5.2 KiB
Release Process
This document outlines the release processes for the Composio SDK. We support both automated releases through GitHub Actions and manual releases when needed.
CLI Binary Release Process
The CLI binary release process is separate from npm publishing.
@composio/cliis marked private and is not published to npm via Changesets.- CLI binaries are built and published as GitHub Release assets by
.github/workflows/build-cli-binaries.yml. - Install and upgrade flows (
install.shandcomposio upgrade) download binaries from GitHub Releases. composio upgrade --betaresolves the newest CLI prerelease from GitHub Releases.
Triggers
The CLI binary workflow supports two entry points:
- Beta release: the auto-generated Changesets release PR titled
Release: update version - Stable release: manual
workflow_dispatch, but only from an existing beta release tag
Beta CLI Release
When the Changesets release PR is opened or updated, the workflow:
- Reads the bumped CLI version from
ts/packages/cli/package.json - Publishes a prerelease tag in the form
@composio/cli@<version>-beta.<pr-number> - Attaches the built binaries to that prerelease
Stable CLI Release
When running Build CLI Binaries manually:
- Enter an existing beta tag (for example
@composio/cli@1.2.3-beta.456) - The workflow verifies that the beta release already exists and is marked as a prerelease
- The workflow checks out the exact commit associated with that beta release
- The workflow rebuilds the binaries and publishes the stable release under
@composio/cli@<version>
What the workflow does
- Builds CLI binaries for Linux/macOS (x64 + arm64)
- Creates platform zip archives (
composio-<platform>.zip) - Publishes assets to the beta or stable GitHub Release
- Runs
.github/workflows/cli.test-installation.ymlto validate installation paths and shell integration
Notes
- Stable promotion is intentionally gated on an existing beta release so the shipped stable binaries always correspond to a tested beta artifact.
Automated Release Process
The automated release process is triggered when code is merged into the main branch or manually through GitHub Actions.
Requirements
NPM_TOKENsecret must be configured in GitHub repository settingsCI_BOT_TOKENsecret for GitHub authentication- All changes must be documented using Changesets
- All quality checks must pass
Using Automated Release
-
For Regular Releases (via main branch)
- Make sure your changeset is added to the PR you are merging to main. Run
pnpm changeseton your branch before submiting the PR - Get your PR merged to main
- The workflow will automatically:
- Create a release PR
- Publish packages when the release PR is merged
- Make sure your changeset is added to the PR you are merging to main. Run
-
For Manual Triggers
- Go to GitHub Actions
- Select "TS SDK Release" workflow
- Click "Run workflow" on main branch
- Monitor the workflow progress
Manual Release Process
The manual release process is available for cases where direct control over the release process is needed.
Prerequisites
- Node.js, Bun, Python, Deno, uv, and pnpm from
mise.toml - Access to npm registry
- Write access to the repository
Steps
-
Prepare for Release
# Ensure you're on the latest main git checkout main git pull origin main # Install dependencies mise install pnpm install # Run quality checks pnpm build pnpm check:peer-deps -
Create Changeset
pnpm changeset- Select affected packages
- Choose version bump type (major/minor/patch)
- Write a detailed change description
- Commit the generated changeset file
For pre-releases:
pnpm changeset:pre-enter pnpm changeset -
Version Packages
pnpm changeset:version- Review the version changes
- Commit the package bumps
-
Publish Packages
# Ensure you're logged in to npm npm login # Publish pnpm changeset:release
Troubleshooting
-
Authentication Issues
- Ensure you're logged in to npm (
npm login) - Check npm token validity
- Verify registry settings in
.npmrc
- Ensure you're logged in to npm (
-
Build Failures
- Clear node_modules:
pnpm clean - Reinstall dependencies:
pnpm install - Check for peer dependency issues
- Clear node_modules:
-
Version Conflicts
- Check package.json versions
- Verify changeset entries
- Review git tags
Best Practices
-
Changesets
- Write clear, descriptive changeset messages
- Include breaking changes prominently
- Reference relevant issues/PRs
-
Version Management
- Follow semver strictly
- Document breaking changes
- Update peer dependencies appropriately
-
Quality Assurance
- Run all tests before release
- Check bundle sizes
- Verify documentation updates
Post-Release
-
Verification
- Check npm registry for new versions
- Verify package installations
- Test example projects
-
Documentation
- Update changelog if needed
- Update version numbers in docs
- Announce breaking changes
-
Cleanup
- Remove pre-release branches if any
- Update release tickets/issues
- Archive release artifacts