MIP-23: Release Conventions for Movement Technologies
- Description: Release Conventions for Movement Technologies address the delivery of canonical artifacts to the Movement community.
- Authors: Liam Monninger
- Desiderata: MD-23
Abstract
Release Conventions for Movement Technologies standardize the process of delivering artifacts to the Movement community. By providing a coherent and repeatable process for releasing artifacts, these conventions ensure that Movement technologies are accessible and easy to use.
The release conventions proposed herein are based on the usage of GitHub for source control and the tagging of GitHub releases. Guidelines for implementing programmatic access to release artifacts are also described. Finally, the intended relationship between releases and governance is outlined.
Motivation
Movement technologies are continually evolving, and there’s a need to ensure that the process of releasing artifacts is both organized and standardized. By establishing Release Conventions for Movement Technologies, we aim to facilitate the delivery of canonical artifacts to the Movement community. This will ensure that Movement technologies are accessible, easy to use, and well-vetted.
Specification
The key words “MUST”, “MUST NOT”, “REQUIRED”, “SHALL”, “SHALL NOT”, “SHOULD”, “SHOULD NOT”, “RECOMMENDED”, “NOT RECOMMENDED”, “MAY”, and “OPTIONAL” in this document are to be interpreted as described in RFC 2119 and RFC 8174.
The definitions of “artifact” and “release” are accepted from MD-23.
We break the specification into four sections:
- Standardized release naming convention
- Standardized release process from source control
- Programmatic access to release artifacts
- Default relationship between releases and governance
1. Standardized release naming convention
We propose the following naming convention for releases, inspired by the Aptos release standard:
<software-unit>-v<major>.<minor>.<patch>-<release-type>
Where:
<software-unit>: the name of the software unit being released, e.g., the Suzuka Full Node.<major>,<minor>,<patch>: the version numbers of the release conforming to Semantic Versioning.<release-type>: the type of release, e.g.,stable,beta, orrc.
Note that <release-type> is ill-defined. Individual software units may define their own release types.
Note further that we do not specify environments such as devnet, testnet, or mainnet in the release name. Though these may be specified in the <release-type> field, we recommend that the governance for each software provide indirection from the environment to a given release.
We thus propose the following standard for releases marking the canonical release which should be used in a given environment:
<software-unit>-<environment>
An example of how this can be released in Git and GitHub is provided in the following section.
2. Standardized release process from source control
-
Source control MUST be responsible for initiating all releases with the following tags:
- A tag corresponding to the Standardized Release Naming Convention above.
- A tag corresponding to the commit hash of the release.
- A tag corresponding to the environment indirection for the release should it be valid.
-
Releases corresponding to environment indirection MUST only be tagged by making a release from the default branch of the repository.
-
By default, the
<release-type>SHOULD correspond to the branch from which the release is made. -
Tag indirection CAN be performed as follows:
git tag v1.0.0
git push origin v1.0.0
git tag -f latest v1.0.0
git push origin -f latest
-
GitHub SHOULD be the default source control platform. Within the platform each release should contain at least the archive of the source code which would produce the release artifact.
-
Well-known configuration files MUST also be included in the release archive where they apply.
-
Releases outside of GitHub, e.g., DockerHub, MUST be tagged with the same tags as the GitHub release and linked in the release notes on the GitHub release.
-
Releases to established environments MUST follow governance guidelines for the software unit in question.
-
Releases to established environments MUST trigger an update of all usage of that software unit to the appropriate tag by Movement Labs. This SHOULD be automated to the extent possible to ensure that the source control reflects the canonical release.
3. Programmatic access to release artifacts
-
Source control SHOULD be the primary source of release artifacts.
-
Artifacts which are in consumable forms such as container images, binaries, or libraries can be consumed as the developer sees fit.
-
We recommend the following Rust pseudocode API for fetching artifacts such as well-known configuration files, contract addresses, or other artifacts which may need an application context to be properly consumed:
trait Release<T> {
fn fetch_artifact(&self) -> Result<T, Error>;
}
/// Downloads a well-known file from the release in the source control platform.
struct WellKnownFileRelease {
source: String,
destination: String
}
/// The downloaded well-known file.
struct WellKnownFileArtifact {
path: String,
}
impl Release<WellKnownFileArtifact> for WellKnownFileRelease {
fn fetch_artifact(&self) -> Result<WellKnownFileArtifact, Error> {
/// ...
}
}
/// Gets the value of a JSON field from a release file.
struct JSONFieldRelease {
source: String,
field: String
}
/// The value of the JSON field.
struct JSONFieldArtifact {
value: Value
}
/// The JSON field artifact.
impl Release<JSONFieldArtifact> for JSONFieldRelease {
fn fetch_artifact(&self) -> Result<JSONFieldArtifact, Error> {
/// ...
}
}- Via the API above, particularly when implemented in Rust, the Developer CAN integrate version fetching into their application, e.g., during setup.
4. Default relationship between releases and governance
Releases establish the canonical version of a software unit for a given environment. The governance of the software unit in question is responsible for approving releases to established environments.
-
Releases to established environments MUST be approved by the governance of the software unit in question.
-
Releases MUST trigger the update of all usage of that software unit to the appropriate tag by Movement Labs. This SHOULD be automated to the extent possible to ensure that the source control reflects the canonical release.