结构化发布工作流：自动化安全审计、测试与版本管理 | 持续集成部署

release by parcadei/continuous-claude-v3

194 周安装量

3,600 GitHub Stars

GitHub

安装命令

npx skills add https://github.com/parcadei/continuous-claude-v3 --skill release

自动化开发运维测试

🇨🇳中文介绍

/release - 发布工作流

结构化的发布准备流程，让发布更有信心。

何时使用

"准备发布"
"发布版本 X"
"发布到生产环境"
"进行发布"
"准备部署"
在任何生产部署之前

工作流概览

┌─────────┐    ┌─────────┐    ┌──────────────┐    ┌──────────┐    ┌─────────┐
│  aegis  │───▶│  atlas  │───▶│ review-agent │───▶│  herald  │───▶│  scribe │
│         │    │         │    │              │    │          │    │         │
└─────────┘    └─────────┘    └──────────────┘    └──────────┘    └─────────┘
  Security       E2E            Final              Version         Release
  audit          tests          review             bump            notes

代理序列

| 代理 | 角色 | 输出

---|---|---|--- 1 | aegis | 安全漏洞扫描 | 安全报告 2 | atlas | 运行完整的端到端测试套件 | 测试报告 3 | review-agent | 最终发布审查 | 发布批准 4 | herald | 版本号递增，生成变更日志 | 更新后的版本文件 5 | scribe | 发布说明，文档 | RELEASE.md，文档

为何按此顺序？

安全第一：在发布前发现漏洞
端到端测试：验证整个系统端到端正常工作

广告位招租

在这里展示您的产品或服务

触达数万 AI 开发者，精准高效

联系我们

阶段 1：安全审计

Task(
  subagent_type="aegis",
  prompt="""
  Security audit for release: [VERSION]

  Scan for:
  - Dependency vulnerabilities (npm audit, pip audit)
  - Hardcoded secrets/credentials
  - SQL injection, XSS, CSRF risks
  - Authentication/authorization issues
  - Insecure configurations

  Output: Security report with severity levels
  """
)

阶段 2：端到端测试

Task(
  subagent_type="atlas",
  prompt="""
  Run E2E tests for release: [VERSION]

  Execute:
  - Full E2E test suite
  - Critical path tests
  - Integration tests
  - Performance benchmarks (if applicable)

  Output: Test report with pass/fail counts
  """
)

阶段 3：最终审查

Task(
  subagent_type="review-agent",
  prompt="""
  Final release review: [VERSION]

  Review:
  - Security audit results
  - E2E test results
  - Changes since last release (git log)
  - Breaking changes
  - Migration requirements

  Output: RELEASE_APPROVED or RELEASE_BLOCKED with reasons
  """
)

阶段 4：版本号递增与变更日志

Task(
  subagent_type="herald",
  prompt="""
  Prepare release: [VERSION]

  Tasks:
  - Bump version in package.json/pyproject.toml
  - Generate CHANGELOG.md entry
  - Update version constants in code
  - Tag commit (don't push yet)

  Follow semantic versioning.
  """
)

阶段 5：发布说明

Task(
  subagent_type="scribe",
  prompt="""
  Write release notes: [VERSION]

  Include:
  - Summary of changes
  - New features
  - Bug fixes
  - Breaking changes
  - Migration guide (if needed)
  - Contributors

  Output: RELEASE.md or update docs
  """
)

主版本发布（破坏性变更）

/release --major
→ Full workflow with migration guide

次版本发布（新功能）

/release --minor
→ Full workflow, lighter security review

补丁版本发布（错误修复）

/release --patch
→ Security + tests + quick review

/release --hotfix
→ Expedited: aegis → atlas → herald

User: /release v2.0.0

Claude: Starting /release workflow for v2.0.0...

Phase 1: Security audit...
[Spawns aegis]
✅ No critical vulnerabilities
⚠️ 2 low-severity issues (documented)

Phase 2: E2E tests...
[Spawns atlas]
✅ 156/156 E2E tests passing

Phase 3: Final review...
[Spawns review-agent]
✅ RELEASE_APPROVED
- 47 commits since v1.9.0
- 3 new features
- 12 bug fixes
- No breaking changes

Phase 4: Version bump...
[Spawns herald]
✅ Version bumped to 2.0.0
✅ CHANGELOG.md updated
✅ Git tag created

Phase 5: Release notes...
[Spawns scribe]
✅ RELEASE-v2.0.0.md created

┌─────────────────────────────────────────┐
│ Release v2.0.0 Ready                    │
├─────────────────────────────────────────┤
│ Security: ✅ Passed                     │
│ Tests: ✅ 156/156                       │
│ Review: ✅ Approved                     │
│                                         │
│ Next steps:                             │
│ 1. git push origin v2.0.0              │
│ 2. Create GitHub release               │
│ 3. Deploy to production                │
└─────────────────────────────────────────┘

工作流在以下情况会停止：

发现严重安全漏洞
端到端测试失败
审查结果为 RELEASE_BLOCKED

Phase 1: Security audit...
❌ CRITICAL: SQL injection in user.py:45

Release blocked. Fix critical issues before proceeding.

--major/--minor/--patch：语义化版本类型
--hotfix：快速发布路径
--skip-security：跳过安全审计（不推荐）
--dry-run：运行检查但不递增版本号

🇺🇸English

/release - Release Workflow

Structured release preparation to ship with confidence.

When to Use

"Prepare a release"
"Ship version X"
"Release to production"
"Cut a release"
"Ready to deploy"
Before any production deployment

Workflow Overview

┌─────────┐    ┌─────────┐    ┌──────────────┐    ┌──────────┐    ┌─────────┐
│  aegis  │───▶│  atlas  │───▶│ review-agent │───▶│  herald  │───▶│  scribe │
│         │    │         │    │              │    │          │    │         │
└─────────┘    └─────────┘    └──────────────┘    └──────────┘    └─────────┘
  Security       E2E            Final              Version         Release
  audit          tests          review             bump            notes

Agent Sequence

| Agent | Role | Output

---|---|---|---
1 | aegis | Security vulnerability scan | Security report
2 | atlas | Run full E2E test suite | Test report
3 | review-agent | Final release review | Release approval
4 | herald | Version bump, changelog generation | Updated version files
5 | scribe | Release notes, documentation | RELEASE.md, docs

Why This Order?

Security first : Catch vulnerabilities before they ship
E2E tests : Verify full system works end-to-end
Final review : Human-in-the-loop approval
Version bump : Only after approval
Documentation : Ship with proper release notes

Execution

Phase 1: Security Audit

Task(
  subagent_type="aegis",
  prompt="""
  Security audit for release: [VERSION]

  Scan for:
  - Dependency vulnerabilities (npm audit, pip audit)
  - Hardcoded secrets/credentials
  - SQL injection, XSS, CSRF risks
  - Authentication/authorization issues
  - Insecure configurations

  Output: Security report with severity levels
  """
)

Phase 2: E2E Tests

Task(
  subagent_type="atlas",
  prompt="""
  Run E2E tests for release: [VERSION]

  Execute:
  - Full E2E test suite
  - Critical path tests
  - Integration tests
  - Performance benchmarks (if applicable)

  Output: Test report with pass/fail counts
  """
)

Phase 3: Final Review

Task(
  subagent_type="review-agent",
  prompt="""
  Final release review: [VERSION]

  Review:
  - Security audit results
  - E2E test results
  - Changes since last release (git log)
  - Breaking changes
  - Migration requirements

  Output: RELEASE_APPROVED or RELEASE_BLOCKED with reasons
  """
)

Phase 4: Version Bump & Changelog

Task(
  subagent_type="herald",
  prompt="""
  Prepare release: [VERSION]

  Tasks:
  - Bump version in package.json/pyproject.toml
  - Generate CHANGELOG.md entry
  - Update version constants in code
  - Tag commit (don't push yet)

  Follow semantic versioning.
  """
)

Phase 5: Release Notes

Task(
  subagent_type="scribe",
  prompt="""
  Write release notes: [VERSION]

  Include:
  - Summary of changes
  - New features
  - Bug fixes
  - Breaking changes
  - Migration guide (if needed)
  - Contributors

  Output: RELEASE.md or update docs
  """
)

Release Types

Major Release (Breaking Changes)

/release --major
→ Full workflow with migration guide

Minor Release (New Features)

/release --minor
→ Full workflow, lighter security review

Patch Release (Bug Fixes)

/release --patch
→ Security + tests + quick review

Hotfix

/release --hotfix
→ Expedited: aegis → atlas → herald

Example

User: /release v2.0.0

Claude: Starting /release workflow for v2.0.0...

Phase 1: Security audit...
[Spawns aegis]
✅ No critical vulnerabilities
⚠️ 2 low-severity issues (documented)

Phase 2: E2E tests...
[Spawns atlas]
✅ 156/156 E2E tests passing

Phase 3: Final review...
[Spawns review-agent]
✅ RELEASE_APPROVED
- 47 commits since v1.9.0
- 3 new features
- 12 bug fixes
- No breaking changes

Phase 4: Version bump...
[Spawns herald]
✅ Version bumped to 2.0.0
✅ CHANGELOG.md updated
✅ Git tag created

Phase 5: Release notes...
[Spawns scribe]
✅ RELEASE-v2.0.0.md created

┌─────────────────────────────────────────┐
│ Release v2.0.0 Ready                    │
├─────────────────────────────────────────┤
│ Security: ✅ Passed                     │
│ Tests: ✅ 156/156                       │
│ Review: ✅ Approved                     │
│                                         │
│ Next steps:                             │
│ 1. git push origin v2.0.0              │
│ 2. Create GitHub release               │
│ 3. Deploy to production                │
└─────────────────────────────────────────┘

Blockers

The workflow stops if:

Critical security vulnerability found
E2E tests failing
Review verdict is RELEASE_BLOCKED

Phase 1: Security audit... ❌ CRITICAL: SQL injection in user.py:45

Release blocked. Fix critical issues before proceeding.

Flags

--major/--minor/--patch: Semantic version type
--hotfix: Expedited release path
--skip-security: Skip security audit (not recommended)
--dry-run: Run checks without bumping version

Weekly Installs

194

Repository

parcadei/contin…laude-v3

GitHub Stars

3.6K

First Seen

Jan 22, 2026

Security Audits

Gen Agent Trust HubPass SocketPass SnykPass

Installed on

opencode188

gemini-cli186

codex186

cursor184

github-copilot182

amp180