and B; B branches cut from B

and merge into both. Tags live on B

. The recommended path uses the C CLI (C) to drive the ceremony. Plain C works too — both variants are shown side-by-side at each step so you can pick one. The release pipeline itself is fully automated by F<.github/workflows/release.yml>: pushing any C tag triggers a build, a PAUSE upload, and a GitHub Release with the tarball attached. You only need to drive the local prep and the merge/tag. =head2 Prerequisites (one-time) =over 4 =item 1. Install release tooling # POD → Markdown converter (regenerates README.md) cpanm Pod::Markdown # or: apt install libpod-markdown-perl # Conventional-Commits changelog generator cargo install git-cliff # or: brew install git-cliff # git-flow CLI (optional but recommended) apt install git-flow # or: brew install git-flow-avh =item 2. Initialize git-flow once (skip if you prefer plain git) git flow init -d When prompted, accept the project's existing layout: =over 4 =item * production branch = C

=item * next-release branch = C =item * feature prefix = C =item * release prefix = C =item * hotfix prefix = C =back The C<-d> flag uses defaults where they match; you'll only be prompted for the values that differ. =item 3. Configure CPAN credentials (repo admin, one-time) In GitHub, go to B and add: =over 4 =item * C — your PAUSE username =item * C — your PAUSE password =back If these secrets are missing, the GitHub Release step still runs but the PAUSE upload step is skipped. =back =head2 Versioning convention C<$VERSION> uses the 3-digit C<0.XYZ> form. Bump the last two digits in steps of 10 for normal releases (e.g. C<0.350 → 0.360>) and by 1 for pure bug-fix follow-ups (e.g. C<0.350 → 0.351>). The git tag prepends C (e.g. C); the C<$VERSION> string in the F<.pm> does not. =head2 Bumping the version Use the F helper rather than hand-editing the fifteen C declarations under F. Pass the new version as the only argument: tools/bump-version 0.402 The script: =over 4 =item * Reads the current dist version from F and refuses to run if the new version is not strictly greater (the same sanity check PAUSE itself enforces against version regressions). =item * Rewrites C in every F file in place. =item * Refuses to run if any F<.pm> under F is missing the C<$VERSION> declaration entirely. That signals either a new module that was added without seeding C<$VERSION>, or a drift caused by hand-editing. Investigate and reconcile before bumping. =back The script does B touch F, run C, amend git, or push. Those remain manual steps in the L flow below. After running the bumper, run C to confirm F stays green. =head2 Step-by-step release =over 4 =item 1. Sync C and confirm what's queued git checkout devel git pull --ff-only git log --oneline $(git describe --tags --abbrev=0)..HEAD The log shows everything that will land in the new release. If something that should be in this release is missing, merge its PR before continuing. =item 2. Open a release branch B git flow release start 0.360 B git checkout -b release/0.360 devel =item 3. Bump the version in both files tools/bump-version 0.360 # rewrites $VERSION across lib/**.pm $EDITOR CITATION.cff # Edit: # version: "0.360" # date-released: "YYYY-MM-DD" # the actual tag/release date See L above for what the helper does and the sanity checks it enforces. F reads C<$VERSION> from the C<.pm> via C; F is the only other file that has to be hand-bumped, and both its C and C fields must be updated together. =item 4. Regenerate the changelog git cliff --tag v0.360 -o CHANGELOG.md C is preconfigured for Conventional Commits and groups by C / C / C / C / C / C; C / C / C are skipped. B — git-cliff slurps full commit message bodies, so stray lines like C<# Conflicts:> from merge commits can leak into the changelog. Strip them by hand if present. =item 5. Regenerate the README pod2markdown lib/GDPR/IAB/TCFv2.pm > README.md Only the main module's POD ships in C; submodule POD is served via MetaCPAN. =item 6. Build and verify locally perl Makefile.PL make make test # runs t/ prove -lr xt # runs perlcritic + perltidy make manifest # updates MANIFEST if test files were added make dist # produces GDPR-IAB-TCFv2-0.360.tar.gz Open the tarball and confirm only intended files ship (no F<.bak>, no F, no F, no F). C already excludes those, but a quick eyeball is cheap insurance. =item 7. Commit the release prep git add lib/GDPR/IAB/TCFv2.pm CITATION.cff CHANGELOG.md README.md # Also `git add MANIFEST` if `make manifest` changed it git commit -m "chore: prepare for v0.360 release" One commit. B — the tag is created in step 8. =item 8. Finish the release B (recommended — automates the merges and tag): git flow release finish 0.360 # Prompts for the tag message; use something like: # "Release v0.360 — " git push origin main git push origin devel git push origin v0.360 # ← triggers release.yml C merges C into B

, tags it as C, merges back into B (so the version bump and changelog land there too), and deletes the local C branch. I The release workflow only fires on the tag push, but the tag must be reachable from C

for the workflow to check out the right tree. B (more steps, gives reviewable PRs): # 1. PR release/0.360 → devel git push -u origin release/0.360 gh pr create --base devel \ --title "chore: prepare for v0.360 release" \ --body "Version bump, README regen, changelog refresh." # Review and merge on GitHub. # 2. PR devel → main gh pr create --base main --head devel \ --title "Release v0.360" # Review and merge on GitHub. # 3. Tag main and push git checkout main git pull --ff-only git tag -a v0.360 -m "Release v0.360 — " git push origin v0.360 # ← triggers release.yml =item 9. Watch the release workflow gh run watch -R peczenyj/GDPR-IAB-TCFv2 # or gh run list -R peczenyj/GDPR-IAB-TCFv2 --workflow release.yml --limit 1 The workflow does: =over 4 =item 1. C — produces the tarball =item 2. C — uploads to PAUSE (skipped silently if C is empty) =item 3. C — creates the GitHub Release with the tarball attached and auto-generated notes =back If the PAUSE step fails, the GitHub Release still gets created. You can then re-upload manually via L without re-running the workflow. =item 10. Post-release sanity # Confirm the GitHub Release gh release view v0.360 -R peczenyj/GDPR-IAB-TCFv2 # Wait ~30 min for PAUSE → MetaCPAN propagation, then: curl -s https://fastapi.metacpan.org/v1/release/GDPR-IAB-TCFv2 \ | jq .version # Should report "0.360" The docker image (C and C<:latest>) is published by F<.github/workflows/docker.yml> on the same C tag push. =back =head2 Pre-release review (and why we don't use draft GitHub Releases) GitHub supports B releases that you can review before publishing. For most projects this is a useful pre-publish review gate. For B project it is not, and the doc deliberately omits the pattern. Two reasons: =over 4 =item 1. B Once F uploads F to PAUSE, the version number is burned forever — you can delete the file but can't re-upload a new tarball under the same version. So a "review the GitHub Release before it goes out" gate doesn't actually protect the thing that matters (the CPAN-distributed artifact); it only protects the rendered release-notes page. =item 2. B hard-codes C.> If you created a draft release with C and then pushed the tag, the workflow's C step would update the release and flip C to false — closing the review window the moment the workflow finishes (~3 minutes). Conversely, if you let C create the tag via the REST API instead of pushing it via C, F would B fire at all (push events from API-created tags don't trigger workflows), and your tarball would never reach PAUSE. =back The review gate that actually buys you something is the B in the vanilla-git path of step 8: opening C and C as PRs lets a reviewer (or future-you) catch a typo in the changelog, an off-by-one in C<$VERSION>, or a stale README B the merge that triggers the unstoppable downstream automation. Use that path when you want pre-release review. If you ever do want the draft-release pattern to work properly, it needs a workflow tweak: add C to F's C triggers, and remove C from the softprops step. The doc does not include that variant today. =head2 Hotfix releases For an urgent fix that has to skip C and ship straight from C

: B git flow hotfix start 0.351 # Make the fix, bump $VERSION, regenerate CHANGELOG and README, commit git flow hotfix finish 0.351 git push origin main devel v0.351 B git checkout -b hotfix/0.351 main # Make the fix, bump $VERSION (both lib/GDPR/IAB/TCFv2.pm AND CITATION.cff), # regenerate CHANGELOG and README git add lib/GDPR/IAB/TCFv2.pm CITATION.cff CHANGELOG.md README.md git commit -m "fix: (v0.351)" git push -u origin hotfix/0.351 # PR hotfix/0.351 → main gh pr create --base main --title "Hotfix v0.351 — " # Merge. # Merge main back into devel so the fix doesn't get lost git checkout devel git pull --ff-only git merge --no-ff main -m "Merge hotfix v0.351 back into devel" git push # Tag main and push git checkout main && git pull --ff-only git tag -a v0.351 -m "Hotfix v0.351 — " git push origin v0.351 =cut