Skip to content

ci(release): Switch from action-prepare-release to Craft #3069

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
szokeasaurusrex merged 24 commits into from
Jan 15, 2026
Merged

ci(release): Switch from action-prepare-release to Craft #3069

szokeasaurusrex merged 24 commits into from
Jan 15, 2026
+8 −3

Conversation

@BYK
Copy link
Member

@BYK BYK commented Jan 9, 2026

Summary

This PR migrates from the deprecated action-prepare-release to the new Craft GitHub Actions.

Changes

  • Migrated .github/workflows/release.yml to Craft reusable workflow

Documentation

See https://getsentry.github.io/craft/github-actions/ for more information.

@BYK
ci(release): Switch from action-prepare-release to Craft
86bffec 
This PR migrates from the deprecated action-prepare-release to the new
Craft GitHub Actions (reusable workflow or composite action).

Changes:
- Migrate .github/workflows/release.yml to Craft reusable workflow
@BYK BYK requested review from a team and szokeasaurusrex as code owners January 9, 2026 17:59
@github-actions
Copy link
Contributor

github-actions bot commented Jan 9, 2026
edited
Loading

Semver Impact of This PR

🟢 Patch (bug fixes)

📋 Changelog Preview

This is how your changes will appear in the changelog.
Entries from this PR are highlighted with a left border (blockquote style).

Build / dependencies / internal 🔧

  • (release) Switch from action-prepare-release to Craft by BYK in #3069

Other

  • build(npm): 🤖 Bump optional dependencies to 3.1.0 in d0d143c3

🤖 This preview updates automatically when you update the PR.

BYK added 2 commits January 9, 2026 23:08
@BYK
ci(release): Restore GitHub App token authentication
04fd9dc 
The previous migration incorrectly removed the GitHub App token
authentication step. This commit restores it by switching to the
composite action pattern which preserves the auth flow.
@BYK
fix: Pin actions to SHA and add permissions blocks
2e7c5c5
sentry[bot]
sentry bot reviewed Jan 10, 2026
View reviewed changes
.github/workflows/release-ghcr-latest-tag.yml Outdated
Comment on lines 7 to 9
permissions:
contents: write
pull-requests: write

This comment was marked as outdated.

Sign in to view

cursor[bot]
cursor bot reviewed Jan 10, 2026
View reviewed changes
@BYK BYK requested a review from a team as a code owner January 10, 2026 01:35
@BYK BYK requested review from chargome and s1gr1d January 10, 2026 01:35
szokeasaurusrex
szokeasaurusrex requested changes Jan 12, 2026
View reviewed changes
Copy link
Member

@szokeasaurusrex szokeasaurusrex left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

We already discussed this over Slack, but please undo these extraneous version comments 🙏 then I will properly review this 😄

cursor[bot]
cursor bot reviewed Jan 13, 2026
View reviewed changes
BYK and others added 6 commits January 13, 2026 23:14
@BYK
Revert permissions changes to build.yml
2efc5b5
@BYK
Revert permissions changes to ci.yml
635e0b5
@BYK
Revert permissions changes to codeql-analysis.yml
1be85ab
@BYK
Revert permissions changes to rust-toolchain-update.yml
ccbcb2e
@BYK
Revert permissions changes to test_node.yml
3b0731f
@BYK
fix: clean up extraneous changes from migration script
8cdafc8 
- Remove changelog-preview.yml as requested by reviewer
- Restore original version comments (remove duplicate # vX # X.Y.Z)
- Restore original formatting and runner in release.yml
- Remove unnecessary permissions from GHCR workflows (keep only packages: write)
sentry[bot]
sentry bot reviewed Jan 13, 2026
View reviewed changes
.github/workflows/release.yml
Comment on lines 5 to +7
version:
description: Version to release
required: true
description: Version to release (or "auto")
required: false

This comment was marked as outdated.

Sign in to view

sentry[bot]
sentry bot reviewed Jan 14, 2026
View reviewed changes
.github/workflows/release.yml Outdated
version: ${{ github.event.inputs.version }}
force: ${{ github.event.inputs.force }}
merge_target: ${{ github.event.inputs.merge_target }}
version: ${{ inputs.version }}

This comment was marked as outdated.

Sign in to view

szokeasaurusrex
szokeasaurusrex approved these changes Jan 15, 2026
View reviewed changes
Copy link
Member

@szokeasaurusrex szokeasaurusrex left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

made a whitespace and comment change, I hope that is ok!

@szokeasaurusrex szokeasaurusrex enabled auto-merge (squash) January 15, 2026 10:40
@szokeasaurusrex szokeasaurusrex merged commit 9f34df8 into master Jan 15, 2026
25 checks passed
@szokeasaurusrex szokeasaurusrex deleted the ci/migrate-to-craft-action branch January 15, 2026 10:43
@BYK
Copy link
Member Author

BYK commented Jan 15, 2026

@szokeasaurusrex if you set the comment to a specific version like 2.19.0 then dependabot will never update it. Ideally we'd just use the v2 floating tag but at least we should use v2 as the comment to signal that we just pinned the SHA and want to keep upgrading

@szokeasaurusrex
Copy link
Member

szokeasaurusrex commented Jan 15, 2026

@BYK ive got an action that bumps all the shas and the version numbers every week

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@sentry sentry[bot] sentry[bot] left review comments

@cursor cursor[bot] cursor[bot] left review comments

@szokeasaurusrex szokeasaurusrex szokeasaurusrex approved these changes

@chargome chargome Awaiting requested review from chargome chargome was automatically assigned from getsentry/team-javascript-sdks

@s1gr1d s1gr1d Awaiting requested review from s1gr1d s1gr1d was automatically assigned from getsentry/team-javascript-sdks

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@BYK @szokeasaurusrex