This document describes Veraison project release management for binaries, including release versioning, supported releases, and supported upgrades.
- X.Y.Z refers to the version (based on git tag) of Veraison that is released. This is the version of the Veraison binary.
- Breaking changes refer to schema changes, flag changes, and behavior changes of Veraison that may require existing content to be upgraded and may also introduce changes that could break backward compatibility.
- Milestone GitHub milestones are used by maintainers to manage each release. PRs and Issues for each release should be created as part of a corresponding milestone.
- Patch releases refer to applicable fixes, including security fixes, may be backported to support releases, depending on severity and feasibility.
All releases will be of the form vX.Y.Z where X is the major version, Y is the minor version and Z is the patch version. This project strictly follows semantic versioning.
The rest of the doc will cover the release process for the following kinds of releases:
The Veraison project is under active development to reach a stable target version of 1.0.0
- ALPHA: X.Y.0-alpha.W, W >= 0 (Branch : main)
- Alpha release, cut from main branch
- Unstable release which should only be used for early development purposes
- Released as needed before we cut a beta X.Y release
- Not supported
- BETA: X.Y.0-beta.W, W >= 0 (Branch : main)
- More stable than the alpha release to be used for testing purposes only
- Beta release, cut from main branch
- Released as needed before we cut a stable X.Y release
- Not supported
- RC: X.Y.0-rc.W, W >= 0 (Branch : main)
- Released as needed before we cut a stable X.Y release
- soak for ~ 2 weeks before cutting a stable release
- Bugfixes on new features only as reported through usage
- Release candidate release, cut from main branch
- Not supported
- STABLE: X.Y.0 (Branch: main)
- Stable release, cut from main when X.Y milestone is complete
- X.Y release branch cut for subsequent patch releases
- Supported as per the supported releases process defined below
- Patch Releases X.Y.Z, Z > 0 (Branch: release-X.Y, only cut when a patch is needed)
- No breaking changes
- Applicable fixes, including security fixes, may be cherry-picked from main into the latest supported minor release-X.Y branches.
- Patch release, cut from a release-X.Y branch
There aren't any stable releases of the Veraison project currently. Once a stable version of Veraison is released, that version will be supported as follow.
We expect to "support" n (current) and n-1 major.minor releases. "Support" means we expect users to be running that version in production. For example, when v1.3.0 comes out, v1.1.x will no longer be supported for patches and we encourage users to upgrade to a supported version as soon as possible. Support will be provided best effort by the maintainers via GitHub issues and pull requests.
We expect users to stay up-to-date with the versions of Veraison they use in production, but understand that it may take time to upgrade. We expect users to be running approximately the latest patch release of a given minor release and encourage users to upgrade as soon as possible.
Applicable fixes, including security fixes, may be cherry-picked into the release branch, depending on severity and feasibility. Patch releases are cut from that branch as needed.
This document builds on the ideas and implementations of release processes from Kubernetes, Helm, and Gatekeeper.