Release checklist

OpenWork releases should be deterministic, easy to reproduce, and fully verifiable with CLI tooling.

Preflight

Sync the default branch (currently dev).
Run pnpm release:review and fix any mismatches.
If you are building sidecar assets, set SOURCE_DATE_EPOCH to the tag timestamp for deterministic manifests.

Bump versions (app + desktop + Tauri + Cargo):
- pnpm bump:patch or pnpm bump:minor or pnpm bump:major
Re-run pnpm release:review.
Build sidecars for the desktop bundle:
- pnpm --filter @different-ai/openwork prepare:sidecar
Commit the version bump.
Tag and push:
- git tag vX.Y.Z
- git push origin vX.Y.Z

Bump versions (includes packages/headless/package.json):
- pnpm bump:patch or pnpm bump:minor or pnpm bump:major
Build sidecar assets and manifest:
- pnpm --filter openwrk build:sidecars
Create the GitHub release for sidecars:
- gh release create openwrk-vX.Y.Z packages/headless/dist/sidecars/* --repo different-ai/openwork
Publish the package:
- pnpm --filter openwrk publish --access public

Use pnpm release:review --json when automating these checks in scripts or agents.

Release App publishes the Arch AUR package automatically after the Linux .deb asset is uploaded.

Required repo config:

GitHub Actions secret: AUR_SSH_PRIVATE_KEY (SSH key with push access to the AUR package repo)
Optional repo variable: AUR_REPO (defaults to openwork)

If you want Release App to publish openwrk, openwork-server, and owpenwork to npm, configure:

If NPM_TOKEN is not set, the npm publish job is skipped.