Add simplified gem release process

[justin808]

Summary

• Add lib/tasks/release.rake with gem-only release automation
• Add docs/RELEASE.md with comprehensive release documentation
• Simplify release process by removing npm package steps from react_on_rails version

Key Changes

New Release Task (lib/tasks/release.rake)

• Checks for uncommitted changes before starting
• Pulls latest changes from repository
• Bumps version using gem-release gem
• Publishes to RubyGems with OTP/2FA support
• Provides clear post-release instructions for CHANGELOG updates

New Documentation (docs/RELEASE.md)

• Prerequisites and setup instructions
• Step-by-step release process
• Version numbering guidelines (Semantic Versioning)
• Troubleshooting common issues
• Post-release checklist

Usage

# Release specific version
rake release[1.19.0]

# Auto-bump patch version
rake release

# Dry run
rake release[1.19.0,true]

Test Plan

• Verify rake task loads without errors
• Test dry-run mode with rake release[1.19.0,true]
• Review documentation for clarity and completeness
• Validate that the task matches gem-release gem expectations

🤖 Generated with Claude Code

Summary by CodeRabbit

• New Features

  • Added an automated release task to streamline gem publishing, including safety checks for uncommitted changes, optional version bumping, dry-run support, OTP guidance, and post-release instructions.

• Documentation

  • Introduced a comprehensive Release Process guide covering prerequisites, step-by-step commands, changelog updates, versioning guidance, troubleshooting (authentication, version conflicts, uncommitted changes), and post-release actions.

[coderabbitai]

Warning

Rate limit exceeded

@justin808 has exceeded the limit for the number of commits or files that can be reviewed per hour. Please wait 26 minutes and 21 seconds before requesting another review.

⌛ How to resolve this issue?

After the wait time has elapsed, a review can be triggered using the @coderabbitai review command as a PR comment. Alternatively, push new commits to this PR.

We recommend that you space out your commits to avoid hitting the rate limit.

🚦 How do rate limits work?

CodeRabbit enforces hourly rate limits for each developer per organization.

Our paid plans have higher rate limits than the trial, open-source and free plans. In all cases, we re-allow further reviews after a brief timeout.

Please see our FAQ for further information.

📥 Commits

Reviewing files that changed from the base of the PR and between 0aa687e and 26465fc.

📒 Files selected for processing (3)

• docs/RELEASE.md (1 hunks)
• lib/tasks/release.rake (1 hunks)
• lib/tasks/update_changelog.rake (1 hunks)

Walkthrough

Adds a release process document and a new Rake task to automate gem releases, including preflight checks, optional version bumping, rebase pull, release execution (with dry-run support), OTP guidance, and post-release changelog/commit instructions.

Changes

Cohort / File(s)	Summary
Release Documentation docs/RELEASE.md	Adds detailed release process guide: prerequisites, step-by-step commands (prepare/pull/release/dry run/OTP), changelog/versioning guidance, troubleshooting, and post-release actions.
Automated Release Task lib/tasks/release.rake	Introduces task :release, %i[gem_version dry_run] with helpers sh_in_dir(dir, command) and gem_root. Implements uncommitted-changes check, git pull --rebase, optional gem bump --no-commit with provided version, gem release unless dry run, and prints post-release changelog commit/push instructions.

Sequence Diagram(s)

sequenceDiagram
  autonumber
  actor Dev as Developer
  participant Rake as Rake Task: release
  participant Git as Git
  participant Gem as gem CLI
  participant RG as RubyGems

  Dev->>Rake: rake release[gem_version,dry_run]
  Rake->>Git: status (check for uncommitted changes)
  alt Uncommitted changes
    Rake-->>Dev: Abort with error
  else Clean
    Rake->>Git: pull --rebase (at gem root)
    opt gem_version provided
      Rake->>Gem: bump --no-commit <version>
    end
    alt dry_run
      Rake-->>Dev: Print simulated steps and post-release instructions
    else real release
      Rake->>Gem: release
      note over Rake,Gem: Prompt for OTP if required
      Gem->>RG: Push gem
      RG-->>Gem: Publish result
      Gem-->>Rake: Done
      Rake-->>Dev: Print CHANGELOG/commit/push follow-ups
    end
  end

Loading

Estimated code review effort

🎯 3 (Moderate) | ⏱️ ~20 minutes

Poem

Thump-thump, my paws tap out a beat,
A rake-run hop to make release complete.
I nudge the tags, I bump the ver,
Dry-run first—then publish purr.
With OTP, I take my leap—
Changelog carrots piled deep. 🥕✨

Pre-merge checks and finishing touches

✅ Passed checks (3 passed)

Check name	Status	Explanation
Description Check	✅ Passed	Check skipped - CodeRabbit’s high-level summary is enabled.
Title Check	✅ Passed	The title “Add simplified gem release process” succinctly captures the core change of the pull request, which is the introduction of an automated, streamlined release task and accompanying documentation for gem releases, making it clear and specific without extraneous detail.
Docstring Coverage	✅ Passed	No functions found in the changes. Docstring coverage check skipped.

---

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

• X
• Mastodon
• Reddit
• LinkedIn

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[claude]

Code Review for PR 187: Add simplified gem release process

Overview:
This PR adds release automation for the cypress-on-rails gem with a new rake task and comprehensive documentation. Overall, this is a solid contribution that will streamline the release process.

Code Quality and Best Practices

Strengths:

• Clean, readable code with good separation of concerns
• Proper use of Ruby idioms
• Good error handling with descriptive messages

Issues:

1. Missing update_changelog task (lib/tasks/release.rake:42-46, docs/RELEASE.md:60-62)

   • The release task references bundle exec rake update_changelog but this task does not exist
   • Recommendation: Either create the update_changelog task or update documentation

2. Helper methods defined inside task scope (lib/tasks/release.rake:15-21)

   • sh_in_dir and gem_root are defined inside the task block
   • Recommendation: Move to module-level helpers for better reusability

3. Missing gem-release dependency (cypress-on-rails.gemspec:19-23)

   • Task depends on gem-release but it is not in gemspec dependencies
   • Recommendation: Add gem-release to development dependencies in gemspec

Potential Bugs or Issues

1. Shell injection vulnerability (lib/tasks/release.rake:17)

   • Using system with string interpolation is unsafe
   • If dir contains special characters or spaces, this could fail or be exploited
   • Recommendation: Use Dir.chdir instead to avoid injection issues

2. Destructive git operation (lib/tasks/release.rake:33)

   • git pull --rebase can fail with conflicts, leaving repo in bad state
   • Recommendation: Add safety checks before pulling

3. Version file path assumption (lib/tasks/release.rake:34)

   • Assumes gem bump will find lib/cypress_on_rails/version.rb
   • Recommendation: Verify or explicitly specify the version file path

4. Error recovery instructions may fail (lib/tasks/release.rake:38)

   • If version was already bumped and tagged, re-running gem release could cause issues
   • Recommendation: Improve error handling with rollback or specific recovery steps

Security Concerns

1. Shell injection vulnerability - HIGH PRIORITY

   • The sh_in_dir method needs to be fixed to use Dir.chdir

2. OTP/Secret exposure

   • Consider adding warning about running in screen-shared sessions

Test Coverage

Missing:

• No unit tests for the new rake task
• No integration tests for the release workflow
• No tests for error scenarios

Recommendations:

• Add RSpec tests for dirty git state (should abort)
• Test dry-run mode
• Mock external commands (git, gem)

Documentation Quality

Strengths:

• Excellent documentation in docs/RELEASE.md
• Clear step-by-step instructions
• Good troubleshooting section

Minor issues:

• Should mention gem-release could be added to Gemfile instead of global install

Additional Recommendations

1. Add confirmation step for non-dry-run releases
2. Add version format validation (semantic versioning)
3. Consider automating GitHub release creation
4. Consider using github_changelog_generator

Summary

Severity Breakdown:

• HIGH: Shell injection vulnerability
• MEDIUM: Missing gem-release dependency, missing update_changelog task
• LOW: Helper method placement, documentation improvements

Recommendation: Approve with changes

This PR provides valuable release automation, but should address the shell injection vulnerability and missing dependency before merging.

Action Items:

1. Fix shell injection by using Dir.chdir instead of shell string interpolation
2. Add gem-release to development dependencies in gemspec
3. Either create update_changelog task or update documentation to clarify manual process
4. Consider adding basic tests for the release task
5. Add version format validation

Great work on the comprehensive documentation!

[claude]

PR Review: Add simplified gem release process

Summary

This PR introduces a rake task and documentation to streamline the gem release process. Overall, the implementation is solid and provides good value. Below are my findings organized by category.

---

Code Quality & Best Practices

Good:

• Clean, well-structured rake task with clear separation of concerns
• Proper use of frozen string literal comment
• Good use of heredoc for multi-line messages
• Clear task description with examples
• Consistent coding style with existing codebase

Suggestions:

1. Error handling could be more robust (lib/tasks/release.rake:16-17)

   • The sh_in_dir method uses system() with raise, but the error message does not capture the actual error output
   • Consider capturing stderr for better debugging

2. Shell injection risk (lib/tasks/release.rake:34-35)

   • The gem_version parameter is interpolated directly into shell commands without sanitization
   • While rake task args are typically safe, consider validating the version format against a regex pattern

---

Potential Bugs

1. Missing update_changelog rake task (lib/tasks/release.rake:42-44, docs/RELEASE.md:60-62)

   • Both files reference "bundle exec rake update_changelog", but this task does not exist in the codebase
   • Impact: Users will get an error when following the documented process
   • Fix: Either create this task or update documentation to manual CHANGELOG update process

2. Git status check may not catch all cases (lib/tasks/release.rake:24)

   • Checking only --porcelain might miss some edge cases
   • Consider more thorough validation

3. No validation of git remote (lib/tasks/release.rake:33)

   • The task runs git pull --rebase but does not verify if a remote is configured
   • Could fail silently or with cryptic errors

---

Performance Considerations

No significant performance concerns. The task is designed for infrequent use and operations are appropriately sequential.

---

Security Concerns

1. Command injection vulnerability (LOW) (lib/tasks/release.rake:34-35)

   • As mentioned above, gem_version should be validated before shell interpolation
   • While rake args are typically trusted, defense in depth is prudent

2. OTP handling (lib/tasks/release.rake:37-38)

   • Good practice: The task prompts for OTP rather than accepting it as a parameter
   • No security issues here

---

Test Coverage

Missing:

• No specs for the new rake task
• The PR test plan is incomplete (all checkboxes unchecked)

Recommendations:

1. Add RSpec tests for the rake task:

   • Test dry-run mode
   • Test version validation
   • Test error conditions (uncommitted changes, missing git remote)
   • Mock system calls to avoid actual git/gem operations

2. Add documentation testing:

   • Verify all referenced commands/tasks exist
   • Test the documented workflow in CI

---

Documentation Quality

Good:

• Comprehensive docs/RELEASE.md with clear step-by-step instructions
• Good troubleshooting section
• Proper semantic versioning guidance
• Good examples of usage

Issues:

1. Broken reference: update_changelog task does not exist (critical)
2. Missing prerequisite: Documentation should clarify whether gem-release needs to be installed globally or if it should be added as a development dependency

---

Additional Observations

1. Dependency management (docs/RELEASE.md:6-9)

   • Requires global installation of gem-release gem
   • Consider adding to gemspec as development dependency or document why it must be global

2. Version file location (lib/tasks/release.rake:34)

   • The task depends on gem bump which expects version in lib/cypress_on_rails/version.rb
   • This is correct for this gem

3. Dry run incomplete (lib/tasks/release.rake:38)

   • Dry run only skips gem release, but still runs git pull and gem bump
   • Consider making dry run skip all destructive operations

---

Recommendations Summary

Must Fix:

• Create the update_changelog rake task or update documentation to not reference it
• Complete the test plan checkboxes

Should Fix:

• Validate gem_version format before using in shell commands
• Add comprehensive RSpec tests for the rake task
• Improve error handling with better error messages
• Make dry run truly non-destructive

Nice to Have:

• Add gem-release to development dependencies
• Add git remote validation
• Improve git status validation

---

Conclusion

This is a valuable addition that will streamline the release process. The code is generally well-written and the documentation is thorough. The primary blocker is the missing update_changelog task. Once that is addressed and tests are added, this will be ready to merge.

Overall Assessment: Approve with changes requested

[claude]

Pull Request Review

Thank you for this contribution! I have reviewed PR #187 and have the following feedback:

✅ Strengths

1. Well-structured documentation - The new docs/RELEASE.md is comprehensive, covering prerequisites, step-by-step instructions, troubleshooting, and post-release actions.

2. Clear automation - The rake task in lib/tasks/release.rake automates the release process effectively with proper error handling.

3. Safety checks - Good inclusion of uncommitted changes check before proceeding with release.

4. Flexible versioning - Supports both explicit version specification and automatic patch bumping.

5. Dry-run support - Excellent addition for testing the release process without actually publishing.

🔍 Code Quality Observations

lib/tasks/release.rake Line 2: The frozen_string_literal comment is good practice ✓

Lines 24-26: Good safety check for uncommitted changes. However, consider adding a check for unpushed commits as well.

Lines 33-34: The git pull --rebase is good, but consider checking if already up-to-date first to avoid unnecessary operations.

Line 35: The gem bump command looks correct. Consider capturing the new version number to display it.

Line 38: The error handling message is helpful, but you might want to capture and handle gem-release errors more gracefully.

docs/RELEASE.md Line 72: Good use of semantic versioning reference.

Pre-release version format: You mention using dot notation instead of dashes. This is correct for RubyGems, but consider adding a note explaining why.

Line 86: Consider mentioning that gem-release needs to be installed globally, not just in the bundle.

⚠️ Potential Issues

1. Dependency verification - The rake task does not verify that gem-release is installed before attempting to use it.

2. Error handling - Line 17 uses raise for command failures, but this could be more descriptive with directory context.

3. OTP timeout - If the user takes too long to enter their OTP, the command might fail. Consider mentioning this in docs.

4. No rollback mechanism - If gem publishing fails after version bump and git push, recovery steps should be documented.

🔒 Security Considerations

1. API credentials - Good that the task relies on gem credentials being configured separately. Consider adding a note about securing API keys.

2. No production check - Consider adding an explicit environment check if this code might run in production.

📊 Test Coverage

Missing test coverage - This PR adds no automated tests for the rake task. Consider adding RSpec tests for the task logic, integration tests for the full release workflow, and tests for error conditions.

🚀 Performance Considerations

No significant performance concerns. The operations are sequential by necessity.

💡 Suggestions for Improvement

1. Add version validation for the gem_version format to catch typos early
2. Add a confirmation prompt before publishing to prevent accidental releases
3. Consider auto-generating CHANGELOG entries based on git commits
4. Automate GitHub release creation using gh CLI
5. Improve task description formatting for better readability

📝 Documentation Quality

The documentation is excellent overall. Minor suggestions:

• Add a Quick Start section at the top for experienced users
• Include a flowchart of the release process
• Add examples of command outputs
• Link to RubyGems documentation for OTP setup

✅ Checklist for Merge

Before merging, consider:

• Add automated tests for the rake task
• Add dependency checks for gem-release
• Improve error handling and recovery documentation
• Add version format validation
• Consider adding a confirmation prompt

🎯 Overall Assessment

This is a solid contribution that simplifies the release process. The code is clean, well-documented, and follows Ruby/Rails conventions. The main areas for improvement are:

1. Adding test coverage
2. Enhancing error handling
3. Adding dependency validation

The PR is approved pending consideration of the above suggestions. Great work on simplifying the release workflow!

[coderabbitai]

Actionable comments posted: 3

Caution

Some comments are outside the diff and can’t be posted inline due to platform limitations.

⚠️ Outside diff range comments (1)

lib/tasks/release.rake (1)

82-86: Inconsistency: Task does not create commits or tags.

According to the implementation, the task uses gem bump --no-commit, meaning it does NOT create commits or tags itself. However, the documentation claims it does (lines 82-86 in docs/RELEASE.md). The gem release command likely handles the commit, tag, and push operations, but this should be verified.

The documentation states:

• "Creates a git commit with the version bump" (line 82)
• "Creates a git tag for the new version" (line 83)
• "Pushes the commit and tag to GitHub" (line 84)

But the task uses --no-commit flag, which suggests these operations happen in the gem release command instead. Please verify the actual behavior and update the documentation accordingly to accurately reflect which command performs which operations.

🧹 Nitpick comments (1)

lib/tasks/release.rake (1)

35-35: Complex inline string interpolation reduces readability.

The nested conditional and string interpolation on line 35 is difficult to parse and maintain.

Apply this diff to improve clarity:

- sh_in_dir(gem_root, "gem bump --no-commit #{%(--version #{gem_version}) unless gem_version.strip.empty?}")
+ version_arg = gem_version.strip.empty? ? "" : "--version #{gem_version}"
+ sh_in_dir(gem_root, "gem bump --no-commit #{version_arg}".strip)

📜 Review details

Configuration used: CodeRabbit UI

Review profile: CHILL

Plan: Pro

📥 Commits

Reviewing files that changed from the base of the PR and between 5cea37d and 0aa687e.

📒 Files selected for processing (2)

• docs/RELEASE.md (1 hunks)
• lib/tasks/release.rake (1 hunks)

⏰ Context from checks skipped due to timeout of 90000ms. You can increase the timeout in your CodeRabbit configuration to a maximum of 15 minutes (900000ms). (4)

• GitHub Check: claude-review
• GitHub Check: rails_8
• GitHub Check: rails_6_1
• GitHub Check: rails_7_2

🔇 Additional comments (8)

docs/RELEASE.md (3)

20-26: Document is clear and helpful.

The preflight check instructions are clear and align well with the implementation's uncommitted changes check.

---

66-74: Version numbering guidance is accurate.

The Semantic Versioning guidance is clear and helpful, including the important note about pre-release version format using dots instead of dashes for RubyGems compatibility.

---

81-81: No changes required: version file path is accurate. The file lib/cypress_on_rails/version.rb exists in the repository.

lib/tasks/release.rake (5)

25-27: Preflight check implementation is correct.

The uncommitted changes check properly guards against releasing with dirty working directory state, matching the documentation.

---

29-31: Argument parsing is straightforward.

The task correctly parses the dry_run boolean and gem_version arguments with sensible defaults.

---

38-39: OTP guidance is helpful.

The reminder to carefully enter the OTP and instructions for manual retry if needed are user-friendly touches that will help prevent common release errors.

---

41-48: Post-release instructions are clear.

The heredoc message provides clear next steps for updating the changelog, which aligns with the documented process.

---

33-35: gem-release commands are valid

gem bump --no-commit correctly suppresses the default commit, and invoking gem release thereafter aligns with the gem-release documentation. No changes needed.

[coderabbitai]

⚠️ Potential issue | 🟡 Minor

Verify gem-release installation method.

The documentation suggests installing gem-release globally, but the task description at line 7 of lib/tasks/release.rake states it "is installed via bundle install". This inconsistency could confuse users.

Consider updating the documentation to clarify whether the gem should be installed globally or via Bundler, or document both approaches.

-1. Install the `gem-release` gem globally:
+1. Install the `gem-release` gem (either globally or via your Gemfile):
    ```bash
+   # Option 1: Global installation
    gem install gem-release
+   
+   # Option 2: Add to your Gemfile and run bundle install
+   # gem 'gem-release'
    ```

🤖 Prompt for AI Agents

In docs/RELEASE.md around lines 7 to 10, the instructions conflict with
lib/tasks/release.rake which says gem-release is installed via bundle; update
the docs to be explicit about both supported installation methods (global vs
Bundler) and show the recommended approach: either a single-line note to run
`gem install gem-release` for global use or, preferably, add gem 'gem-release'
to the project's Gemfile and run `bundle install`; ensure the wording clarifies
which method the release task expects (Bundler by default) and give both options
so readers are not confused.

[coderabbitai]

⚠️ Potential issue | 🔴 Critical

Critical: Command injection vulnerability.

The sh_in_dir method is vulnerable to command injection because it directly interpolates dir and command into a shell string without sanitization. A malicious directory path or command could escape the intended context.

Apply this diff to use safer command execution:

  def sh_in_dir(dir, command)
    puts "Running in #{dir}: #{command}"
-   system("cd #{dir} && #{command}") || raise("Command failed: #{command}")
+   Dir.chdir(dir) do
+     system(command) || raise("Command failed: #{command}")
+   end
  end

Alternatively, for even better safety, consider using Bundler.with_unbundled_env and splitting commands into arrays when possible.

📝 Committable suggestion

‼️ IMPORTANT
Carefully review the code before committing. Ensure that it accurately replaces the highlighted code, contains no missing lines, and has no issues with indentation. Thoroughly test & benchmark the code to ensure it meets the requirements.

Suggested change

	def sh_in_dir(dir, command)
	puts "Running in #{dir}: #{command}"
	system("cd #{dir} && #{command}") || raise("Command failed: #{command}")
	end
	def sh_in_dir(dir, command)
	puts "Running in #{dir}: #{command}"
	Dir.chdir(dir) do
	system(command) || raise("Command failed: #{command}")
	end
	end

🤖 Prompt for AI Agents

In lib/tasks/release.rake around lines 15-18, the sh_in_dir method interpolates
dir and command into a single shell string which allows command injection;
replace the shell interpolation with a safe approach: change to using
Dir.chdir(dir) { success = system(*Shellwords.split(command)) } (require
'shellwords') or use Open3.capture3/system with array arguments and a chdir
option (e.g., Open3.capture3(command_array, chdir: dir)) so no untrusted string
is passed to the shell; also consider wrapping execution with
Bundler.with_unbundled_env where appropriate and raise with a clear error when
the command returns false.

[claude]

Pull Request Review - PR #187: Add simplified gem release process

Overview

This PR adds a comprehensive release automation system for the cypress-on-rails gem. The implementation is well-structured and addresses a real need for streamlining the release process.

Strengths

Code Quality

• Clean separation of concerns: Three focused rake tasks with clear responsibilities
• Good error handling: Checks for uncommitted changes, validates git tags exist
• Clear documentation: Extensive docs/RELEASE.md with step-by-step instructions

Best Practices

• Dry-run support: The rake release[version,true] option allows safe testing (lib/tasks/release.rake:30)
• 2FA/OTP support: Acknowledges RubyGems 2FA requirements with clear messaging
• Version format validation: Correctly specifies RubyGems dot notation for pre-releases (e.g., 2.0.0.beta.1)

Issues and Recommendations

1. Critical: Missing gem-release dependency

The release task depends on the gem-release gem but it is not declared in the gemspec or Gemfile.

Issue: Users will get command failures when running gem bump or gem release (lib/tasks/release.rake:34-38)

Fix: Add to cypress-on-rails.gemspec: s.add_development_dependency 'gem-release'

2. Bug: Changelog regex does not handle pre-release versions correctly

The regex pattern in update_changelog.rake:44 may fail with pre-release versions containing dots.

Issue: The pattern (?:.\w+)? only matches single alphanumeric characters after the dot. For 2.0.0.beta.1, it will not match .1 correctly.

Fix: Change to use a more flexible pattern with asterisk instead of question mark to match zero or more occurrences.

3. Security: Command injection vulnerability

The sh_in_dir method does not sanitize inputs (lib/tasks/release.rake:16-17).

Risk: If gem_version contains shell metacharacters, it could lead to command injection.

Fix: Validate the gem_version parameter before interpolation with a regex that ensures it matches semantic versioning format.

4. Race Condition: Git pull before version bump

The task pulls latest changes (lib/tasks/release.rake:33) but does not verify the working directory is still clean afterward.

Recommendation: Add another check after git pull to ensure no conflicts or uncommitted changes were introduced.

5. Documentation: Incomplete troubleshooting

docs/RELEASE.md does not cover what to do if gem bump fails or if tags already exist locally but not remotely.

Recommendation: Add troubleshooting sections for tag conflicts, network failures during push, and RubyGems rate limiting.

Test Coverage

Missing: No automated tests for the rake tasks.

Recommendation: Add specs for release.rake and update_changelog.rake with mocked git/gem commands and fixture CHANGELOG files. Test edge cases like empty version, malformed CHANGELOG, and missing tags.

Security Assessment

Low Risk overall, but address the command injection risk in version parameter.

Summary Checklist

Must Fix (Blocking)

• Add gem-release as a development dependency
• Fix regex for pre-release version matching
• Add version format validation to prevent command injection

Should Fix (Non-blocking but important)

• Improve error messages in sh_in_dir
• Add working directory check after git pull
• Add automated tests for rake tasks

Nice to Have

• Expand troubleshooting documentation
• Add comments explaining v-prefix conventions

Final Verdict

Recommendation: Approve with changes requested

The PR provides solid infrastructure for release automation. Address the gem-release dependency and version validation issues before merging. The other suggestions can be addressed in follow-up PRs.

Great work simplifying the release process!

---

Review generated with assistance from Claude Code