prollytree 0.3.3

A prolly (probabilistic) tree for efficient storage, retrieval, and modification of ordered data.
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199

# Releasing ProllyTree

This document describes how to cut a release. The process is driven by the
[`Release` workflow](.github/workflows/release.yml), which is triggered
manually via GitHub Actions `workflow_dispatch`.

A release produces, in order:

1. A Rust crate published to [crates.io](https://crates.io/crates/prollytree)
2. Python wheels + source distribution published to
   [PyPI](https://pypi.org/project/prollytree/)
3. A GitHub Release tagged `v<version>` with the wheels and sdist attached

Each step is independently toggleable, and the whole pipeline has a dry-run
mode that validates packaging without publishing.

## Prerequisites

Configured once per repository:

- **`CARGO_REGISTRY_TOKEN`** — repository secret with a crates.io API token
  scoped to publish `prollytree`.
- **`pypi` GitHub Environment** — used for PyPI trusted publishing (OIDC). The
  project must be registered on PyPI with this repo + the `publish-python`
  job + the `pypi` environment as a trusted publisher. No PyPI API token is
  stored; the job mints short-lived credentials via `id-token: write`.
- **Branch protection / permissions** — whoever runs the workflow needs
  permission to dispatch workflows and (for the final step) `contents: write`
  to create the tag and GitHub Release.

## Versioning

- The release version is read from the `version` field of
  [`Cargo.toml`](Cargo.toml) by the `validate` job. There is no version input
  on the workflow — whatever is committed on the release branch is what ships.
- Suffixes `alpha`, `beta`, or `rc` in the version string cause the GitHub
  Release to be marked as a pre-release automatically.
- The version string appears in several places that are **not** derived from
  `Cargo.toml` and must all be bumped together by hand. If they drift, the
  crates.io release, the PyPI release, the CLI `--version` output, the
  rendered docs, and the GitHub tag can all disagree.

  | File | Role |
  | --- | --- |
  | [`Cargo.toml`](Cargo.toml) | Source of truth for crates.io and the GitHub tag (`validate` job reads this). |
  | [`Cargo.lock`](Cargo.lock) | Regenerates automatically on `cargo check`; commit the update. |
  | [`pyproject.toml`](pyproject.toml) | `[project].version` — what PyPI sees. Maturin uses this when it's set, so it does **not** inherit from `Cargo.toml`. |
  | [`python/prollytree/__init__.py`](python/prollytree/__init__.py) | `__version__` exported to Python consumers. |
  | [`python/docs/conf.py`](python/docs/conf.py) | Sphinx `version` and `release` — shows up on readthedocs. |
  | [`src/bin/prolly-ui.rs`](src/bin/prolly-ui.rs) | `#[command(version = ...)]` for the `prolly-ui --version` output. |
  | [`src/lib.rs`](src/lib.rs) | Version appears inside a rustdoc code example. |
  | [`README.md`](README.md) | Install snippets. |

  `src/git/git-prolly.rs` used to be in this list but now reads
  `env!("CARGO_PKG_VERSION")`, so it inherits from `Cargo.toml`
  automatically. The same treatment could be applied to `src/bin/prolly-ui.rs`
  to remove one more manual step.

  The [`scripts/check-version-consistency.sh`](scripts/check-version-consistency.sh)
  script asserts that every file above reports the same version as
  `Cargo.toml`. It runs in CI (see [`ci.yml`](.github/workflows/ci.yml)) and
  will fail the build on drift, so there's a net waiting to catch any missed
  file before a release even gets cut.

- Suffixes `alpha`, `beta`, or `rc` in the version string cause the GitHub
  Release to be marked as a pre-release automatically.

## Release branch convention

The `validate` job rejects any branch whose name does not start with
`release/` or `release-`. Typical names:

- `release/0.3.3`
- `release-0.4.0-rc1`

The workflow refuses to run on `main` or feature branches.

## Step-by-step

### 1. Prepare the release branch

From an up-to-date `main`:

```bash
git checkout -b release/<version>

# Bump the version everywhere it appears. All of these must match — see the
# Versioning section above for what each file controls.
$EDITOR \
  Cargo.toml \
  pyproject.toml \
  python/prollytree/__init__.py \
  python/docs/conf.py \
  src/bin/prolly-ui.rs \
  src/lib.rs \
  README.md

# Regenerate Cargo.lock so `cargo check --locked` passes in CI
cargo check --all-features

# Sanity-check that every version-bearing file now agrees with Cargo.toml.
# This is the same script CI runs, so if it passes locally it'll pass there.
./scripts/check-version-consistency.sh

# Optional: update CHANGELOG.md. The release-notes step will extract the
# section matching `## [<version>]` and include it in the GitHub Release body.
$EDITOR CHANGELOG.md

git add \
  Cargo.toml Cargo.lock pyproject.toml \
  python/prollytree/__init__.py python/docs/conf.py \
  src/bin/prolly-ui.rs src/lib.rs README.md CHANGELOG.md
git commit -m "Release v<version>"
git push -u origin release/<version>
```

Open a PR from `release/<version>` → `main` so CI runs (tests, clippy,
pre-commit, docs, and the Python wheel build) against the exact commit you
intend to ship. Do **not** merge the PR yet — the release workflow runs on
the release branch itself.

### 2. Dry run (recommended)

From the GitHub **Actions → Release** page:

- **Branch:** `release/<version>`
- **publish_rust:** `true`
- **publish_python:** `true`
- **dry_run:** `true`

This runs `cargo publish --dry-run --all-features`, builds all wheels, runs
`twine check`, and uploads to TestPyPI. No tag or GitHub Release is created
(`create-release` is gated on `dry_run == 'false'`).

Fix any packaging issues on the release branch and repeat until the dry run
is green.

### 3. Publish for real

Re-run the workflow with the same branch and `dry_run: false`. The jobs run
in this order:

| Job | Runs on | What it does |
| --- | --- | --- |
| `validate` | ubuntu | Checks branch name, extracts version from `Cargo.toml` |
| `publish-rust` | ubuntu | `cargo check/test --all-features`, then `cargo publish --all-features` |
| `build-python-wheels` | ubuntu-latest (x86_64, aarch64 via QEMU), windows-latest (x64), macos-14 (aarch64) | `maturin build --release --features python,git,sql` per target |
| `publish-python` | ubuntu | Downloads all wheel artifacts, builds sdist, publishes via PyPI trusted publishing |
| `create-release` | ubuntu | Creates git tag `v<version>`, generates release notes, attaches `dist/*.whl` and `dist/*.tar.gz` |

The macOS wheel is built for Apple Silicon only; Intel Macs pick it up via
Rosetta. Linux aarch64 wheels are cross-built under QEMU, so they take
noticeably longer than the x86_64 job.

### 4. Post-release

- Merge the release PR into `main`.
- Bump **all** the version-bearing files listed in the Versioning section to
  the next development version (e.g. `0.3.4-beta`) on `main` in a follow-up
  commit.
- Verify the tag, GitHub Release, crates.io page, and PyPI page all show
  the new version.

## Publishing only one ecosystem

Set `publish_rust: false` or `publish_python: false` on dispatch. The
`create-release` job is gated on the selected jobs either succeeding or
being skipped, so it still runs and tags the release as long as whatever you
asked for succeeded.

## Rollback

Neither crates.io nor PyPI allow re-publishing a version that already exists.
If a bad release ships:

- **crates.io:** `cargo yank --version <version> prollytree`
  (yanking prevents new dependents from resolving it but does not delete it).
- **PyPI:** delete the release via the PyPI UI if you catch it quickly,
  otherwise yank.
- Cut a new patch release (`<version>+1`) with the fix. Do not attempt to
  reuse the same version number.

## Troubleshooting

- **`validate` fails with "Not a release branch"** — you dispatched from
  `main` or a feature branch. Re-run from a `release/*` branch.
- **`cargo publish` fails on a transitive path dependency** — all workspace
  crates that `prollytree` depends on must already be on crates.io at a
  compatible version. Publish them first, then re-run.
- **PyPI publish fails with an OIDC / trusted-publisher error** — the `pypi`
  environment, the repository, the workflow filename (`release.yml`), and
  the job name (`publish-python`) must all match the trusted-publisher
  configuration on PyPI exactly. Re-check the PyPI project settings.
- **aarch64 Linux wheel build hangs or times out** — QEMU emulation is slow;
  re-run the job. If it consistently fails, the Rust build may be OOMing
  under emulation and the wheel matrix entry needs attention.
- **`create-release` is skipped** — check that `dry_run` was `false` and at
  least one of `publish-rust` / `publish-python` succeeded (the job is gated
  on `success || skipped` for each).