Merge pull request #74 from upstat-io/dev

nightly: 2026-03-05

Author: elucidsoft

.github/workflows/auto-release.yml

@@ -1,15 +1,14 @@
 name: Auto Release
 
-# Automatically tag and release on every merge to master — but ONLY after CI passes.
+# Automatically tag and release on every merge to master.
+# CI is guaranteed to have passed via branch protection (required status check).
 # Uses CalVer: v2026.02.27.N-alpha (UTC date + daily build counter + release stage).
 # The daily counter (N) is derived from git history via bump-build.sh, so multiple
 # merges on the same day correctly get .1, .2, .3, etc.
 # No commits to master — just tags the merge commit directly.
 
 on:
-  workflow_run:
-    workflows: ["CI"]
-    types: [completed]
+  push:
     branches: [master]
 
 # Queue releases — don't cancel in-progress ones.
@@ -24,8 +23,7 @@ permissions:
 jobs:
   auto-release:
     name: Tag & Release
-    # Only release if CI succeeded — never release on failure
-    if: github.event.workflow_run.conclusion == 'success'
+    # CI is guaranteed by branch protection — this only runs after a merge to master
     runs-on: ubuntu-latest
     timeout-minutes: 5
 

.github/workflows/ci.yml

@@ -3,8 +3,6 @@ name: CI
 on:
   pull_request:
     branches: [main, master]
-  push:
-    branches: [master]  # Needed to trigger website deploy via workflow_run
 
 env:
   CARGO_TERM_COLOR: always

.github/workflows/deploy-website.yml

@@ -1,12 +1,7 @@
 name: Deploy Website
 
 on:
-  # Deploy after CI completes on master (includes PR merges)
-  workflow_run:
-    workflows: ["CI"]
-    types: [completed]
-    branches: [master]
-  # Deploy directly on release commits (CI is skipped for these, but website needs version update)
+  # Deploy on every push to master (CI guaranteed by branch protection)
   push:
     branches: [master]
   workflow_dispatch:
@@ -15,7 +10,7 @@ permissions:
   contents: read
   pages: write
   id-token: write
-  actions: read  # Needed to download artifacts from other workflows
+  actions: read  # Needed to download test-results artifact from CI workflow
 
 concurrency:
   group: pages
@@ -26,13 +21,6 @@ env:
 
 jobs:
   build:
-    # push: only for release commits (CI is skipped, but website needs the version)
-    # workflow_run: only when CI succeeded (not when skipped for release commits)
-    # workflow_dispatch: always
-    if: >-
-      (github.event_name == 'push' && startsWith(github.event.head_commit.message, 'chore: release v')) ||
-      (github.event_name == 'workflow_run' && github.event.workflow_run.conclusion == 'success') ||
-      github.event_name == 'workflow_dispatch'
     runs-on: ubuntu-latest
     steps:
       - name: Checkout
@@ -47,7 +35,6 @@ jobs:
           branch: master
           name: test-results
           path: website/public
-          run_id: ${{ github.event.workflow_run.id }}
           if_no_artifact_found: warn
         continue-on-error: true