Versioner CLI

Beta Release - This CLI is currently in beta. We're actively seeking feedback from early users!

📌 What is Versioner?

Versioner is a deployment tracking and visibility system designed to help engineering teams:

Detect drift, skipped steps, or misconfigurations across environments
Maintain a shared view of what’s deployed where
Reduce wasted time from unclear or missing deployment context
Improve auditability, ownership, and approval processes in release pipelines

Versioner takes events such as "build completed" or "deployment started" in via the Events API and stores them in a database. It then provides a query endpoint to retrieve deployment history and a Slack app to query the database for deployment history in a chat-native interface.

Full ecosystem architecture:

API: Python-based REST API, accessed by the UI, Slack app and external events senders
Database: Neon-hosted Postgres, with a database-per-customer design
Frontend: React UI served via CloudFront
CLI (this project): Command-line interface for submitting events
GitHub Action: GitHub Action for submitting events
Slack App: Chat-native interface for querying deployment state and approvals
Events API: External events (e.g. CI/CD notifications) flow through API Gateway → SQS → Lambda → DB

This project

This project is the CLI for Versioner. It provides a simple way to submit build and deployment events to the Versioner API from any CI/CD system or deployment tool.

Current Status: Phase 1 (MVP) complete! The CLI is functional with core features including:

✅ Track build and deployment events
✅ Auto-detection for 8 CI/CD systems (GitHub Actions, GitLab CI, Jenkins, CircleCI, Bitbucket, Azure DevOps, Travis CI, Rundeck)
✅ Retry logic with exponential backoff
✅ Status value normalization
✅ Environment variable configuration

Installation

Beta Release - Direct Download

Download pre-built binaries from GitHub Releases:

# Linux (amd64)
curl -L https://github.com/versioner-io/versioner-cli/releases/latest/download/versioner-linux-amd64 -o versioner
chmod +x versioner
sudo mv versioner /usr/local/bin/

# Linux (arm64)
curl -L https://github.com/versioner-io/versioner-cli/releases/latest/download/versioner-linux-arm64 -o versioner
chmod +x versioner
sudo mv versioner /usr/local/bin/

# macOS (Apple Silicon)
curl -L https://github.com/versioner-io/versioner-cli/releases/latest/download/versioner-darwin-arm64 -o versioner
chmod +x versioner
sudo mv versioner /usr/local/bin/

# macOS (Intel)
curl -L https://github.com/versioner-io/versioner-cli/releases/latest/download/versioner-darwin-amd64 -o versioner
chmod +x versioner
sudo mv versioner /usr/local/bin/

# Windows (amd64)
# Download versioner-windows-amd64.exe from releases and add to PATH

Coming Soon:

Homebrew tap for easier installation on macOS/Linux
Automated install script

Quick Start

Get Your API Key

Sign up at app.versioner.io
Navigate to Settings → API Keys
Create a new API key and save it securely

Track a Build Event

versioner track build \
  --product=api-service \
  --version=1.2.3 \
  --status=completed

Track a Deployment Event

versioner track deployment \
  --product=api-service \
  --environment=production \
  --version=1.2.3 \
  --status=success

Configuration

Set your API key via environment variable:

export VERSIONER_API_KEY=your-api-key-here
export VERSIONER_API_URL=https://api.versioner.io  # Optional, defaults to production

Or use a config file at ~/.versioner/config.yaml:

api_key: your-api-key-here
api_url: https://api.versioner.io

Usage Examples

GitHub Actions

- name: Track build
  run: |
    versioner track build \
      --product=api-service \
      --version=${{ github.sha }} \
      --status=completed
  env:
    VERSIONER_API_KEY: ${{ secrets.VERSIONER_API_KEY }}

- name: Track deployment
  run: |
    versioner track deployment \
      --product=api-service \
      --environment=production \
      --version=${{ github.sha }} \
      --status=success
  env:
    VERSIONER_API_KEY: ${{ secrets.VERSIONER_API_KEY }}

GitLab CI

build:
  script:
    - make build
  after_script:
    - versioner track build --product=api --version=$CI_COMMIT_SHA --status=completed

deploy:
  script:
    - make deploy
  after_script:
    - versioner track deployment --product=api --environment=$CI_ENVIRONMENT_NAME --version=$CI_COMMIT_SHA --status=success

Jenkins

stage('Build') {
  steps {
    sh 'make build'
    sh 'versioner track build --product=api --version=${BUILD_NUMBER} --status=completed'
  }
}

stage('Deploy') {
  steps {
    sh 'make deploy'
    sh 'versioner track deployment --product=api --environment=prod --version=${BUILD_NUMBER} --status=success'
  }
}

Status Values

Both build and deployment events support these statuses:

pending - Queued/scheduled
started - Currently executing
completed - Successfully finished
failed - Failed with errors
aborted - Cancelled or skipped

Aliases like success, in_progress, cancelled, etc. are automatically normalized.

API Error Handling

The CLI provides control over how API connectivity and authentication errors are handled:

`--fail-on-api-error` Flag

Default: true (API errors fail the command)

Purpose: Controls whether API connectivity/authentication errors should block deployments

Behavior:

--fail-on-api-error=true (default): API errors fail the command (exit code 4)
--fail-on-api-error=false: API errors log warnings but allow command to continue (exit code 0)

Environment Variable: VERSIONER_FAIL_ON_API_ERROR=true|false

Use Cases:

Mission-Critical Audit Trail (Default):

# Every deployment MUST be recorded
versioner track deployment \
  --product=api-service \
  --environment=production \
  --version=1.2.3 \
  --status=started \
  --fail-on-api-error=true  # Default behavior

Best-Effort Observability:

# Recording is nice-to-have, don't block production deployments
versioner track deployment \
  --product=api-service \
  --environment=production \
  --version=1.2.3 \
  --status=started \
  --fail-on-api-error=false

API Errors Affected:

401 (Authentication failed)
403 (Authorization failed)
404 (Endpoint not found)
422 (Validation error)
Connection refused
Request timeout
Other HTTP errors

Note: Preflight check rejections (409, 423, 428) always fail regardless of this flag. Policy enforcement is controlled server-side via rule status settings.

Preflight Checks

When tracking a deployment with --status=started, the API automatically runs preflight checks to validate the deployment before it proceeds. These checks help enforce deployment policies and prevent common issues.

What Gets Checked

Preflight checks validate:

Concurrent Deployments - Prevents multiple simultaneous deployments to the same environment
No-Deploy Windows - Blocks deployments during scheduled blackout periods (e.g., Friday afternoons)
Flow Requirements - Ensures versions are deployed to prerequisite environments first (e.g., staging before production)
Soak Time - Requires versions to run in an environment for a minimum duration before promoting
Quality Approvals - Requires QA/security sign-off from prerequisite environments
Release Approvals - Requires manager/lead approval before deploying to sensitive environments

Exit Codes

The CLI uses specific exit codes to indicate different failure types:

0 - Success (deployment allowed)
1 - General error (network issues, invalid arguments)
4 - API error (authentication, validation)
5 - Preflight check failure (deployment blocked)

Error Types and Responses

409 - Deployment Conflict

Another deployment is already in progress:

⚠️  Deployment Conflict

Another deployment to production is already in progress
Another deployment is in progress. Please wait and retry.

Action: Wait for the current deployment to complete, then retry.

423 - Schedule Block

Deployment blocked by a no-deploy window:

🔒 Deployment Blocked by Schedule

Rule: Production Freeze - Friday Afternoons
Deployment blocked by no-deploy window

Retry after: 2025-11-21T18:00:00-08:00

To skip checks (emergency only), add:
  --skip-preflight-checks

Action: Wait until the blackout window ends, or use --skip-preflight-checks for emergencies.

428 - Precondition Failed

Missing required prerequisites:

Flow Violation:

❌ Deployment Precondition Failed

Error: FLOW_VIOLATION
Rule: Staging Required Before Production
Version must be deployed to staging first

Deploy to required environments first, then retry.

Insufficient Soak Time:

❌ Deployment Precondition Failed

Error: INSUFFICIENT_SOAK_TIME
Rule: 24hr Staging Soak
Version must soak in staging for at least 24 hours

Retry after: 2025-11-22T10:00:00Z

Wait for soak time to complete, then retry.

Approval Required:

❌ Deployment Precondition Failed

Error: APPROVAL_REQUIRED
Rule: Prod Needs 2 Approvals
production deployment requires 2 release approval(s)

Approval required before deployment can proceed.
Obtain approval via Versioner UI, then retry.

Policy Control

Preferred Approach: Server-Side Rule Status

Policy enforcement should be controlled server-side via the Versioner UI:

Rule Status Options:

enabled - Rule is evaluated and blocks on failure (returns 409/423/428)
report_only - Rule is evaluated but doesn't block (returns 200 with warnings)
disabled - Rule is not evaluated at all

Emergency Deployments:

Admin logs into Versioner UI
Navigate to Deployment Rules
Change rule status from "Enabled" to "Report Only" or "Disabled"
Deploy normally - rules won't block
After incident, flip back to "Enabled"

Benefits:

✅ Centralized control (no code changes)
✅ Granular (per-rule control)
✅ Auditable (status changes tracked)
✅ Reversible (instant flip back)
✅ Consistent across all clients

Emergency Override (Deprecated):

For immediate bypass when you can't access the UI:

versioner track deployment \
  --product=api-service \
  --environment=production \
  --version=1.2.3-hotfix \
  --status=started \
  --skip-preflight-checks

⚠️ Deprecation Notice: --skip-preflight-checks is deprecated. Use server-side rule status control instead. This flag will be removed in a future version.

⚠️ Warning: Only use --skip-preflight-checks for:

Production incidents requiring immediate fixes when UI is unavailable
Approved emergency changes
When deployment rules are temporarily misconfigured

Always document why checks were skipped in your deployment logs.

Full Deployment Workflow

# 1. Start deployment (triggers preflight checks)
versioner track deployment \
  --product=api-service \
  --environment=production \
  --version=1.2.3 \
  --status=started

# 2. If checks pass (exit code 0), proceed with actual deployment
if [ $? -eq 0 ]; then
  # Your deployment commands here
  kubectl apply -f deployment.yaml

  # 3. Report completion
  versioner track deployment \
    --product=api-service \
    --environment=production \
    --version=1.2.3 \
    --status=completed
fi

CI/CD Integration

GitHub Actions:

- name: Start Deployment
  id: preflight
  run: |
    versioner track deployment \
      --product=api-service \
      --environment=production \
      --version=${{ github.sha }} \
      --status=started
  env:
    VERSIONER_API_KEY: ${{ secrets.VERSIONER_API_KEY }}
  continue-on-error: true

- name: Deploy Application
  if: steps.preflight.outcome == 'success'
  run: |
    # Your deployment commands
    kubectl apply -f k8s/

- name: Report Completion
  if: steps.preflight.outcome == 'success'
  run: |
    versioner track deployment \
      --product=api-service \
      --environment=production \
      --version=${{ github.sha }} \
      --status=completed
  env:
    VERSIONER_API_KEY: ${{ secrets.VERSIONER_API_KEY }}

GitLab CI:

deploy:production:
  script:
    # Preflight check
    - |
      versioner track deployment \
        --product=api \
        --environment=production \
        --version=$CI_COMMIT_SHA \
        --status=started
    # Deploy if checks pass
    - kubectl apply -f k8s/
    # Report completion
    - |
      versioner track deployment \
        --product=api \
        --environment=production \
        --version=$CI_COMMIT_SHA \
        --status=completed

CI/CD Auto-Detection

The CLI automatically detects your CI/CD environment and extracts relevant metadata. Supported systems:

GitHub Actions - Repository, commit SHA, run ID, actor
GitLab CI - Project path, commit SHA, pipeline ID, user
Jenkins - Repository, commit SHA, build number, user (with plugin)
CircleCI - Repository, commit SHA, build number, workflow ID
Bitbucket Pipelines - Repository, commit SHA, build number
Azure DevOps - Repository, commit SHA, build number, user
Travis CI - Repository, commit SHA, build number
Rundeck - Job name, execution ID, user, project

When running in a supported CI/CD system, you can omit many flags:

# In GitHub Actions - auto-detects repository, SHA, build number, etc.
versioner track build --product=api-service --status=completed

# In GitLab CI - auto-detects project, SHA, pipeline info
versioner track deployment --environment=production --status=success

Use --verbose to see which values were auto-detected:

versioner track build --product=api --status=completed --verbose

Auto-Detected Extra Metadata

The CLI automatically captures system-specific metadata and includes it in the extra_metadata field with a vi_ prefix (Versioner Internal). This metadata is merged with any user-provided --extra-metadata values, with user values taking precedence.

GitHub Actions:

vi_gh_workflow - Workflow name
vi_gh_job - Job name
vi_gh_run_attempt - Retry attempt number
vi_gh_event_name - Triggering event (push, pull_request, etc.)
vi_gh_ref - Git reference
vi_gh_head_ref - PR head branch (if applicable)
vi_gh_base_ref - PR base branch (if applicable)

GitLab CI:

vi_gl_pipeline_id - Pipeline ID
vi_gl_pipeline_url - Direct link to pipeline
vi_gl_job_id - Job ID
vi_gl_job_name - Job name
vi_gl_job_url - Direct link to job
vi_gl_pipeline_source - Pipeline trigger source

Jenkins:

vi_jenkins_job_name - Job name
vi_jenkins_build_url - Build URL
vi_jenkins_node_name - Build agent name
vi_jenkins_executor_number - Executor number

CircleCI:

vi_circle_workflow_id - Workflow ID
vi_circle_workflow_job_id - Workflow job ID
vi_circle_job_name - Job name
vi_circle_node_index - Parallel node index

Bitbucket Pipelines:

vi_bb_pipeline_uuid - Pipeline UUID
vi_bb_step_uuid - Step UUID
vi_bb_workspace - Workspace name
vi_bb_repo_slug - Repository slug

Azure DevOps:

vi_azure_build_id - Build ID
vi_azure_definition_name - Pipeline definition name
vi_azure_agent_name - Agent name
vi_azure_team_project - Team project name

Travis CI:

vi_travis_build_id - Build ID
vi_travis_job_id - Job ID
vi_travis_job_number - Job number
vi_travis_event_type - Event type

Rundeck:

vi_rd_job_id - Job UUID
vi_rd_job_execid - Execution ID
vi_rd_job_serverurl - Rundeck server URL
vi_rd_job_project - Project name
vi_rd_job_name - Job name
vi_rd_job_group - Job group
vi_rd_job_url - Direct link to execution

Example with merged metadata:

# Auto-detected metadata is automatically included
versioner track build \
  --product=api-service \
  --status=completed \
  --extra-metadata='{"docker_image": "myorg/api:1.2.3", "artifacts": ["binary"]}'

# Result includes both auto-detected (vi_*) and user-provided fields

Note: Only fields that are actually present in the environment are included. Missing values are gracefully omitted.

Feedback & Support

This is a beta release and we'd love your feedback!

Issues & Bug Reports: GitHub Issues
Feature Requests: GitHub Discussions
Security Issues: See SECURITY.md

Documentation

For comprehensive documentation:

See Versioner docs

Repository-Specific Docs

CONTRIBUTING.md - Development workflow, setup, testing
SECURITY.md - Security policy and vulnerability reporting
LICENSE - MIT License

Name		Name	Last commit message	Last commit date
Latest commit History 29 Commits
.github/workflows		.github/workflows
cmd/versioner		cmd/versioner
internal		internal
.gitignore		.gitignore
CONTRIBUTING.md		CONTRIBUTING.md
LICENSE		LICENSE
README.md		README.md
RELEASING.md		RELEASING.md
SECURITY.md		SECURITY.md
go.mod		go.mod
go.sum		go.sum
justfile		justfile

License

versioner-io/versioner-cli

Folders and files

Latest commit

History

Repository files navigation