Skip to content

release: v0.0.16 (project create never prompts)#47

Merged
tonychang04 merged 1 commit into
mainfrom
release/v0.0.16
Jul 15, 2026
Merged

release: v0.0.16 (project create never prompts)#47
tonychang04 merged 1 commit into
mainfrom
release/v0.0.16

Conversation

@tonychang04

@tonychang04 tonychang04 commented Jul 15, 2026

Copy link
Copy Markdown
Member

Bumps to v0.0.16 to ship #46. Tag after merge triggers the release pipeline.

🤖 Generated with Claude Code

https://claude.ai/code/session_01GMbAe5K1RfwaAcge5inX7P


Summary by cubic

Release v0.0.16 to ship non-interactive project creation. insta project create now auto-generates a friendly name instead of prompting, preventing hangs in CI and scripts.

Written for commit 15c7831. Summary will update on new commits.

Review in cubic

Ships PR #46: insta project create auto-generates a friendly name instead of
hanging on an interactive prompt.

Co-Authored-By: Claude Fable 5 <noreply@anthropic.com>
Claude-Session: https://claude.ai/code/session_01GMbAe5K1RfwaAcge5inX7P
@cursor

cursor Bot commented Jul 15, 2026

Copy link
Copy Markdown

Bugbot is not enabled for your account, so this pull request was not reviewed.

Enable Bugbot in the Cursor dashboard to get automatic reviews on future PRs.

@jwfing jwfing left a comment

Copy link
Copy Markdown
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Review — release: v0.0.16

Summary: A one-line, version-only bump (package.json 0.0.15 → 0.0.16) to cut a release that ships #46; the change is correct and matches the repo's established release convention.

Requirements context

No matching spec/plan found under a docs/ spec directory — release PRs are process changes, not feature work, so this is assessed against the PR description, the version-release conventions, and the repo's prior release history (#45, #43, #39, #36 follow the identical release: vX.Y.Z (summary) + single-line package.json bump pattern).

Findings

Critical — (none)

Suggestion — (none)

Information

  • Software engineering: No tests/code accompany the diff, which is correct for a pure version bump — nothing behavioral changed. Title/shape match the prior release PRs exactly. ✅
  • Functionality: Semver is appropriate — v0.0.16 is a patch bump shipping the bugfix #46 (fix(project create): never block on a name prompt). Verified #46 is actually on main: the PR base SHA dfd013a is the #46 fix commit, so the release genuinely contains what it claims to ship.
  • Functionality (release-time note, not a code issue): Per the release flow, before tagging please confirm v0.0.16 doesn't already exist on GitHub — a tag push triggers release.yml (GitHub Release + npm publish --provenance), and a published npm version can't be cleanly unpublished. The publish-npm job runs npm ci then npm publish; prepublishOnly: npm run build compiles dist/ first, so the tarball will contain the built CLI. No action needed in this PR.
  • Software engineering (informational): package-lock.json still records "version": "0.0.0" (both root and packages[""]) and was not bumped here. This is consistent with every prior release — the lockfile's root version has never been maintained, npm ci validates the dependency tree rather than the root version field, and npm publish uses the package.json version. Not a blocker; if you ever want the lockfile to reflect reality, npm version --no-git-tag-version would keep both in sync, but that's a separate cleanup.
  • Security: No security-relevant changes — no code, no dependency changes, no secrets in the diff. The release workflow's publish credentials are unchanged.
  • Performance: No runtime code changed — N/A.

Verdict

approved — no Critical findings. This is a straightforward, correctly-scoped release bump. (Posted as a comment; explicit GitHub approval remains a human action.)

@jwfing jwfing left a comment

Copy link
Copy Markdown
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM - approved.

@jwfing jwfing left a comment

Copy link
Copy Markdown
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Review: release v0.0.16

Summary: A single-line package.json version bump (0.0.15 → 0.0.16) to ship #46; matches the established release convention exactly.

Requirements context

No /docs/superpowers/ (or docs/specs/) directory exists in this repo — no spec/plan to match, so this is assessed against the PR description, the version-release conventions, and the git history. Intent per PR body: "Bumps to v0.0.16 to ship #46. Tag after merge triggers the release pipeline."

Findings

Critical — (none)

Suggestion — (none)

Information

  • Software engineering / convention: package.json:3 bumps 0.0.15 → 0.0.16. This is the correct monotonic semver increment and follows the repo's release pattern precisely — the two immediately prior release PRs (v0.0.15 398c5e4, v0.0.14 715fe33) each touched only package.json, exactly as this one does. Commit-message format (release: v0.0.16 (...)) also matches.
  • Functionality: The fix being shipped, #46 (dfd013a fix(project create): never block on a name prompt), is already merged and is in fact this PR's base commit — so the version being released genuinely contains it. Tag v0.0.16 does not yet exist (existing tags stop at v0.0.15), so the post-merge tag/release will not collide (idempotency check in version-release will pass). Per .github/workflows/release.yml, the pushed tag drives the Bun binary build, the INSTA_CLI_VERSION define, and the OIDC npm publish — bumping package.json before tagging is required and correctly ordered here.
  • Release hygiene (pre-existing, non-blocking): package-lock.json is a stale placeholder — its root is name: "insta-cli", version: "0.0.0" and it does not track the real package version at all. This is not introduced by this PR (it was already this way through v0.0.12–v0.0.15, all of which released successfully), and npm ci in the release job does not fail on a root-version mismatch, so it does not block this release. Worth a separate cleanup PR at some point (npm install to regenerate name/version), but out of scope here.

Security — no code, dependency, or secret changes. npm publish uses OIDC trusted publishing (no token secret). Nothing security-relevant in this PR.

Performance — not applicable (metadata-only change).

Verdict

approved (informational — a human still gives the explicit GitHub approval). Zero Critical findings: a correct, in-scope, convention-compliant release bump. Recommend merging, then tagging v0.0.16 per the version-release flow.

@tonychang04 tonychang04 merged commit caf94ee into main Jul 15, 2026
2 checks passed
@tonychang04 tonychang04 deleted the release/v0.0.16 branch July 15, 2026 14:12
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

2 participants