Before releasing, it is a good idea to run ./gradlew japicmp
on the main branch and verify that
there are no unexpected public API changes seen in the docs/apidiffs/current_vs_latest
directory. Additionally, ensure that appropriate @since
annotations are added to any additions to
the public APIs.
When preparing the change log, you can use
git log upstream/v$MAJOR.$((MINOR-1)).x..upstream/v$MAJOR.$MINOR.x --graph --first-parent
or the Github compare tool
to view a summary of all commits since last release as a reference.
This repository roughly targets monthly minor releases from the main
branch on the Friday after
the first Monday of the month.
- Close the release milestone if there is one.
- Merge a pull request to
main
updating theCHANGELOG.md
.- The heading for the unreleased entries should be
## Unreleased
.
- The heading for the unreleased entries should be
- Run the Prepare release branch workflow.
- Press the "Run workflow" button, and leave the default branch
main
selected. - Review and merge the two pull requests that it creates
(one is targeted to the release branch and one is targeted to
main
).
- Press the "Run workflow" button, and leave the default branch
All patch releases should include only bug-fixes, and must avoid adding/modifying the public APIs.
In general, patch releases are only made for regressions, security vulnerabilities, memory leaks and deadlocks.
- Backport pull request(s) to the release branch.
- Run the Backport workflow.
- Press the "Run workflow" button, then select the release branch from the dropdown list,
e.g.
release/v1.9.x
, then enter the pull request number that you want to backport, then click the "Run workflow" button below that. - Review and merge the backport pull request that it generates.
- Merge a pull request to the release branch updating the
CHANGELOG.md
.- The heading for the unreleased entries should be
## Unreleased
.
- The heading for the unreleased entries should be
- Run the Prepare patch release workflow.
- Press the "Run workflow" button, then select the release branch from the dropdown list,
e.g.
release/v1.9.x
, and click the "Run workflow" button below that. - Review and merge the pull request that it creates for updating the version.
- Press the "Run workflow" button, then select the release branch from the dropdown list,
e.g.
- Run the Release workflow.
- Press the "Run workflow" button, then select the release branch from the dropdown list,
e.g.
release/v1.9.x
, and click the "Run workflow" button below that. - This workflow will publish the artifacts to maven central and will publish a GitHub release with release notes based on the change log.
- Review and merge the pull request that it creates for updating the change log in main (note that if this is not a patch release then the change log on main may already be up-to-date, in which case no pull request will be created).
- Press the "Run workflow" button, then select the release branch from the dropdown list,
e.g.
After releasing is done, you need to first update the docs. This needs to happen after artifacts have propagated to Maven Central so should probably be done an hour or two after the release workflow finishes.
./gradlew updateVersionInDocs -Prelease.version=x.y.z
./gradlew japicmp -PapiBaseVersion=a.b.c -PapiNewVersion=x.y.z
./gradlew --refresh-dependencies japicmp
Where x.y.z
is the version just released and a.b.c
is the previous version.
Create a PR to mark the new release in README.md on the main branch.
Finally, update the website docs to refer to the newly released version.
The following credentials are required for publishing (and automatically set in Github Actions):
GPG_PRIVATE_KEY
andGPG_PASSWORD
: GPG private key and password for signing.SONATYPE_USER
andSONATYPE_KEY
: Sonatype username and password.- Each maintainer will have their own set of Sonotype credentials with permission to publish to
the
io.opentelemetry
group prefix. - Request publishing permissions by commenting on OSSRH-63768 with confirmation from another maintainer.
- To obtain
SONATYPE_USER
andSONATYPE_KEY
for your account, login to oss.sonatype.org and navigate to Profile -> User Token -> Access User Token.
- Each maintainer will have their own set of Sonotype credentials with permission to publish to
the
Additionally, credentials are stored with maintainers via the OpenTelemetry 1Password account. The following defines the mapping from Github Action secret keys to 1Password keys:
Github Actions Key | 1Password Key |
---|---|
GPG_PASSWORD |
opentelemetry-java GPG_PASSWORD |
GPG_PRIVATE_KEY |
opentelemetry-java GPG_PRIVATE_KEY |
Releasing from the local setup can be done providing the previously mentioned four credential values, i.e.
GPG_PRIVATE_KEY
, GPG_PASSWORD
, SONATYPE_USER
and SONATYPE_KEY
:
export SONATYPE_USER=my_maven_user
export SONATYPE_KEY=my_maven_password
export GPG_PRIVATE_KEY=$(cat ~/tmp/gpg.key.txt)
export GPG_PASSWORD=<gpg password>
export RELEASE_VERSION=2.4.5 # Set version you want to release
./gradlew final -Prelease.version=${RELEASE_VERSION}