@wipcomputer/wip-release 1.1.0

package/CHANGELOG.md

@@ -0,0 +1,20 @@
+# Changelog
+
+
+## 1.1.0 (2026-02-21)
+
+Rich release notes, agent-driven install prompt, REFERENCE.md
+
+## 1.0.0 (2026-02-21)
+
+Initial release. Local release pipeline tool.
+
+- `release()` ... full pipeline: bump, changelog, skill sync, commit, tag, publish
+- `detectCurrentVersion()` ... read version from package.json
+- `syncSkillVersion()` ... update SKILL.md frontmatter
+- `updateChangelog()` ... prepend version entry
+- `publishNpm()` ... npm publish via 1Password
+- `publishGitHubPackages()` ... GitHub Packages publish
+- `createGitHubRelease()` ... gh release create
+
+CLI: `wip-release patch|minor|major [--notes --dry-run --no-publish]`

package/LICENSE

@@ -0,0 +1,21 @@
+MIT License
+
+Copyright (c) 2026 Parker Todd Brooks
+
+Permission is hereby granted, free of charge, to any person obtaining a copy
+of this software and associated documentation files (the "Software"), to deal
+in the Software without restriction, including without limitation the rights
+to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+copies of the Software, and to permit persons to whom the Software is
+furnished to do so, subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in all
+copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
+SOFTWARE.

package/README.md

@@ -0,0 +1,35 @@
+###### WIP Computer
+# wip-release
+
+You ship a fix. Now you have to bump package.json, update CHANGELOG.md, sync the version in SKILL.md, commit, tag, push, publish to npm, publish to GitHub Packages, and create a GitHub release. Every time. Miss a step and versions drift.
+
+`wip-release` does all of it in one command.
+
+## Install
+
+Open your AI coding tool and say:
+
+```
+Read the REFERENCE.md and SKILL.md at github.com/wipcomputer/wip-release.
+Then explain to me:
+1. What is this tool?
+2. What does it do?
+3. What would it change or fix in our current release process?
+
+Then ask me:
+- Do you have more questions?
+- Do you want to integrate it into our system?
+- Do you want to clone it (use as-is) or fork it (so you can contribute back if you find bugs)?
+```
+
+Your agent will read the repo, explain the tool, and walk you through integration interactively.
+
+See [REFERENCE.md](REFERENCE.md) for full usage, pipeline steps, flags, auth, and module API.
+
+---
+
+## License
+
+MIT
+
+Built by Parker Todd Brooks, with Claude Code and Lēsa (OpenClaw).

package/REFERENCE.md

@@ -0,0 +1,96 @@
+###### WIP Computer
+# wip-release ... Reference
+
+Detailed usage, pipeline steps, flags, auth, and module API.
+
+## Usage
+
+Run from inside any repo:
+
+```bash
+wip-release patch                    # 1.0.0 -> 1.0.1
+wip-release minor                    # 1.0.0 -> 1.1.0
+wip-release major                    # 1.0.0 -> 2.0.0
+
+wip-release patch --notes="fix auth config"   # with changelog note
+wip-release minor --dry-run                    # preview, no changes
+wip-release patch --no-publish                 # bump + tag only
+```
+
+## What It Does
+
+```
+  wip-grok: 1.0.0 -> 1.0.1 (patch)
+  ────────────────────────────────────────
+  ✓ package.json -> 1.0.1
+  ✓ SKILL.md -> 1.0.1
+  ✓ CHANGELOG.md updated
+  ✓ Committed and tagged v1.0.1
+  ✓ Pushed to remote
+  ✓ Published to npm
+  ✓ Published to GitHub Packages
+  ✓ GitHub release v1.0.1 created
+
+  Done. wip-grok v1.0.1 released.
+```
+
+## Pipeline Steps
+
+1. **Bump `package.json`** ... patch, minor, or major
+2. **Sync `SKILL.md`** ... updates version in YAML frontmatter (if file exists)
+3. **Update `CHANGELOG.md`** ... prepends new version entry with date and notes
+4. **Git commit + tag** ... commits changed files, creates `vX.Y.Z` tag
+5. **Push** ... pushes commit and tag to remote
+6. **npm publish** ... publishes to npmjs.com (auth via 1Password)
+7. **GitHub Packages** ... publishes to npm.pkg.github.com
+8. **GitHub release** ... creates release with changelog notes
+
+## Flags
+
+| Flag | What |
+|------|------|
+| `--notes="text"` | Changelog entry text |
+| `--dry-run` | Show what would happen, change nothing |
+| `--no-publish` | Bump + tag only, skip npm and GitHub release |
+
+## Auth
+
+npm token is fetched from 1Password at publish time. No `.npmrc` files stored. No credentials in repos.
+
+Requires:
+- `op` CLI installed and configured
+- 1Password SA token at `~/.openclaw/secrets/op-sa-token`
+- "npm Token" item in "Agent Secrets" vault
+- `gh` CLI authenticated (for GitHub Packages and releases)
+
+## As a Module
+
+```javascript
+import { release, detectCurrentVersion, bumpSemver } from '@wipcomputer/wip-release';
+
+const current = detectCurrentVersion('/path/to/repo');
+const next = bumpSemver(current, 'minor');
+console.log(`${current} -> ${next}`);
+
+await release({
+  repoPath: '/path/to/repo',
+  level: 'patch',
+  notes: 'fix auth',
+  dryRun: false,
+  noPublish: false,
+});
+```
+
+## Exports
+
+| Function | What |
+|----------|------|
+| `release({ repoPath, level, notes, dryRun, noPublish })` | Full pipeline |
+| `detectCurrentVersion(repoPath)` | Read version from package.json |
+| `bumpSemver(version, level)` | Bump a semver string |
+| `syncSkillVersion(repoPath, newVersion)` | Update SKILL.md frontmatter |
+| `updateChangelog(repoPath, newVersion, notes)` | Prepend to CHANGELOG.md |
+| `publishNpm(repoPath)` | Publish to npmjs.com |
+| `publishGitHubPackages(repoPath)` | Publish to npm.pkg.github.com |
+| `createGitHubRelease(repoPath, newVersion, notes, currentVersion)` | Create GitHub release with rich notes |
+| `buildReleaseNotes(repoPath, currentVersion, newVersion, notes)` | Generate detailed release notes |

package/SKILL.md

@@ -0,0 +1,74 @@
+---
+name: wip-release
+version: 1.1.0
+description: Local release tool. Bumps version, updates changelog + SKILL.md, publishes to npm + GitHub.
+homepage: https://github.com/wipcomputer/wip-release
+metadata:
+  category: dev-tools
+  capabilities:
+    - version-bump
+    - changelog-update
+    - skill-sync
+    - npm-publish
+    - github-release
+  dependencies: []
+  interface: CLI
+openclaw:
+  emoji: "🚀"
+  install:
+    env: []
+author:
+  name: Parker Todd Brooks
+---
+
+# wip-release
+
+Local release pipeline. One command bumps version, updates all docs, publishes everywhere.
+
+## When to Use This Skill
+
+**Use wip-release for:**
+- Releasing a new version of any @wipcomputer package
+- After merging a PR to main and you need to publish
+- Bumping version + changelog + SKILL.md in one step
+
+**Use --dry-run for:**
+- Previewing what a release would do before committing
+
+**Use --no-publish for:**
+- Bumping version and tagging without publishing to registries
+
+### Do NOT Use For
+
+- Pre-release / alpha versions (not yet supported)
+- Repos without a package.json
+- Publishing to ClawHub (separate step)
+
+## API Reference
+
+### CLI
+
+```bash
+wip-release patch --notes="fix X"    # full pipeline
+wip-release minor --dry-run          # preview only
+wip-release major --no-publish       # bump + tag only
+```
+
+### Module
+
+```javascript
+import { release, detectCurrentVersion, bumpSemver, syncSkillVersion } from '@wipcomputer/wip-release';
+
+await release({ repoPath: '.', level: 'patch', notes: 'fix', dryRun: false, noPublish: false });
+```
+
+## Troubleshooting
+
+### "Could not fetch npm token from 1Password"
+Check that `~/.openclaw/secrets/op-sa-token` exists and `op` CLI is installed.
+
+### "Push failed"
+Branch protection may prevent direct pushes. Make sure you're on main after merging a PR.
+
+### SKILL.md not updated
+Only updates if the file has a YAML frontmatter `version:` field between `---` markers.

package/cli.mjs

@@ -0,0 +1,61 @@
+#!/usr/bin/env node
+
+/**
+ * wip-release/cli.mjs
+ * Release tool CLI. Bumps version, updates docs, publishes.
+ */
+
+import { release, detectCurrentVersion } from './core.mjs';
+
+const args = process.argv.slice(2);
+const level = args.find(a => ['patch', 'minor', 'major'].includes(a));
+
+function flag(name) {
+  const prefix = `--${name}=`;
+  const found = args.find(a => a.startsWith(prefix));
+  return found ? found.slice(prefix.length) : null;
+}
+
+const dryRun = args.includes('--dry-run');
+const noPublish = args.includes('--no-publish');
+const notes = flag('notes');
+
+if (!level || args.includes('--help') || args.includes('-h')) {
+  const cwd = process.cwd();
+  let current = '';
+  try { current = ` (current: ${detectCurrentVersion(cwd)})`; } catch {}
+
+  console.log(`wip-release ... local release tool${current}
+
+Usage:
+  wip-release patch                    1.0.0 -> 1.0.1
+  wip-release minor                    1.0.0 -> 1.1.0
+  wip-release major                    1.0.0 -> 2.0.0
+
+Flags:
+  --notes="description"    Changelog entry text
+  --dry-run                Show what would happen, change nothing
+  --no-publish             Bump + tag only, skip npm/GitHub
+
+Pipeline:
+  1. Bump package.json version
+  2. Sync SKILL.md version (if exists)
+  3. Update CHANGELOG.md
+  4. Git commit + tag
+  5. Push to remote
+  6. npm publish (via 1Password)
+  7. GitHub Packages publish
+  8. GitHub release create`);
+  process.exit(level ? 0 : 1);
+}
+
+release({
+  repoPath: process.cwd(),
+  level,
+  notes,
+  dryRun,
+  noPublish,
+}).catch(err => {
+  console.error(`  ✗ ${err.message}`);
+  process.exit(1);
+});

package/core.mjs

@@ -0,0 +1,340 @@
+/**
+ * wip-release/core.mjs
+ * Local release tool. Bumps version, updates changelog + SKILL.md,
+ * commits, tags, publishes to npm + GitHub Packages, creates GitHub release.
+ * Zero dependencies.
+ */
+
+import { execSync } from 'node:child_process';
+import { readFileSync, writeFileSync, existsSync } from 'node:fs';
+import { join, basename } from 'node:path';
+
+// ── Version ─────────────────────────────────────────────────────────
+
+/**
+ * Read current version from package.json.
+ */
+export function detectCurrentVersion(repoPath) {
+  const pkgPath = join(repoPath, 'package.json');
+  if (!existsSync(pkgPath)) throw new Error(`No package.json found at ${repoPath}`);
+  const pkg = JSON.parse(readFileSync(pkgPath, 'utf8'));
+  return pkg.version;
+}
+
+/**
+ * Bump a semver string by level.
+ */
+export function bumpSemver(version, level) {
+  const [major, minor, patch] = version.split('.').map(Number);
+  switch (level) {
+    case 'major': return `${major + 1}.0.0`;
+    case 'minor': return `${major}.${minor + 1}.0`;
+    case 'patch': return `${major}.${minor}.${patch + 1}`;
+    default: throw new Error(`Invalid level: ${level}. Use major, minor, or patch.`);
+  }
+}
+
+/**
+ * Write new version to package.json.
+ */
+function writePackageVersion(repoPath, newVersion) {
+  const pkgPath = join(repoPath, 'package.json');
+  const pkg = JSON.parse(readFileSync(pkgPath, 'utf8'));
+  pkg.version = newVersion;
+  writeFileSync(pkgPath, JSON.stringify(pkg, null, 2) + '\n');
+}
+
+// ── SKILL.md ────────────────────────────────────────────────────────
+
+/**
+ * Update version in SKILL.md YAML frontmatter.
+ */
+export function syncSkillVersion(repoPath, newVersion) {
+  const skillPath = join(repoPath, 'SKILL.md');
+  if (!existsSync(skillPath)) return false;
+
+  let content = readFileSync(skillPath, 'utf8');
+  // Match version: X.Y.Z in YAML frontmatter (between --- markers)
+  const updated = content.replace(
+    /^(---[\s\S]*?)(version:\s*)\S+([\s\S]*?---)/,
+    `$1$2${newVersion}$3`
+  );
+
+  if (updated === content) return false;
+  writeFileSync(skillPath, updated);
+  return true;
+}
+
+// ── CHANGELOG.md ────────────────────────────────────────────────────
+
+/**
+ * Prepend a new version entry to CHANGELOG.md.
+ */
+export function updateChangelog(repoPath, newVersion, notes) {
+  const changelogPath = join(repoPath, 'CHANGELOG.md');
+  const date = new Date().toISOString().split('T')[0];
+  const entry = `## ${newVersion} (${date})\n\n${notes || 'Release.'}\n`;
+
+  if (!existsSync(changelogPath)) {
+    writeFileSync(changelogPath, `# Changelog\n\n${entry}\n`);
+    return;
+  }
+
+  let content = readFileSync(changelogPath, 'utf8');
+  // Insert after the # Changelog header
+  const headerMatch = content.match(/^# Changelog\s*\n/);
+  if (headerMatch) {
+    const insertPoint = headerMatch[0].length;
+    content = content.slice(0, insertPoint) + '\n' + entry + '\n' + content.slice(insertPoint);
+  } else {
+    content = `# Changelog\n\n${entry}\n${content}`;
+  }
+
+  writeFileSync(changelogPath, content);
+}
+
+// ── Git ─────────────────────────────────────────────────────────────
+
+function gitCommitAndTag(repoPath, newVersion, notes) {
+  const msg = `v${newVersion}: ${notes || 'Release'}`;
+  execSync(`git add package.json CHANGELOG.md SKILL.md 2>/dev/null; git add package.json CHANGELOG.md`, { cwd: repoPath, stdio: 'pipe' });
+  execSync(`git commit -m "${msg.replace(/"/g, '\\"')}"`, { cwd: repoPath, stdio: 'pipe' });
+  execSync(`git tag v${newVersion}`, { cwd: repoPath, stdio: 'pipe' });
+}
+
+// ── Publish ─────────────────────────────────────────────────────────
+
+/**
+ * Publish to npm via 1Password for auth.
+ */
+export function publishNpm(repoPath) {
+  const token = getNpmToken();
+  execSync(
+    `npm publish --access public --//registry.npmjs.org/:_authToken="${token}"`,
+    { cwd: repoPath, stdio: 'inherit' }
+  );
+}
+
+/**
+ * Publish to GitHub Packages.
+ */
+export function publishGitHubPackages(repoPath) {
+  const ghToken = execSync('gh auth token', { encoding: 'utf8' }).trim();
+  execSync(
+    `npm publish --registry https://npm.pkg.github.com --//npm.pkg.github.com/:_authToken="${ghToken}"`,
+    { cwd: repoPath, stdio: 'inherit' }
+  );
+}
+
+/**
+ * Build detailed release notes from git history and repo metadata.
+ */
+export function buildReleaseNotes(repoPath, currentVersion, newVersion, notes) {
+  const slug = detectRepoSlug(repoPath);
+  const pkg = JSON.parse(readFileSync(join(repoPath, 'package.json'), 'utf8'));
+  const lines = [];
+
+  // What changed section
+  lines.push('## What changed\n');
+  if (notes) {
+    lines.push(notes);
+    lines.push('');
+  }
+
+  // Commits since last tag
+  const prevTag = `v${currentVersion}`;
+  let commits = '';
+  try {
+    commits = execSync(
+      `git log ${prevTag}..HEAD --pretty=format:"- %s (%h)" 2>/dev/null`,
+      { cwd: repoPath, encoding: 'utf8' }
+    ).trim();
+  } catch {
+    // No previous tag ... show all commits on branch
+    try {
+      commits = execSync(
+        `git log --pretty=format:"- %s (%h)" -20`,
+        { cwd: repoPath, encoding: 'utf8' }
+      ).trim();
+    } catch {}
+  }
+
+  if (commits) {
+    lines.push('### Commits\n');
+    lines.push(commits);
+    lines.push('');
+  }
+
+  // Files changed
+  let filesChanged = '';
+  try {
+    filesChanged = execSync(
+      `git diff ${prevTag}..HEAD --stat 2>/dev/null`,
+      { cwd: repoPath, encoding: 'utf8' }
+    ).trim();
+  } catch {}
+
+  if (filesChanged) {
+    lines.push('### Files changed\n');
+    lines.push('```');
+    lines.push(filesChanged);
+    lines.push('```');
+    lines.push('');
+  }
+
+  // Install section
+  lines.push('### Install\n');
+  lines.push('```bash');
+  lines.push(`npm install -g ${pkg.name}@${newVersion}`);
+  lines.push('```');
+  lines.push('');
+  lines.push('Or update your local clone:');
+  lines.push('```bash');
+  lines.push('git pull origin main');
+  lines.push('```');
+  lines.push('');
+
+  // Compare URL
+  if (slug) {
+    lines.push('---');
+    lines.push('');
+    lines.push(`Full changelog: https://github.com/${slug}/compare/v${currentVersion}...v${newVersion}`);
+  }
+
+  return lines.join('\n');
+}
+
+/**
+ * Create a GitHub release with detailed notes.
+ */
+export function createGitHubRelease(repoPath, newVersion, notes, currentVersion) {
+  const repoSlug = detectRepoSlug(repoPath);
+  const body = buildReleaseNotes(repoPath, currentVersion, newVersion, notes);
+
+  // Write notes to a temp file to avoid shell escaping issues
+  const tmpFile = join(repoPath, '.release-notes-tmp.md');
+  writeFileSync(tmpFile, body);
+
+  try {
+    execSync(
+      `gh release create v${newVersion} --title "v${newVersion}" --notes-file .release-notes-tmp.md --repo ${repoSlug}`,
+      { cwd: repoPath, stdio: 'inherit' }
+    );
+  } finally {
+    try { execSync(`rm -f "${tmpFile}"`); } catch {}
+  }
+}
+
+// ── Helpers ──────────────────────────────────────────────────────────
+
+function getNpmToken() {
+  try {
+    return execSync(
+      `OP_SERVICE_ACCOUNT_TOKEN=$(cat ~/.openclaw/secrets/op-sa-token) op item get "npm Token" --vault "Agent Secrets" --fields label=password --reveal 2>/dev/null`,
+      { encoding: 'utf8' }
+    ).trim();
+  } catch {
+    throw new Error('Could not fetch npm token from 1Password. Check op CLI and SA token.');
+  }
+}
+
+function detectRepoSlug(repoPath) {
+  try {
+    const url = execSync('git remote get-url origin', { cwd: repoPath, encoding: 'utf8' }).trim();
+    // git@github.com:wipcomputer/wip-grok.git or https://github.com/wipcomputer/wip-grok.git
+    const match = url.match(/github\.com[:/](.+?)(?:\.git)?$/);
+    return match ? match[1] : null;
+  } catch {
+    return null;
+  }
+}
+
+// ── Main ────────────────────────────────────────────────────────────
+
+/**
+ * Run the full release pipeline.
+ */
+export async function release({ repoPath, level, notes, dryRun, noPublish }) {
+  repoPath = repoPath || process.cwd();
+  const currentVersion = detectCurrentVersion(repoPath);
+  const newVersion = bumpSemver(currentVersion, level);
+  const repoName = basename(repoPath);
+
+  console.log('');
+  console.log(`  ${repoName}: ${currentVersion} -> ${newVersion} (${level})`);
+  console.log(`  ${'─'.repeat(40)}`);
+
+  if (dryRun) {
+    console.log(`  [dry run] Would bump package.json to ${newVersion}`);
+    const skillPath = join(repoPath, 'SKILL.md');
+    if (existsSync(skillPath)) console.log(`  [dry run] Would update SKILL.md version`);
+    console.log(`  [dry run] Would update CHANGELOG.md`);
+    console.log(`  [dry run] Would commit and tag v${newVersion}`);
+    if (!noPublish) {
+      console.log(`  [dry run] Would publish to npm (@wipcomputer scope)`);
+      console.log(`  [dry run] Would publish to GitHub Packages`);
+      console.log(`  [dry run] Would create GitHub release v${newVersion}`);
+    }
+    console.log('');
+    console.log(`  Dry run complete. No changes made.`);
+    console.log('');
+    return { currentVersion, newVersion, dryRun: true };
+  }
+
+  // 1. Bump package.json
+  writePackageVersion(repoPath, newVersion);
+  console.log(`  ✓ package.json -> ${newVersion}`);
+
+  // 2. Sync SKILL.md
+  if (syncSkillVersion(repoPath, newVersion)) {
+    console.log(`  ✓ SKILL.md -> ${newVersion}`);
+  }
+
+  // 3. Update CHANGELOG.md
+  updateChangelog(repoPath, newVersion, notes);
+  console.log(`  ✓ CHANGELOG.md updated`);
+
+  // 4. Git commit + tag
+  gitCommitAndTag(repoPath, newVersion, notes);
+  console.log(`  ✓ Committed and tagged v${newVersion}`);
+
+  // 5. Push commit + tag
+  try {
+    execSync('git push && git push --tags', { cwd: repoPath, stdio: 'pipe' });
+    console.log(`  ✓ Pushed to remote`);
+  } catch {
+    console.log(`  ! Push failed (maybe branch protection). Push manually.`);
+  }
+
+  if (!noPublish) {
+    // 6. npm publish
+    try {
+      publishNpm(repoPath);
+      console.log(`  ✓ Published to npm`);
+    } catch (e) {
+      console.log(`  ✗ npm publish failed: ${e.message}`);
+    }
+
+    // 7. GitHub Packages
+    try {
+      publishGitHubPackages(repoPath);
+      console.log(`  ✓ Published to GitHub Packages`);
+    } catch (e) {
+      console.log(`  ✗ GitHub Packages publish failed: ${e.message}`);
+    }
+
+    // 8. GitHub release
+    try {
+      createGitHubRelease(repoPath, newVersion, notes, currentVersion);
+      console.log(`  ✓ GitHub release v${newVersion} created`);
+    } catch (e) {
+      console.log(`  ✗ GitHub release failed: ${e.message}`);
+    }
+  }
+
+  console.log('');
+  console.log(`  Done. ${repoName} v${newVersion} released.`);
+  console.log('');
+
+  return { currentVersion, newVersion, dryRun: false };
+}

package/package.json

@@ -0,0 +1,33 @@
+{
+  "name": "@wipcomputer/wip-release",
+  "version": "1.1.0",
+  "type": "module",
+  "description": "Local release tool. Bumps version, updates changelog + SKILL.md, publishes to npm + GitHub.",
+  "main": "core.mjs",
+  "bin": {
+    "wip-release": "./cli.mjs"
+  },
+  "exports": {
+    ".": "./core.mjs",
+    "./cli": "./cli.mjs"
+  },
+  "scripts": {
+    "test": "node cli.mjs --help"
+  },
+  "keywords": [
+    "release",
+    "version",
+    "publish",
+    "npm",
+    "agent-native",
+    "sensor",
+    "actuator"
+  ],
+  "author": "Parker Todd Brooks",
+  "license": "MIT",
+  "repository": {
+    "type": "git",
+    "url": "git+https://github.com/wipcomputer/wip-release.git"
+  },
+  "homepage": "https://github.com/wipcomputer/wip-release"
+}