Skip to content

Themis v1.0.1

Choose a tag to compare

@Pheoxy Pheoxy released this 01 Jul 07:23
v1.0.1
9c53280

Summary

Themis v1.0.1 is a patch release focused on public repository operations, dependency maintenance, protected PR validation, GitHub Action Marketplace metadata, and release-gate automation after the initial v1.0.0 release.

Highlights

  • Repo-specific issue and pull request templates for Themis policy, release, and validation workflows.
  • Structured issue forms for bug reports, feature requests, and policy false positives.
  • GitHub Sponsors metadata and CODEOWNERS metadata.
  • Renovate configuration for Nix flake inputs and GitHub Actions.
  • Explicit Renovate Nix manager opt-in and weekly lock-file maintenance for flake.lock.
  • PR validation now checks the PR head commit instead of GitHub's synthetic merge commit, avoiding false DCO failures for signed-off bot commits.
  • Renovate PR bodies include a checked automation acknowledgement compatible with Themis' PR-template gate.
  • GitHub Action branding metadata and Marketplace publication guidance.
  • Tag-triggered release workflow that runs release gates on v* tags.

Verification

Completed before tagging:

nix flake check
nix run . -- release check
nix run . -- release audit --history --format markdown
nix run . -- self-check --repo . --base HEAD~1 --body-file examples/pr-body.md --evidence "nix flake check passed" --human --run-checks
git tag -v v1.0.1

Results:

  • nix flake check: pass
  • release check: pass
  • release audit --history: pass
  • self-check: pass
  • signed tag verification: pass

GitHub Action Smoke Test

Tag Release Workflow

Upgrade Notes

Use Pheoxy/themis@v1.0.1 in GitHub workflows for stable action pinning.

Non-Guarantees

Themis is a pre-upstream readiness gate. Passing Themis or this release's checks does not certify code correctness, security, licensing, legal compliance, or upstream acceptance.

Links