Skip to main content

Release Workflow - Dual-Branch Architecture

Release Workflow - Dual-Branch Architecture

This guide documents the dual-branch release workflow for the Edge AI Accelerator project, establishing clear processes for development, release creation, and synchronization between Azure DevOps and GitHub.

In this guide

Architecture overview

Dual-branch model

The project uses a dual-branch architecture to separate development work from production-ready releases:

┌─────────────────────────────────────────────────────────────┐
│                    Azure DevOps Repository                  │
├─────────────────────────────────────────────────────────────┤
│                                                             │
│  ┌────────────────────────────────────────────────┐        │
│  │  dev branch (Development Branch)               │        │
│  │  • Primary development branch                  │        │
│  │  • All feature PRs target dev                  │        │
│  │  • Source for release branch creation          │        │
│  │  • Default branch for new PRs                  │        │
│  └────────────────────────────────────────────────┘        │
│                         │                                   │
│                         │ Release branch creation           │
│                         ▼                                   │
│  ┌────────────────────────────────────────────────┐        │
│  │  release/x.y.z (Release Staging Branch)        │        │
│  │  • Created from dev branch                     │        │
│  │  • Pushed to GitHub for review                 │        │
│  │  • One active release at a time                │        │
│  └────────────────────────────────────────────────┘        │
│                                                             │
│  ┌────────────────────────────────────────────────┐        │
│  │  main branch (Read-Only GitHub Mirror)         │        │
│  │  • Synced from GitHub main (every 3 hours)     │        │
│  │  • Protected - no direct commits               │        │
│  │  • Merged back to dev after sync               │        │
│  └────────────────────────────────────────────────┘        │
│                         ▲                                   │
└─────────────────────────┼───────────────────────────────────┘
                          │ Automated sync (every 3 hours)

┌─────────────────────────┼───────────────────────────────────┐
│                    GitHub Repository                        │
├─────────────────────────────────────────────────────────────┤
│                                                             │
│  ┌────────────────────────────────────────────────┐        │
│  │  release/x.y.z (Release Review Branch)         │        │
│  │  • Pushed from AzDO                            │        │
│  │  • Creates GitHub Release automatically        │        │
│  │  • Opens PR to main automatically              │        │
│  └────────────────────────────────────────────────┘        │
│                         │                                   │
│                         │ PR with 2+ approvals              │
│                         ▼                                   │
│  ┌────────────────────────────────────────────────┐        │
│  │  main branch (Source of Truth)                 │        │
│  │  • Protected - requires 2+ approvals           │        │
│  │  • Accepts release PRs from release/x.y.z      │        │
│  │  • Accepts community PRs from forks            │        │
│  │  • Synced to AzDO main automatically           │        │
│  └────────────────────────────────────────────────┘        │
│                                                             │
└─────────────────────────────────────────────────────────────┘

Key principles

  • Development happens on AzDO dev branch: All feature work, bug fixes, and improvements target the dev branch
  • GitHub main is source of truth: Production-ready code lives on GitHub main, synced to AzDO main
  • Release branches bridge the gap: Release branches move code from AzDO dev → GitHub main with review
  • Automated synchronization: GitHub main automatically syncs to AzDO main every 3 hours
  • One active release: Only one release branch can be active at a time to prevent conflicts

Branch structure

AzDO dev branch (Development)

Purpose: Primary development branch for all feature work

Characteristics:

  • Default branch for new pull requests
  • Receives all feature branches, bug fixes, improvements
  • Source branch for release creation
  • Protected with PR requirements (reviewers, build validation)

Access pattern:

# Clone repository
git clone https://dev.azure.com/ai-at-the-edge-flagship-accelerator/edge-ai/_git/edge-ai
cd edge-ai

# Create feature branch from dev
git checkout dev
git pull origin dev
git checkout -b feature/my-feature

# Submit PR targeting dev branch

AzDO main branch (Read-Only Mirror)

Purpose: Read-only mirror of GitHub main branch

Characteristics:

  • Synced from GitHub main every 3 hours automatically
  • Protected - no direct commits allowed
  • Build Service has bypass permissions for automated sync
  • Merged back to dev after successful sync

Access pattern:

# View current state of production code
git checkout main
git pull origin main

# DO NOT create branches from main
# DO NOT commit directly to main

Release branches (Staging)

Purpose: Stage releases for GitHub review and publication

Characteristics:

  • Created from AzDO dev branch using automated pipeline
  • Naming pattern: release/x.y.z (semantic versioning)
  • Pushed to GitHub automatically
  • Opens PR to GitHub main automatically
  • One active release at a time

Access pattern:

# Release branches created via pipeline only
# Manual creation not recommended

GitHub main branch (Source of Truth)

Purpose: Production-ready source of truth

Characteristics:

  • Protected with branch policies (2+ approvals required)
  • Accepts release PRs from release/x.y.z branches
  • Accepts community contributions from forked repositories
  • Creates GitHub releases with tags and changelogs
  • Synced to AzDO main every 3 hours

Development workflow

Feature development

Standard development process for team members:

  1. Create feature branch from dev:

    git checkout dev
    git pull origin dev
    git checkout -b feature/descriptive-name

  2. Develop and commit changes:

    git add .
    git commit -m "feat: descriptive commit message"
    git push origin feature/descriptive-name

  3. Create pull request:

    • Navigate to Azure DevOps → Repos → Pull Requests
    • Click "New Pull Request"
    • Source: feature/descriptive-name
    • Target: dev (automatically set via .azuredevops/pull_request_targets.yml)
    • Add reviewers and work item links
    • Submit for review

  4. Address review feedback:

    # Make requested changes
    git add .
    git commit -m "fix: address review comments"
    git push origin feature/descriptive-name

  5. Merge after approval:

    • Reviewer approves PR
    • Build validation passes
    • Merge to dev (squash merge recommended)
    • Delete feature branch after merge

Bug fixes

Process for bug fixes follows the same pattern as features:

git checkout dev
git pull origin dev
git checkout -b fix/issue-description
# Make fixes
git commit -m "fix: resolve issue with component"
git push origin fix/issue-description
# Create PR to dev

Hotfixes

Critical fixes that need immediate release:

  1. Create hotfix branch from current release or main:

    git checkout main
    git pull origin main
    git checkout -b hotfix/x.y.z

  2. Apply fix and test:

    git add .
    git commit -m "fix: critical security issue"
    git push origin hotfix/x.y.z

  3. Create PR to GitHub main directly:

    • Open PR on GitHub (not AzDO)
    • Get expedited review and approval
    • Merge to main after approval

  4. Backport to dev:

    # After hotfix merges to GitHub main
    git checkout dev
    git pull origin dev
    git cherry-pick <hotfix-commit-sha>
    git push origin dev

Release workflow

Creating a release

Automated release branch creation process:

  1. Trigger release pipeline:

    • Navigate to Azure DevOps → Pipelines → release-branch-create
    • Click "Run pipeline"
    • Pipeline validates prerequisites automatically (see validation steps below)
    • Pipeline creates new release branch from dev
    • Pipeline pushes release branch to GitHub

  2. Automated prerequisite validations:

    • Gap 1: Checks for active release PRs on GitHub (fails if one exists)
    • Gap 2: Validates GitHub and AzDO synchronization state:
      • Verifies GitHub main SHA matches AzDO main SHA (ensures sync complete)
      • Verifies AzDO main has been merged into dev branch (ensures dev is up-to-date)
      • Displays unreleased commits count (informational only)
    • Gap 3: Validates no duplicate version branches exist in either repository
    • If any validation fails, pipeline stops with clear remediation guidance

  3. Automatic GitHub processes:

    • GitHub workflow detects new release branch
    • Creates GitHub Release with version tag
    • Generates changelog from commits
    • Opens PR from release branch to main
    • Requires 2+ approvals for merge

  4. Release review:

    • Reviewers examine changes in GitHub PR
    • Run final validation tests
    • Approve when ready for production

  5. Release publication:

    • Merge PR to GitHub main (requires 2+ approvals)
    • GitHub Release becomes published
    • Changes sync to AzDO main within 3 hours
    • AzDO dev updated with changes from main

Release versioning

Semantic versioning scheme:

  • Major release (x.0.0): Breaking changes, major features
  • Minor release (x.y.0): New features, backward-compatible
  • Patch release (x.y.z): Bug fixes, security patches

Version determination:

  • GitVersion analyzes commit history
  • Conventional commit messages influence version bumps
  • Pipeline calculates next version automatically

Release checklist

Before creating release:

  • All planned features merged to dev
  • Build validation passes on dev
  • Documentation updated
  • Team notified of upcoming release

Note: The following checks are now automated by the pipeline and do not require manual verification:

  • ✅ No active release PRs exist on GitHub (Gap 1 validation)
  • ✅ GitHub main synchronized to AzDO main (Gap 2 validation)
  • ✅ AzDO main merged into dev (Gap 2 validation)
  • ✅ No duplicate version branches exist (Gap 3 validation)

During release review:

  • Changelog reviewed and accurate
  • All tests passing
  • Security scans complete
  • Breaking changes documented
  • Migration guide available (if needed)

After release:

  • GitHub Release published
  • Documentation site updated
  • Team notified of release
  • Monitor for issues

Synchronization process

GitHub to AzDO main (Automated)

Scheduled synchronization every 3 hours:

  1. Pipeline trigger:

    • Runs every 3 hours automatically
    • Can be triggered manually if needed

  2. Sync process:

    # Pipeline performs force-push from GitHub main to AzDO main
    git fetch github main
    git checkout main
    git reset --hard github/main
    git push azdo main --force

  3. Post-sync merge:

    • AzDO main updated to match GitHub main
    • Create PR from main to dev
    • Merge changes back to dev branch

Manual sync (Emergency)

If immediate sync needed before scheduled run:

  1. Trigger sync pipeline manually:

    • Navigate to Azure DevOps → Pipelines → github-pull
    • Click "Run pipeline"
    • Select "main" branch
    • Run pipeline

  2. Verify sync success:

    • Sync status is automatically validated by the release pipeline (Gap 2 check)
    • No manual verification needed; the release pipeline will fail with clear guidance if sync is incomplete
    • If you need to manually verify: check that AzDO main matches GitHub main commit SHA

Team guidelines

Pull request guidelines

Creating pull requests:

  • Always target dev branch (automatically set)
  • Link related work items
  • Provide clear description
  • Include testing evidence
  • Update documentation if needed

Reviewing pull requests:

  • Verify changes align with requirements
  • Check for security implications
  • Ensure tests are adequate
  • Validate documentation updates
  • Approve only when confident

Branch protection rules

AzDO dev branch:

  • Minimum 1 reviewer required
  • Build validation must pass
  • Comment resolution required
  • Direct commits blocked

AzDO main branch:

  • Minimum 1 reviewer required (automated sync bypasses)
  • Direct commits blocked for all users
  • Build Service has bypass permissions

GitHub main branch:

  • Minimum 2 reviewers required
  • Build validation must pass
  • Direct commits blocked
  • Only release PRs and community PRs accepted

Commit message conventions

Follow conventional commits:

<type>(<scope>): <subject>

<body>

<footer>

Types:

  • feat: New feature
  • fix: Bug fix
  • docs: Documentation changes
  • chore: Maintenance tasks
  • refactor: Code refactoring
  • test: Test additions/changes
  • ci: CI/CD changes

Examples:

feat(iot-ops): add MQTT broker configuration
fix(terraform): resolve Azure provider version conflict
docs(release): document dual-branch workflow
chore(deps): update terraform providers to latest

Merge strategies

Feature branches to dev:

  • Squash merge (recommended): Combines all commits into one clean commit
  • Merge commit: Preserves all individual commits (use when commit history is valuable)

Release branches to main:

  • Merge commit (required): Preserves complete release history

Main to dev:

  • Merge commit (required): Maintains synchronization history

Troubleshooting

Common Issues and Solutions

Issue 1: Release Workflow Fails to Create PR

Symptoms:

  • Workflow completes but no PR created
  • Error: "Failed to create pull request"
  • PR creation step shows failure

Possible Causes:

  1. Insufficient permissions for automation
  2. Branch protection prevents PR creation
  3. Release branch already exists
  4. Invalid version format

Solutions:

Check Permissions:

# GitHub: Verify github-actions bot has write access
# Settings → Actions → General → Workflow permissions
# Ensure "Read and write permissions" selected

# Azure DevOps: Verify build service permissions
# Project Settings → Repositories → Security
# Grant "Contribute", "Create Branch", "Create Tag"

Delete Existing Release Branch:

git fetch origin
git branch -r | grep release/v1.2.3
git push origin --delete release/v1.2.3

Verify Version Format:

  • Must be semantic version: MAJOR.MINOR.PATCH
  • Examples: 1.2.3, 2.0.0, 0.1.0
  • Pre-release: 1.2.3-rc1, 1.2.3-beta1

Re-run Workflow:

gh workflow run create-release.yml \
  --ref dev \
  -f version=1.2.3 \
  -f prerelease=false

Issue 2: Dev/Main Synchronization Fails

Symptoms:

  • Sync workflow fails with error
  • dev branch not updated after release
  • Error: "dev has unreleased commits"

Possible Causes:

  1. Dev has commits not in release
  2. Force-push permissions not configured
  3. Branch protection prevents sync
  4. Network or timeout issues

Solutions:

Check for Unreleased Commits:

git fetch origin main dev
git log origin/main..origin/dev --oneline

If commits exist:

  • These commits were not included in the release
  • Create new release including these commits, OR
  • Cherry-pick commits to main, OR
  • Discard commits (if safe to do so)

Manual Sync (if commits resolved):

git fetch origin main
git push origin main:dev --force

Verify Automation Permissions:

# GitHub: Check Actions bot can force-push to dev
# Settings → Branches → dev → Edit
# Allow force pushes → Specify: github-actions[bot]

# Azure DevOps: Check build service bypass policies
# Project Settings → Repositories → dev → Bypass policies
# Add build service account

Check Workflow Logs:

gh run list --workflow=sync-dev-from-main.yml
gh run view <run-id> --log

Issue 3: Release Pipeline Fails at Synchronization Validation (Gap 2)

Symptoms:

  • Release pipeline fails during ValidatePrerequisites job
  • Error: "Gap 2 Violation: GitHub and AzDO main branches are not synchronized"
  • Error: "Gap 2 Violation: AzDO main not merged into dev"
  • Pipeline output shows SHA mismatch or merge-base failure

Possible Causes:

  1. Scheduled sync hasn't completed yet (syncs run every 3 hours)
  2. Recent commits to GitHub main not yet synced to AzDO
  3. AzDO main not merged into dev branch after previous release
  4. Sync pipeline failed in previous run
  5. Manual commits made directly to AzDO main

Solutions:

Check Sync Status:

# Check if AzDO main matches GitHub main
az repos show --repository edge-ai --query "defaultBranch" -o tsv
git ls-remote https://github.com/microsoft/edge-ai refs/heads/main

# Check if main is merged into dev
git fetch origin main dev
git merge-base --is-ancestor origin/main origin/dev && echo "✅ Main merged into dev" || echo "❌ Main NOT merged into dev"

# View unreleased commits (if any)
git log origin/main..origin/dev --oneline --graph

Wait for Scheduled Sync (recommended):

  • Sync runs automatically every 3 hours
  • Check .azuredevops/pipelines/github-pull.yml schedule
  • Monitor sync pipeline runs in Azure DevOps

Trigger Manual Sync:

# Trigger github-pull pipeline in Azure DevOps
az pipelines run --name "GitHub Pull Sync" --organization <org> --project edge-ai

# Or use Azure DevOps UI:
# Pipelines → github-pull → Run pipeline

Create Merge PR for Main to Dev (if main not in dev):

# Create branch and PR to merge main into dev
git checkout -b sync/main-to-dev origin/main
git push origin sync/main-to-dev

# Create PR via Azure DevOps:
az repos pr create \
  --source-branch sync/main-to-dev \
  --target-branch dev \
  --title "Sync: Merge main into dev" \
  --description "Automated sync of main branch into dev after release"

Verify and Retry:

# After sync completes, verify status
git fetch origin
git log origin/main --oneline -1  # GitHub main SHA
git log origin/main --oneline -1  # AzDO main SHA (should match)

# Re-run release pipeline
az pipelines run --name "Release Branch Create" --branch main

Issue 4: Release PR Merge Does Not Trigger Auto-Merge Workflow

Symptoms:

  • Release PR merged successfully
  • Release published
  • Dev branch not synchronized
  • Auto-merge workflow not triggered

Possible Causes:

  1. Workflow trigger configuration incorrect
  2. Pre-release published (workflow skips pre-releases)
  3. Release type not recognized
  4. Workflow disabled

Solutions:

Verify Workflow Enabled:

# GitHub
gh workflow view release-merge-to-main.yml

# If disabled
gh workflow enable release-merge-to-main.yml

Check Release Type:

gh release view v1.2.3 --json isPrerelease
# If true, workflow skipped (expected behavior)

Manually Trigger Workflow:

# GitHub
gh workflow run release-merge-to-main.yml \
  --ref main \
  -f release_tag=v1.2.3

# Azure DevOps
az pipelines run --name release-merge-to-main-pipeline \
  --branch main \
  --variables release_tag=v1.2.3

Verify Trigger Configuration:

GitHub .github/workflows/release-merge-to-main.yml:

on:
  release:
    types: [published]
  workflow_dispatch:
    inputs:
      release_tag:
        required: true

Azure DevOps azure-pipelines-release-merge.yml:

trigger: none
pr: none

resources:
  pipelines:
    - pipeline: release
      source: create-release-pipeline
      trigger:
        branches:
          include:
            - main

Issue 4: Release Notes Generation Fails or Incomplete

Symptoms:

  • Release notes empty or missing
  • AI generation errors
  • Incomplete commit history

Possible Causes:

  1. No commits since last release
  2. Git history unavailable
  3. API rate limits
  4. Incorrect tag references

Solutions:

Verify Commits Exist:

git fetch origin --tags
LAST_TAG=$(git describe --tags --abbrev=0 origin/dev)
git log $LAST_TAG..origin/dev --oneline

If no commits, release not needed.

Check Git Fetch Depth:

GitHub workflow:

- uses: actions/checkout@v4
  with:
    fetch-depth: 0  # Full history required

Azure DevOps pipeline:

- checkout: self
  fetchDepth: 0

Manually Generate Notes:

# Get commits since last tag
git log $(git describe --tags --abbrev=0)..HEAD --oneline

# Generate notes manually using conventional commits

Check API Rate Limits (if using AI generation):

# GitHub
gh api rate_limit

# If rate limited, wait or use manual notes

Issue 5: Breaking Change Detection Not Working

Symptoms:

  • Breaking changes in code not reflected in release notes
  • Version bump doesn't include major version increment
  • No breaking change warning in PR

Possible Causes:

  1. Commit messages missing ! suffix
  2. Detection script not running
  3. Conventional commits not enforced
  4. Breaking change marker in wrong position

Solutions:

Use Correct Commit Format:

# Breaking change format
git commit -m "feat!: change API endpoint structure"

# Or with body
git commit -m "feat: change API

BREAKING CHANGE: API endpoint structure changed"

Verify Detection in Workflow:

- name: Check for breaking changes
  run: |
    BREAKING=$(git log $LAST_TAG..HEAD --oneline | grep -E '^\w+!:' || true)
    if [ -n "$BREAKING" ]; then
      echo "breaking=true" >> $GITHUB_OUTPUT
    fi

Manual Version Override:

# If automation misses breaking change, manually specify major version
gh workflow run create-release.yml \
  --ref dev \
  -f version=2.0.0 \
  -f prerelease=false

Enforce Conventional Commits:

  • Add commit message linter (e.g., commitlint)
  • Configure PR checks to validate commit messages
  • Document commit conventions in CONTRIBUTING.md

Issue 6: Release Branch Not Deleted After Merge

Symptoms:

  • Release branch (e.g., release/v1.2.3) still exists after merge
  • Old release branches accumulating

Possible Causes:

  1. Auto-delete not configured
  2. Workflow step failed
  3. Permissions insufficient

Solutions:

Enable Auto-Delete in GitHub:

# Settings → General → Pull Requests
# Check "Automatically delete head branches"

Manual Delete:

# Delete locally
git branch -d release/v1.2.3

# Delete remotely
git push origin --delete release/v1.2.3

Configure Workflow Auto-Delete:

- name: Delete release branch
  if: success()
  run: |
    git push origin --delete release/${{ inputs.version }}

Bulk Delete Old Branches:

# List old release branches
git branch -r | grep 'release/'

# Delete multiple branches
git push origin --delete release/v1.0.0 release/v1.1.0

Issue 7: Merge Conflicts in Release PR

Symptoms:

  • Release PR to main shows conflicts
  • Unable to auto-merge release
  • Conflicts in multiple files

Possible Causes:

  1. Main and dev diverged (should not happen with force-push sync)
  2. Manual commits to main
  3. Hotfix not synced to dev
  4. Sync workflow failed previously

Solutions:

Check Branch Divergence:

git fetch origin main dev
git log origin/main..origin/dev --oneline  # Commits in dev not in main
git log origin/dev..origin/main --oneline  # Commits in main not in dev (should be empty)

Resolve Conflicts in Release Branch:

# Checkout release branch
git checkout release/v1.2.3
git fetch origin main

# Merge main into release branch
git merge origin/main

# Resolve conflicts
git status
# Edit conflicting files
git add .
git commit -m "Resolve merge conflicts"

# Push resolution
git push origin release/v1.2.3

Prevent Future Conflicts:

  • Verify sync workflow runs after each release
  • Never commit directly to main
  • Ensure hotfixes follow proper workflow

Issue 8: Workflow Timeout or Performance Issues

Symptoms:

  • Release workflow exceeds time limits
  • Workflow cancelled after 6 hours
  • Slow performance in CI checks

Possible Causes:

  1. Large repository history
  2. Expensive CI checks
  3. Network issues
  4. Resource constraints

Solutions:

Optimize Git Checkout:

- uses: actions/checkout@v4
  with:
    fetch-depth: 50  # Shallow clone for better performance

Increase Timeout:

jobs:
  create-release:
    timeout-minutes: 30  # Default is 360 (6 hours)

Parallelize CI Checks:

jobs:
  lint:
    runs-on: ubuntu-latest
  test:
    runs-on: ubuntu-latest
  security:
    runs-on: ubuntu-latest

Use Caching:

- uses: actions/cache@v4
  with:
    path: ~/.npm
    key: ${{ runner.os }}-node-${{ hashFiles('**/package-lock.json') }}

Monitor Workflow Performance:

# GitHub
gh run list --workflow=create-release.yml --limit 10

# Check individual job times
gh run view <run-id> --log

Issue 9: Version Tag Already Exists

Symptoms:

  • Error: "tag already exists"
  • Release creation fails at tagging step
  • Previous release with same version

Possible Causes:

  1. Previous failed release not cleaned up
  2. Manual tag creation
  3. Version not incremented

Solutions:

Check Existing Tags:

git fetch --tags
git tag -l 'v1.2.3'

Delete Incorrect Tag:

# Delete local tag
git tag -d v1.2.3

# Delete remote tag
git push origin :refs/tags/v1.2.3

Increment Version:

# Use next version instead
gh workflow run create-release.yml \
  --ref dev \
  -f version=1.2.4 \
  -f prerelease=false

Force Tag Update (use with caution):

git tag -f v1.2.3 <commit-sha>
git push origin v1.2.3 --force

Issue 10: Permissions Errors in Workflows

Symptoms:

  • Error: "Resource not accessible by integration"
  • Error: "Permission denied"
  • Workflow step fails with 403

Possible Causes:

  1. Insufficient workflow permissions
  2. GITHUB_TOKEN has limited scope
  3. Branch protection prevents automation
  4. Repository settings restrict workflows

Solutions:

Check Workflow Permissions:

GitHub:

permissions:
  contents: write      # For creating releases, tags
  pull-requests: write # For creating PRs
  issues: write        # For issue comments

Update Repository Settings:

# Settings → Actions → General → Workflow permissions
# Select "Read and write permissions"
# Check "Allow GitHub Actions to create and approve pull requests"

Configure Branch Protection Bypass:

# Settings → Branches → main/dev → Edit
# Allow specified actors to bypass required pull requests
# Add: github-actions[bot]

Use Personal Access Token (if needed):

- name: Create PR
  env:
    GITHUB_TOKEN: ${{ secrets.PERSONAL_ACCESS_TOKEN }}
  run: gh pr create --base main --head release/v1.2.3

Azure DevOps Permissions:

# Project Settings → Repositories → Security
# Grant build service:
# - Contribute
# - Create Branch
# - Create Tag
# - Bypass policies (for automation)

Diagnostic Commands

Health Check Script:

#!/bin/bash
# Release automation health check

echo "🔍 Checking release automation health..."

# Check branches exist
echo "📋 Checking branches..."
git fetch origin
git branch -r | grep -E 'origin/(main|dev)' || echo "❌ Missing branches"

# Check branch sync
echo "📊 Checking branch sync..."
git fetch origin main dev
MAIN_SHA=$(git rev-parse origin/main)
DEV_SHA=$(git rev-parse origin/dev)
if [ "$MAIN_SHA" == "$DEV_SHA" ]; then
  echo "✅ Branches in sync"
else
  echo "⚠️  Branches out of sync"
  echo "Main: $MAIN_SHA"
  echo "Dev:  $DEV_SHA"
  UNRELEASED=$(git log origin/main..origin/dev --oneline)
  echo "Unreleased commits:"
  echo "$UNRELEASED"
fi

# Check active release PRs
echo "🔄 Checking active release PRs..."
ACTIVE_PRS=$(gh pr list --base main --label release --state open --json number,title)
if [ "$ACTIVE_PRS" == "[]" ]; then
  echo "✅ No active release PRs"
else
  echo "⚠️  Active release PRs found:"
  echo "$ACTIVE_PRS" | jq -r '.[] | "  #\(.number): \(.title)"'
fi

# Check latest tag
echo "🏷️  Checking latest tag..."
LATEST_TAG=$(git describe --tags --abbrev=0 origin/main 2>/dev/null || echo "none")
echo "Latest tag: $LATEST_TAG"

# Check workflow status
echo "⚙️  Checking workflow status..."
RECENT_RUNS=$(gh run list --workflow=create-release.yml --limit 5 --json conclusion,status)
echo "$RECENT_RUNS" | jq -r '.[] | "  \(.status): \(.conclusion // "running")"'

# Check permissions
echo "🔒 Checking permissions..."
gh api repos/:owner/:repo/actions/permissions | jq '.default_workflow_permissions'

echo "✨ Health check complete"

Run Health Check:

# Save script as scripts/release-health-check.sh
chmod +x scripts/release-health-check.sh
./scripts/release-health-check.sh

Emergency Procedures

Manual Release Process (when automation fails):

  1. Create Release Branch:

    git checkout dev
    git pull origin dev
    git checkout -b release/v1.2.3

  2. Update Version:

    # Update version in relevant files (package.json, etc.)
    git commit -am "chore: bump version to 1.2.3"

  3. Generate Release Notes:

    # Get commits since last release
    git log $(git describe --tags --abbrev=0)..HEAD --oneline > release-notes.md
    # Edit and format manually

  4. Create PR to Main:

    git push origin release/v1.2.3
    gh pr create --base main --head release/v1.2.3 \
      --title "Release v1.2.3" \
      --body-file release-notes.md

  5. Merge and Tag:

    # After PR approval
    gh pr merge <pr-number> --merge
    git checkout main
    git pull origin main
    git tag v1.2.3
    git push origin v1.2.3

  6. Create Release:

    gh release create v1.2.3 \
      --title "v1.2.3" \
      --notes-file release-notes.md

  7. Sync Dev Branch:

    git push origin main:dev --force

Getting Help

Internal Support:

External Support:

  • Review Contributing Guidelines
  • Open discussion on GitHub Discussions
  • Submit issue for bugs or feature requests
  • Consult GitHub Actions documentation
  • Consult Azure DevOps documentation

Escalation Path:

  1. Check troubleshooting guide (this section)
  2. Review workflow logs and error messages
  3. Run health check script
  4. Contact team DevOps lead
  5. Open GitHub issue with full context

🤖 Crafted with precision by ✨Copilot following brilliant human instruction, then carefully refined by our team of discerning human reviewers.