chore(ci): consolidate release pipeline — remove npm-publish.yml, fix idempotent release (T5508)#56
Merged
kryptobaseddev merged 3 commits intomainfrom Mar 6, 2026
Merged
Conversation
- Delete npm-publish.yml: redundant with release.yml, not in OIDC trust list,
was the cause of the E404 during v2026.3.14 publish attempt
- release.yml: single consolidated job (was 3 jobs each rebuilding the project)
- release.yml: idempotent GitHub release via gh CLI (delete+recreate — no more
"too many retries" failures on re-runs when release already exists)
- release.yml: add workflow_dispatch break-glass with version input (retry a
failed release without re-pushing the tag)
- release.yml: all ${{ }} expressions passed via env: vars (no injection surface)
- ADR-016 §8.3/8.6: update workflow architecture diagram and CI summary table
to reflect single-job design and removal of npm-publish.yml
Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
- Delete docs/specs/CLEO-INSTALL-CHANNELS-SPEC.md — redundant draft mirroring ADR-016; ADR-016 is the canonical SSoT for install channels and release pipeline (§8.3/8.6 already updated in prior commit) - src/protocols/release.md: remove CLEO-specific CI/CD workflow names and stale @cleocode/mcp-server section; replace with project-agnostic cleo release init-ci pattern - src/protocols/agent-protocol.md: rewrite as MCP-first; demote CLI (ct) to fallback table; add query/mutate operation tables for all domains; all operations available via MCP — same shared core as CLI - src/protocols/artifact-publish.md: fix stale example (mcp-server/ directory removed); use generic package.json path - src/protocols/testing.md, validation.md: annotate stale PROTOCOL-ENFORCEMENT-SPEC.md reference as ARCHIVED (T5492) Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
Validates AuditLogInsertSchema before SQLite insert in writeToSqlite().
Invalid payloads are logged as warnings and skipped rather than throwing.
Rescued from stash@{4} — code was complete but orphaned.
Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
1 participant
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Summary
npm-publish.yml— redundant withrelease.yml, not in OIDC trust list (was the cause of E404 during v2026.3.14 publish attempt)release.ymlsingle consolidated job — was 3 jobs each rebuilding the project; now one job, one buildsoftprops/action-gh-release@v2with directgh releaseCLI that deletes+recreates; safe to re-run, no more "too many retries" failuresworkflow_dispatchbreak-glass — can now retry a failed release without re-pushing the tag; acceptsversioninput, tag must exist on mainnpm-publish.ymlAfter merge
Will trigger
workflow_dispatchonrelease.ymlwithversion=2026.3.14to complete the npm + MCP Registry publish for the already-tagged v2026.3.14 release.