencies - so use your best judgement. There's no hard rule, but a good guideline is that the more precise it is, the more useful it is to read later.

3. Is the pull request labeled correctly?

Some labels have specific meanings when it comes to releases. It's important that each pull request has labels that accurately describe the change, as labels can determine if a pull request is included in the changelog or not. This is explained further in the Which changes are considered "releasable", and what does it mean? section.

4. Patches: has it already been released in a prerelease?

If this is a patch release, make sure that all pull requests have already been released in a prerelease. If some haven't, create a new prerelease first.

This is not a technical requirement, but it's a good practice to ensure that a change doesn't break a prerelease before releasing it to stable.

4. Re-trigger the Workflow

Any changes made to pull requests' titles, labels or even reverts won't be reflected in the release pull request because it's hopefully frozen at this point. Even if it isn't, the workflow only triggers on pushes to next, not when pull request meta data is changed.

Therefore, if any changes were made in step 3, you need to re-trigger the workflow manually to regenerate the changelog and the version bump. If no changes were made, this step can be skipped.

It's important to remember that triggering the workflow will force push changes to the branch, so it must be done before committing any changes manually (the next step). Otherwise, these will be overwritten.

Warning When re-triggering the workflow, any new content merged to next will also become part of the release pull request. You can't assume the same content with fixes will be seen, as new content may have been merged in since the pull request was frozen.

When triggering the workflows, always choose the next branch as the base, unless you know exactly what you are doing.

The workflows can be triggered here:

• Prepare next PR
• Prepare patch PR

Crucially for prereleases, this is also where you change the versioning strategy if you need something else than the default as described in Preparing - Non-patch Releases. When triggering the non-patch workflow manually, you can optionally add inputs:

See Versioning Scenarios for a description of each version bump scenario, how to activate it and what it does, and Which combination of inputs creates the version bump I need? for a detailed description of the workflow inputs.

5. Make Manual Changes

It's possible and valid to push manual changes directly on the release branch when needed. This could be to alter the changelog in a way that can't be done automatically, or another critical change is needed for the release to work. Any changes made will be merged to next|main once the release has been published.

It's recommended to use the automated process as much as possible to ensure that the information in GitHub is the single source of truth, and that pull requests and changelogs are in sync.

Warning If you make manual changes to the changelog, you also need to make those changes in either ./docs/versions/latest.json or ./docs/versions/next.json. The "plain" property should match the changelog entry, without the heading and with all new lines replaces with \n. This is common for custom release notes when releasing majors and minors.

6. Merge

When the pull request was frozen, a CI run was triggered on the branch. If it's green, it's time to merge the pull request. If CI is failing for some reason, consult with the rest of the core team. These release pull requests are almost exact copies of next|main so CI should only fail if they fail too.

7. See the "Publish" Workflow Finish

Merging the pull request will trigger the publish workflow, which does the final version bumping and publishing. As a Releaser, you're responsible for this to finish successfully, so you should watch it until the end. If it fails, it will notify in Discord, so you can monitor that instead if you want to.

Done! 🚀

Releasing changes to older minor versions

If you need to release a change to an older minor version that is not the latest, you have to do it manually, locally. The process is described below, with an example of releasing a new v8.3.7 in a situation where 8.4.0 is currently the latest version.

1. Checkout the existing tag that matches the latest minor release you want to bump, and create a new branch from it. In this case, we want to do:
   1. git fetch --all --tags
   2. git checkout tags/v8.3.6 -b patch-8-3-7
2. Make the changes you need to, most likely cherry-picking commits from the fix you need to back-port.
3. Run yarn install in scripts and code
4. Build all packages in code with yarn task --task compile --no-link
5. Commit and push your changes.
6. Trigger daily CI manually on your branch:
   1. Open CircleCI and click "Trigger Pipeline" on the top right corner of the page.
   2. Set the following configuration options:
      • Pipeline: "storybook default"
      • Config Source: "storybook"
      • Branch: Your branch, eg. patch-8-3-7
   3. Add a parameter, with "name" workflow, "value" daily
7. Wait for CI to finish successfully.
8. Bump all package versions:
   1. cd scripts
   2. yarn release:version --release-type patch
9. Commit with git commit -m "Bump version from <CURRENT_VERSION> to <NEXT_VERSION> MANUALLY"
10. Add a new entry to CHANGELOG.md, describing your changes
11. Commit with git commit -m "Update CHANGELOG.md with <NEXT_VERSION> MANUALLY"
12. Ensure you have the correct write permissions for all the Storybook npm packages. You need to be an admin of the storybook org, and the packages that are not in the org. The simplest way to check this is to ensure you can see the "Settings" tab in the following packages:
    1. @storybook/react-vite
    2. storybook
    3. sb
    4. create-storybook
13. Get your npm access token or generate a new one at https://www.npmjs.com/settings/your-username/tokens. Remember to give it access to the storybook org and the packages not in the org, as listed above.
14. Publish all packages with YARN_NPM_AUTH_TOKEN=<NPM_TOKEN> yarn release:publish --tag tag-for-publishing-older-releases --verbose
    • It goes through all packages and publishes them. If any number of packages fails to publish, it will retry 5 times, skipping those that have already been published.
15. Confirm the new version has been released on npm with the tag tag-for-publishing-older-releases:
    1. @storybook/react-vite
    2. storybook
    3. sb
    4. create-storybook
16. Push
17. Manually create a GitHub Release at https://github.com/storybookjs/storybook/releases/new with:
    1. Create new tag: v<VERSION> (e.g., v8.3.7)
    2. Target: your branch (e.g., patch-8-3-7)
    3. Previous tag: v<PREVIOUS_VERSION> (e.g., v8.3.6)
    4. Title: v<VERSION> (e.g., v8.3.7)
    5. Description: The content you added to CHANGELOG.md
    6. Untick "Set as the latest release"
18. Cherry-pick your changelog changes into next, so they are actually visible
    1. Checkout the next branch
    2. Cherry-pick the commit you created with your changelog modifications
    3. Push

Done. 🎉

Releasing Locally in an Emergency 🚨

Things can fail, code can break, and bugs can exist. When automation is broken, there may be a need for an emergency escape hatch to release new fixes. In such a situation, it's valid to run the whole release process locally instead of relying on pull requests and workflows. You don't need to create pull requests or split preparation and publishing; you can do it all at once, but make sure you still follow the correct branching strategy.

You can either prepare the release locally and use the automatic workflow for publishing it or you can do the whole release workflow locally. If you choose the latter approach, you need a token to the npm registry to publish (set as YARN_NPM_AUTH_TOKEN), which you can get from @shilman or @ndelangen.

You can inspect the workflows to see what they are running and copy that, but here is a general sequence of steps to mimic the automated workflow. Feel free to deviate from this as needed.

Before you start you should make sure that your working tree is clean and the repository is in a clean state by running git clean -xdf.

1. Create a new branch from either next or main (patches)
2. Get all tags: git fetch --tags origin
3. Install dependencies: yarn task --task=install --start-from=install
4. cd scripts
5. (If patch release) Cherry pick:
   1. yarn release:pick-patches
   2. Manually cherry pick any necessary patches based on the previous output
6. Bump versions:
   1. If you plan on using automatic publishing (ie. stop at step 12), bump with deferred: yarn release:version --verbose --deferred --release-type <RELEASE_TYPE> --pre-id <PRE_ID>
   2. If doing the whole release locally, do not defer the bump: yarn release:version --verbose --release-type <RELEASE_TYPE> --pre-id <PRE_ID>
7. To see a list of changes (for your own to-do list), run yarn release:generate-pr-description --current-version <CURRENT_VERSION> --next-version <NEXT_VERSION_FROM_PREVIOUS_STEP> --verbose
8. Write changelogs: yarn release:write-changelog <NEXT_VERSION_FROM_PREVIOUS_STEP> --verbose
9. git add ..
10. Commit changes: git commit -m "Bump version from <CURRENT_VERSION> to <NEXT_VERSION_FROM_PREVIOUS_STEP> MANUALLY"
11. Merge changes to the release branch:
    1. git checkout <"latest-release" | "next-release">
    2. git pull
    3. git merge <PREVIOUS_BRANCH>
    4. git push origin
12. (If automatic publishing is still working, it should kick in now and the rest of the steps can be skipped)
13. cd ..
14. Publish to the registry: YARN_NPM_AUTH_TOKEN=<NPM_TOKEN> yarn release:publish --tag <"next" OR "latest"> --verbose
15. (If patch release) yarn release:label-patches
16. Manually create a GitHub Release with a tag that is the new version and the target being latest-release or next-release.
17. Merge to core branch:
    1. git checkout <"next"|"main">
    2. git pull
    3. git merge <"next-release"|"latest-release">
    4. git push origin
18. (If patch release) Sync CHANGELOG.md to next with:
    1. git checkout next
    2. git pull
    3. git checkout origin/main ./CHANGELOG.md
    4. git add ./CHANGELOG.md
    5. git commit -m "Update CHANGELOG.md for v<NEXT_VERSION>"
    6. git push origin
19. (If non-patch release) Sync versions/next.json from next to main
    1. git checkout main
    2. git pull
    3. git checkout origin/next ./docs/versions/next.json
    4. git add ./docs/versions/next.json
    5. git commit -m "Update versions/next.json for v<NEXT_VERSION_FROM_PREVIOUS_STEP>"
    6. git push origin main

Canary Releases

It's possible to release any pull request as a canary release multiple times during development. This is an effective way to try out changes in standalone projects without linking projects together via package managers.

To create a canary release, a core team member (or anyone else with administrator privileges) must manually trigger the canary release workflow.

Before creating a canary release from contributors, the core team member must ensure that the code being released is not malicious.

Creating a canary release can either be done via GitHub's UI or the CLI:

With GitHub UI

1. Open the workflow UI at https://github.com/storybookjs/storybook/actions/workflows/canary-release-pr.yml
2. On the top right corner, click "Run workflow"
3. For "branch", always select next, regardless of which branch your pull request is on
4. For the pull request number, input the number for the pull request without a leading #

With the CLI

The following command will trigger a workflow run - replace <PR_NUMBER> with the actual pull request number:

gh workflow run --repo storybookjs/storybook canary-release-pr.yml --field pr=<PR_NUMBER>

When the release succeeds, it will update the "Canary release" section of the pull request with information about the release and how to use it (see example here). If it fails, it will create a comment on the pull request, tagging the triggering actor to let them know that it failed (see example here).

The canary release will have the following version format: 0.0.0-pr-<PR_NUMBER>-sha-<COMMIT_SHA>, e.g., 0.0.0-pr-23508-5ec8c1c3. Using v0.0.0 ensures that no user will accidentally get the canary release when using a canary with prereleases, eg. ^7.2.0-alpha.0

** Note ** All canary releases are released under the same "canary" dist tag. This means you'll technically be able to install it with npm install @storybook/cli@canary. However, this doesn't make sense, as releases from subsequent pull requests will overwrite that tag quickly. Therefore you should always install the specific version string, e.g., npm install @storybook/[email protected].

Isn't there a simpler/smarter way to do this?

The simple approach would be to release canaries for all pull requests automatically; however, this would be insecure as any contributor with Write privileges to the repository (200+ users) could create a malicious pull request that alters the release script to release a malicious release (e.g., release a patch version that adds a crypto miner).

To alleviate this, we only allow the "Release" GitHub environment that contains the npm token to be accessible from workflows running on the protected branches (next, main, etc.).

You could also be tempted to require approval from admins before running the workflows. However, this would spam the core team with GitHub notifications for workflow runs seeking approval - even when a core team member triggered the workflow. Therefore we are doing it the other way around, requiring contributors and maintainers to ask for a canary release to be created explicitly.

Instead of triggering the workflow manually, you could also do something smart, like trigger it when there's a specific label on the pull request or when someone writes a specific comment on the pull request. However, this would create a lot of unnecessary workflow runs because there isn't a way to filter workflow runs based on labels or comment content. The only way to achieve this would be to trigger the workflow on every comment/labeling, then cancel it if it didn't contain the expected content, which is inefficient.

Versioning Scenarios

There are multiple types of releases that use the same principles, but are done somewhat differently.

Prereleases - 7.1.0-alpha.12 -> 7.1.0-alpha.13

This is the default strategy for Non-patch releases, there's nothing special needed to trigger this scenario.

Prerelease promotions - 7.1.0-alpha.13 -> 7.1.0-beta.0

To promote a prerelease to a new prerelease ID, during the Re-trigger the Workflow step, choose:

• Release type: Prerelease
• Prerelease ID: The ID to promote to. For example, for alpha to beta, write "beta".

Minor/major releases - 7.1.0-rc.2 -> 7.1.0 or 8.0.0-rc.3 -> 8.0.0

To promote a prerelease to a stable reelase, during the Re-trigger the Workflow step, choose:

• Release type: Patch, Minor or Major
• Prerelease ID: Leave empty

This scenario is special as it will target latest-release instead of next-release, and thus merge into main when done, and not next. So it goes next -> version-non-patch-from-<CURRENT-VERSION-ON_NEXT> -> latest-release -> main.

First prerelease of new major/minor - 7.1.0 -> 7.2.0-alpha.0 or 8.0.0-alpha.0

This is the first prerelease after a stable major/minor has been released. The default versioning strategy for prereleases won't work here, because it will do 7.1.0 -> 7.1.1-0. You need to use the workflow inputs to bump the major/minor correctly:

• Release type: Premajor for 8.0.0-alpha.0 or Preminor for 7.2.0-alpha.0
• Prerelease ID: "alpha"

Patch releases to stable - subset of 7.1.0-alpha.13 -> 7.0.14

This is the default patch release scenario, which cherry picks patches to main.

Patch releases to earlier versions - subset of 7.1.0-alpha.13 -> 6.5.14

This happens so rarely on a case by case basis, so this is a completely manual process. The Releaser will find the git tag that matches the patch to bump, eg. v6.5.14, check it out, make the necessary changes and follow the manual release process.

Prerelease of upcoming patch release - 7.0.20 -> 7.0.21-alpha.0

In some cases, a patch change is so big and complex that it makes sense to first release it as a prerelease of the current patch stable version to see if it works, before releasing it to stable shortly thereafter.

No process is defined for this.

Merges to main without versioning

As described in more details in the Patch Releases section, there are scenarios where you want to patch unreleasable content back to main without bumping versions or publishing a new release. This happens automatically as long as all the unpicked patch pull requests have unreleasable labels. In that case the prepared patch pull request will change form slightly, to just cherry-picking the patches without bumping the versions.

FAQ

When should I use the "patch:yes" label?

Not all pull requests need to be patched back to the stable release, which is why only those with the "patch:yes" label gets that treatment. But how do you decide whether or not a give pull requests should have that label?

First of all, patches are only for important and time-sensitive fixes, and not minor improvements or completely new features. A pull request that introduces a new feature shouldn't be patched back to the stable release.

Second, PRs that changes the code in a big architectural way should ideally not be patched back either, because that makes merge conflicts more likely in the future.

When in doubt ask the core team for their input.

How do I make changes to the release tooling/process?

The whole process is based on GitHub Action workflows and scripts, so you can modify them if you know what you're doing.

The short answer to "how", is to make changes as a regular pull request that is also patched back to main.

There's a longer answer too, but it's pretty confusing

The scripts run from either main or next, so if you're changing a release script, you must patch it back to main for it to have an effect on patch releases. If you need the change to take effect immediately, you must manually cherry pick it to main.

For workflow file changes, they usually run from next, but patching them back is recommended for consistency. The "publish" workflow runs from latest-release and next-release, so you should always patch changes back for that. 🙃

Why do I need to re-trigger workflows to update the changelog?

Changes to pull requests' titles, labels or even reverts won't be reflected in the release pull request. This is because the workflow only triggers on pushes to next, not when pull request meta data is changed.

Therefore, if you've made any changes to pull requests, you must re-trigger the workflow manually to regenerate the changelog and the version bump. You could also make the changes to the changelog manually, but it means that the pull requests and their title/labels are no longer the single source of truth.

Which combination of inputs creates the version bump I need?

Each versioning scenario including how to trigger it with inputs is described in Versioning Scenarios. You can also see the tests for the versioning script to determine which inputs create which outputs.

Which changes are considered "releasable", and what does it mean?

A specific set of labels define which kind of change a pull request is, and whether it is a "releasable" change or not. Releasable changes will appear in the changelog and will trigger version bumps, while unreleasable changes will not.

The exact list of labels and their type is written here. Currently, releasable labels are:

• BREAKING CHANGE
• Feature request
• Bug
• Maintenance
• Dependencies

And unreleasable labels are:

• Documentation
• Build

If a pull request does not have any of the above labels at the time of release, it is considered an unreleasable change. Unreleasable changes are changes that do not affect the user through releases. Documentation-only changes are unreleasable, because they are not part of packages and do not change behavior. Similarly, "build" changes are only internal-facing and do not change behavior. This could be tests, CI, etc.

Why are no release PRs being prepared?

This is most likely because next only contains unreleasable changes, which causes the preparation workflow to cancel itself. That's because it doesn't make sense to prepare a new release if all the changes are unreleasable, as that wouldn't bump the version nor write a new changelog entry, so "releasing" it would just merge it back to next without any differences.

You can always see the workflows and if they have been cancelled here for non-patch releases and here for patch releases.

Why do we need separate release branches?

A simpler branching approach would be to merge the versioning branches back to main or next instead of latest-release or next-release, and then trigger the publishing directly on that branch. That is what tools like Changesets do.

The problem with that is you could end up publishing changes that were not part of the prepared pull request, and thus not part of QA nor the changelog.

For example, if the Releaser is creating a new release with the frozen branch and another team member merges a new pull request - "some-simultaneous-bugfix - to next during the QA steps:

%%{init: { 'gitGraph': { 'mainBranchName': 'next' } } }%%
gitGraph
    commit type: HIGHLIGHT
    branch new-feature
    commit
    commit
    checkout next
    merge new-feature type: HIGHLIGHT
    branch some-simultaneous-bugfix
    commit
    checkout next
    branch version-non-patch-from-7.1.0-alpha.28
    commit id
    checkout next
    merge some-simultaneous-bugfix type: HIGHLIGHT id: "whoops!"
    merge version-non-patch-from-7.1.0-alpha.28 tag: "v7.1.0-alpha.29"

Loading

When publishing at the last commit with tag v7.1.0-alpha.29, it will publish whatever the content is at that point (all the square dots), which includes the "whoops!" commit from merging the bugfix. But the bugfix was never part of the release pull request because it got prepared before the bugfix was merged in.

If we instead publish from next-release and then merge to next, the bugfix won't be part of the current release, but the next one:

%%{init: { 'gitGraph': { 'mainBranchName': 'next' } } }%%
gitGraph
    commit type: HIGHLIGHT
    branch next-release
    branch new-feature
    commit
    commit
    checkout next
    merge new-feature type: HIGHLIGHT
    branch some-simultanous-bugfix
    commit
    checkout next
    branch version-non-patch-from-7.1.0-alpha.28
    commit id: "write changelog"
    checkout next
    merge some-simultanous-bugfix id: "whoops!"
    checkout next-release
    merge version-non-patch-from-7.1.0-alpha.28
    commit id: "bump versions" tag: "v7.1.0-alpha.29"
    checkout next
    merge next-release
    branch version-non-patch-from-7.1.0-alpha.29
    commit id: "write changelog again"
    checkout next-release
    merge version-non-patch-from-7.1.0-alpha.29
    commit id: "bump versions again" tag: "v7.1.0-alpha.30"
    checkout next
    merge next-release

Loading

This is because the way that "unreleased" changes are found is to list all the commits that are part of the current history of HEAD, except for the commits that are part of the history of the latest version tag. And since the bugfix is not part of the history of the previous version, it will be included.