Add developer notes to website and move to dynamic versioning

[cpjordan]

This PR updates the Thetis release workflow and switches package versions to dynamic git-based versioning.

What Changed

• Added developer notes for managing main and release.
• Documented the hard-reset workflow for major Firedrake releases:
  • tag the old release state;
  • hard-reset release to a vetted main commit;
  • tag the new release state.
• Clarified that most fixes go to main first.
• Clarified when release should be updated and tagged.
• Updated install docs - they are release focussed, otherwise re-directed to developer notes.
• Added a way to download only examples/demos without cloning all of Thetis.

Versioning
Propose that Thetis now uses dynamic versioning with setuptools-scm.

• main: YYYY.M.devN
  • Example: 2026.6.dev4
• release: YYYY.M.postN
  • Example: 2026.4.post0, 2026.4.post1

Why Packaging Changed
Previously, the version was hard-coded in pyproject.toml, so it had to be edited manually.
This PR makes git tags the source of truth instead. It removes old Versioneer files and uses setuptools-scm so package versions follow the current branch/tag state.
This also avoids confusion with Firedrake patch versions: Thetis 2026.4.post1 does not imply it matches Firedrake 2026.4.1. Firedrake might make lots of release patches and get to e.g. 2026.4.5, with no Thetis changes at all - it would confuse me that there was only a Thetis 2026.4.0 - hence adding post to differentiate.

[stephankramer]

Looking really good. Agree with almost all of it. Just some clarifications.

Main sticky point for me is that we need to think a bit more about how we ensure the release after a reset is actually tested before we publish it. The whole point about stable release tags is that we can go back to a known stable and tested version, that is known to work with a certain release version of Firedrake, or in the associated container. For the patch release .postN, N>1 this is guaranteed through github's CI but the workflow for the release reset doesn't. It should be that release at that point is the same as main, which should have been recently tested against firedrake main, which should be close to the just released firedrake release. However that's still a bit approximate, and in particular in the run-up to release firedrake main can change quite rapidly. What we want to guarantee is that the release version runs correctly in the latest firedrake release container. You could do this locally (in a docker container) but that's a bit messy and doesn't guarantee you've done exactly the same steps as we've set up in CI. We can't easily do this via a "draft" PR, because if the base is set to main, it will run the wrong container, and if the base is set to "release" it may have conflicts with the extra commits from current release. We could just do the force push to release, github will then trigger the push.yml workflow, and cross our fingers that it passes and then tag .post0 - but what to do if it doesn't pass?

[stephankramer]

Suggested change

	In an editable install, ``git pull`` updates the Thetis source code, but it does
	In an editable install, ``git pull`` updates the Thetis source code and these changes take immediate effect in your (run-time) python environment, but it does

[stephankramer]

Just to clarify that of course "git pull" always updates the source code, it's just that in an editable install these changes are also the ones that get imported.

[stephankramer]

This does not actually work! I presume you asked copilot - which gave me the same suggestion. So did claude. When I complained, it said "You're right, GitHub deprecated SVN support in 2023. Here are the working alternatives".
For people that want to access the demo and examples but want to avoid git, I would just point to https://api.github.com/repos/thetisproject/thetis/tarball/release which gives you a .tar.gz of release. If you want command line instructions use curl -JLO to get a properly named .tar.gz file, or use curl -L https://api.github.com/repos/thetisproject/thetis/tarball/release | tar xz to download and extract in one line.

[stephankramer]

Suggested change

	render as expected (build the Sphinx site locally if you edited
	``docs/source/*``).
	render as expected (build the Sphinx site locally, using ``make html`` in the ``docs/`` directory, if you edited
	``docs/source/*``).

[stephankramer]

I feel this could be a bit clearer. I personally wouldn't want to discourage "less urgent" bug-fixes to be cherry-picked to release. What I would explicitly want to proscribe: new functionality, rewrites of a substantial part of a routine - anything with the potential to introduce new bugs - and in particular any API changes: a script that runs against some release version, should still run against any further patch levels.

[stephankramer]

When would it not "produce a new published release state" ?

[stephankramer]

Suggested change

	updated whenever the ``release`` branch is updated, and it must be built from
	updated whenever the documentation content in the ``release`` branch is updated, and it must be built from

[stephankramer]

This now goes against our policy to in-principle merge into main first. If a website update goes into release only, it will disappear on the next reset.

[stephankramer]

Clarify: although it adds another round of waiting for approval, I think it can be worth doing this via a PR as well - I wouldn't read the whole thing again (some of it is auto-generated) but it's quick to check people have done the correct thing (also for yourself). It's easy to introduce some unintended changes. So maybe: "It is encouraged to do this via a PR and to check on github that all changes are as intended. If unsure, ask for a review" - I think it's currently unprotected. Would also be happy with a stricter approach if we add standard branch protection.

[stephankramer]

This is another case, where it'd be happy for a publications update to be cherry-picked into release so that the website is updated immediately...

[stephankramer]

Why would we have directories under scripts/ ? And if so, would they contain scripts that need discovering?

[stephankramer]

How about we introduce another special branch name "release-candidate" that whenever you push to it triggers a CI run in the firedrake: latest container (i.e. add it to the rules in push.yml). So you:

1. hard-reset release-candidate to main
2. force push release-candidate
3. check the actions tab to see that it passes
4. if it doesn't implement necessary fixes directly on release-candidate, and push them until it works - you can rewrite the fix commits as much as you like as long as it keeps current main as its base unchanged.
   So at this point release-candidate should pass CI, then:
5. If new commits were introduced in 4. fast-forward main to release-candidate, push to main even it breaks CI (by passing branch protection that requires a PR but only using git push without --force to ensure we're not rewriting history)
6. reset release to release-candidate/main
7. force push release
8. tag release
9. if you have broken main under 5. open up a PR as normal to fix it

To clarify point 5+9: if we're a little late (people are busy!) generating the new release after firedrake's, firedrake main may have moved on already. This may for instance mean that at the point that we try to generate a release, Thetis main is already broken against current firedrake main (even though it passed the last time the CI ran). At that point there's another rule we should introduce - as it went wrong the last time: as soon as new Firedrake release has been released, we should not accept any changes to main before we have finished the corresponding Thetis release. Otherwise we run the risk of only working with Firedrake main and (no longer) against the latest release, and these commits would have to be undone on the release branch. In any case, if fixes were needed under 4. chances are that firedrake main was already broken, so by-passing CI checks on main in step 5 is not a big deal.

A slightly simpler version of this would be to immediately push to release (as it currently is described) and immediately try to fix it directly on release if it doesn't pass CI (and then do 5. to 9.). Downside is that there's a window of time with an unstable release....

[jhill1]

I like this process. It means if there are major issues with a release candidate we have time to implement any fixes without pressure.

[cpjordan]

Looking unlikely that I have time to fix this before I go away - back 29th June but happy for anyone else to move this forward in the meantime.