Lecture Guide

From SemVer Tags to GitHub Release and Homepage Sync

Lecture Guide: use GitHub Release as the deployment source of truth and carry release notes all the way into an Astro-powered homepage.

This course explains the full path from pushing a tag to creating a draft release, regenerating notes, optionally polishing them with an LLM, publishing the release, and safely syncing the result into Astro content in a separate homepage repository. It is not just a CI example, but a practical guide to operating public releases.

Many teams separate deployment automation from homepage publishing. That separation often makes it unclear which source is actually current. This course fixes the boundary first: GitHub Release stays the canonical source, while the homepage behaves as a downstream consumer of that release record.

The core lesson is not automation alone, but stage and responsibility separation. The course treats tag classification, draft release creation, asset and notes preparation, publish, cross-repo dispatch, Astro import, and build verification as one pipeline while still keeping each stage explicit about what it owns and where it should fail.

The guide also separates the cases where generated notes are enough from the cases where LLM polishing adds real value. In other words, it does not teach “AI by default,” but how to build a safe baseline first and then add optional post-processing only when it is worth the operational cost.

Deliverable: a SemVer-based release workflow design, operating rules for generated notes and LLM polishing, a homepage sync architecture, an Astro import strategy, and an end-to-end verification checklist.

Difficulty: Early intermediate
Estimated time: About 1h 20m
Format: 13-slide deck

Open slides

Who this is for

Developers who already automate deployments with GitHub Actions but have not yet made their public release process explicit.
Solo builders and small teams who keep the app repository separate from the homepage repository and want release history to show up on the product site.
Learners who want to understand how generated notes, LLM polishing, and homepage sync should be ordered and separated by responsibility.

Prerequisites

A basic familiarity with Git, GitHub Actions, and GitHub Releases is ideal.
You should be comfortable reading CLI commands, environment variables, secrets, and tokens.
You do not need deep Astro knowledge, but it helps to know how a static site consumes content files during build.

What you will be able to do

Classify stable, beta, and rc tags according to a release policy instead of treating them all the same.
Explain why draft release creation should be separated from note preparation and final publish.
Choose a failure policy and responsibility boundary between generated notes and LLM polishing.
Design a safe cross-repo sync flow between a source repo and a homepage repo.
Verify the flow end to end from release publish through Astro import and final product-page visibility.

Tools

GitHub Actions and GitHub CLI
The OpenAI API or an equivalent LLM API
An Astro-based homepage repository
Access to repository secrets, variables, and a fine-grained PAT

Recommended study path

The fastest path is to read the full-flow chapter and the verification chapter first, then open the workflow and import script examples.
Most later decisions become easier once you lock in why generated notes are the baseline and why LLM polishing stays optional.
When you practice, focus on not mixing source-repo and homepage-repo responsibilities. The key boundary is that the source repository never edits homepage files directly.

Chapter guide

The full flow and the operating assumptions

This chapter turns the whole pipeline into one operating map: SemVer tag, GitHub Release publish, homepage dispatch, Astro import, and site deployment. It starts by fixing which repository is the source of truth and which systems are downstream consumers.

Release automation looks complex because it contains many steps, but most confusion disappears once you decide where the truth lives. In this course, GitHub Release itself becomes the canonical source for public release state. That sharply reduces the chance that the app repository, docs, and product page all drift apart.

The second key step is to constrain what the homepage repository is allowed to do. It does not create or edit releases on behalf of the source repository. Instead, it reads the published release, transforms it into Astro content, and completes its own build and commit using its own token. That separation is one of the main stability wins in the design.

By freezing the full flow first, every later piece—secrets, generated notes, LLM polishing, dispatch tokens, and import scripts—can be understood in terms of which stage owns it. This chapter is therefore less about tooling and more about drawing the operating boundary map before implementation details.

Responsibility split in the release pipeline
Stage	Owner	Primary responsibility
Tag classification and release creation	Source repo	SemVer classification, draft release creation, and asset / note preparation
Release publish	Source repo	Promote the draft into the final public release
Homepage sync	Homepage repo	Consume the published stable release and update content plus build output

You will learn

Why GitHub Release is treated as the canonical source
Why source-repo and homepage-repo roles should stay separate

Key artifacts

End-to-end release flow diagram

Diagram

A compact text diagram showing the path from SemVer tag to Astro deployment.

SemVer tag classification and the draft-release strategy

This chapter covers how stable, beta, and rc tags are classified and why releases are created as drafts before publication. It is where the pipeline’s failure policy becomes explicit.

A common mistake in SemVer automation is treating every `v*` tag as the same kind of release. The course separates stable, beta, and rc explicitly so that prerelease policy and homepage-sync policy do not become ambiguous later.

The second key idea is that a release should not begin life as public. A draft release acts like a staging area. If you only publish after asset upload, generated-note regeneration, optional LLM polishing, and final title/body edits are complete, you avoid exposing half-finished release state to users.

This chapter also includes the recovery path. The default rule is to avoid mutating already-published releases, with manual replay allowed only through `workflow_dispatch` plus an explicit flag. The larger lesson is that automation is not just for convenience; it is also a way to make the default path safer.

Release policy by tag type
Tag type	Example	Default handling
stable	`v1.4.8`	draft -> notes prep -> publish -> homepage sync
beta	`v1.4.8-beta.1`	keep as prerelease; usually exclude from homepage publishing
rc	`v1.4.8-rc1`	keep as prerelease and use it as a final validation stage before stable

You will learn

How to turn SemVer tags into release policy
Why a draft release behaves like a staging area

Key artifacts

Release workflow design memo

Design note

A practice note covering SemVer classification, draft releases, and recovery conditions.

Generated notes and the LLM polishing strategy

This chapter explains why GitHub generated notes are the baseline source and LLM polishing remains optional post-processing. It is about deciding where AI belongs in a release pipeline and where it should stop.

Generated notes are the baseline because GitHub already understands the compare range, PR titles, and contributor context inside the release itself. The safe default is therefore to let GitHub produce the first draft and allow the external LLM to act only as a readability layer on top of that.

The course does not use the LLM as a summary engine that invents new facts. Instead, it is treated as a structured post-processor. It can normalize sections such as summary, highlights, fixes, and notes, but only under strict rules: no new claims, exact version retention, and preservation of links and identifiers.

The chapter also asks for an explicit failure policy. If polishing fails, should the release still publish using raw generated notes, or should the whole pipeline stop before publication? That choice is less about prose quality and more about operating philosophy, so the course frames it around how strongly you care about consistency on the public release page.

Role split between generated notes and LLM polishing
Stage	Strength	Main caution
GitHub generated notes	Stable as a source because it knows the release context directly	The prose can remain developer-facing
LLM polishing	Good for readability and section normalization	Can introduce invented claims and an extra failure point if unmanaged

You will learn

Why generated notes should remain the baseline
Why the LLM should be constrained to post-processing

Key artifacts

Release-notes polishing prompt

Prompt

A sample prompt that enforces Markdown structure and forbids invented claims.

Homepage sync and the Astro import structure

This chapter shows how a release body becomes Astro content in a separate homepage repository. It also explains why the source repository must not edit homepage files directly.

Users often encounter the product homepage before they ever see the GitHub Release page. That makes it valuable to surface release history on the product site as well. But once the app repository starts committing files directly into the homepage repository, ownership and permissions become tangled very quickly.

The course therefore keeps the source repo limited to triggering the homepage workflow. The homepage repository then fetches the release, generates Astro content, and commits it inside its own workflow. The dispatch token is only used for requesting execution, while the actual content generation and commit rely on the homepage repo’s own `GITHUB_TOKEN`.

The import script is also constrained to published stable releases only. By rejecting draft, prerelease, and unpublished states, the product page avoids leaking internal or incomplete release records. The chapter demonstrates that cross-repo automation is defined as much by what it forbids as by what it enables.

Boundaries to keep in cross-repo sync
Question	Recommended answer	Why it matters
Who generates homepage content?	The homepage repo	It is safer when each repo manages its own files with its own workflow and token
Which releases are importable?	Published stable releases only	Prevents exposure of incomplete or internal release state
How broad should the dispatch token be?	Limit it to the homepage repo and workflow execution only	To avoid granting broader cross-repo permissions than necessary

You will learn

A safe way to connect a source repo and a homepage repo
The minimum policy constraints for an Astro content import script

Key artifacts

Homepage import checklist

Checklist

A checklist covering dispatch, import, Astro build, and no-op reruns.

End-to-end verification and the ops checklist

This chapter shows the order for checking release workflow execution, release publish state, homepage import, Astro build success, and final product-page visibility. It defines the finish line for a public release pipeline.

Automation execution is not the same as verification. A green GitHub Actions run does not automatically mean the release body, homepage markdown, and product page all ended up in the expected state. That is why the chapter explicitly defines at least four layers of checks: tag classification, release state, homepage import, and site rendering.

The course treats `gh run watch`, `gh release view`, inspection of the imported markdown file, and no-op reruns as one continuous workflow. The point is to preserve a small but explicit human verification layer. In cross-repo sync, it matters less that “a workflow ran” and more that “exactly the correct stable release was imported.”

The chapter also explains why an ops checklist should survive after the pipeline works. Release automation can feel obvious once it is stable, but many regressions appear when people forget why a specific boundary or replay rule existed in the first place. The checklist acts as a lightweight anti-regression mechanism.

Recommended end-to-end verification order
Verification layer	What to inspect directly	Success signal
Release workflow	SemVer classification and draft -> publish flow	Only stable tags follow the intended public path
GitHub Release state	title/body, draft=false, prerelease state	The final release body remains as the canonical source
Homepage import	Generated markdown path and commit state	Exactly one stable release lands in the intended content path
Product page	Latest release visibility and Astro build result	Users can actually see the latest release on the site

You will learn

How to separate execution logs from user-visible verification
Why no-op reruns and replay checks matter

Key artifacts

End-to-end verification checklist

Verification doc

A checklist for checking release view, dispatch, import, build, and no-op reruns in order.

Hands-on evidence

Full release-to-homepage sync flow

A text diagram summarizing the path from tag push to Astro deployment.

git tag vX.Y.Z
  -> tag gate
  -> draft GitHub Release
  -> generated notes
  -> optional LLM polishing
  -> publish stable release
  -> workflow_dispatch to homepage repo
  -> Astro content import
  -> build and deploy

Boundary between source repo and homepage repo

A boundary view showing who writes release state and who generates homepage content.

source repo
  owns: tag policy, release creation, publish, dispatch request

homepage repo
  owns: fetch published release, write Astro content, build, commit

Key verification commands

A compact set of commands frequently used for manual verification of release publish and homepage import.

gh run list --workflow Release --limit 5
gh run watch <SOURCE_RUN_ID>
gh release view <TAG_NAME> --repo <OWNER/REPO>
gh run list --workflow "Import release notes" --repo <OWNER/HOMEPAGE_REPO> --limit 5
gh run watch <HOMEPAGE_RUN_ID> --repo <OWNER/HOMEPAGE_REPO>

Practice assets

Example asset guide

README

The starting document that explains the recommended order for reading the example assets.

Release workflow checklist

Checklist

A pre-build checklist for tag classification, draft release flow, and recovery policy.

Release-notes polishing prompt

Prompt

A constraint-focused prompt for turning generated notes into user-facing release notes.

Homepage sync checklist

Verification doc

Covers dispatch, Astro build, and no-op reruns as one end-to-end verification flow.

FAQ

Is this mainly a GitHub Actions syntax course or a release-operations course?

It is much closer to the latter. GitHub Actions YAML is part of the implementation, but the main value is in the operating rules: draft-release strategy, generated-notes vs LLM role split, cross-repo sync, and end-to-end verification.

Do I need LLM polishing at all?

No. The guide keeps generated notes as the default path and adds polishing only when you need a more consistent user-facing release page or multilingual tone control. In many cases, validating whether generated notes are already sufficient is the more practical first step.

Why should the source repo avoid editing homepage files directly?

Because it tangles permissions, failure modes, and ownership tracking in one place. Letting the homepage repo generate its own content with its own token and workflow keeps privilege narrow and makes repository responsibilities much clearer.