pnpm android:version:pin -- --version 2026.6.5 --version-code 2026060501

```

Release-owner signing sync:

```bash

pnpm android:release:signing:plan

MATCH_PASSWORD=<signing repo password> pnpm android:release:signing:sync:pull

MATCH_PASSWORD=<signing repo password> pnpm android:release:signing:check

```

The signing sync pulls encrypted Android upload-key assets from the shared `apps-signing` repo and materializes decrypted files under `apps/android/build/release-signing/`.

Generate raw Google Play screenshots:

```bash

- Play build: `openclaw-<version>-play-release.aab`

- Third-party build: `openclaw-<version>-third-party-release.apk`

`pnpm android:bundle:release` is an alias for the same archive helper.

`pnpm android:bundle:release` is an alias for the same Fastlane archive lane.

See `apps/android/VERSIONING.md` and `apps/android/fastlane/SETUP.md` for the release workflow.

pnpm android:version:sync

pnpm android:version:pin -- --from-gateway

pnpm android:version:pin -- --version 2026.6.5 --version-code 2026060501

pnpm android:release:signing:plan

MATCH_PASSWORD=<signing repo password> pnpm android:release:signing:sync:pull

pnpm android:release:preflight

```

1. Pin Android to the intended release version.

2. Run `pnpm android:version:sync`.

3. Update `apps/android/CHANGELOG.md`, then run `pnpm android:version:sync` again if needed.

4. Run `pnpm android:release:preflight` to validate Play auth, signing, synced versioning, and release notes.

5. Run `pnpm android:screenshots` to refresh raw Google Play screenshots.

6. Run `pnpm android:release:archive` to produce the signed Play AAB and third-party APK.

7. Run `pnpm android:release:upload` to upload metadata, screenshots, and the Play AAB to Google Play internal testing.

8. Promote to production manually in Google Play Console.

4. Run `MATCH_PASSWORD=<signing repo password> pnpm android:release:signing:sync:pull` to materialize encrypted Android signing assets from `apps-signing`.

5. Run `pnpm android:release:preflight` to validate Play auth, signing, synced versioning, and release notes.

6. Run `pnpm android:screenshots` to refresh raw Google Play screenshots.

7. Run `pnpm android:release:archive` to produce the signed Play AAB and third-party APK.

8. Run `pnpm android:release:upload` to upload metadata, screenshots, and the Play AAB to Google Play internal testing.

9. Promote to production manually in Google Play Console.

The third-party flavor is archived as a signed APK for non-Play distribution. It is not uploaded by the Play release lane.

## Signing model

`apps/android/Config/ReleaseSigning.json` pins the Android signing assets in the shared private `apps-signing` repo. The Android pipeline uses the same `MATCH_PASSWORD` release-owner secret as iOS, but the Android files are managed by `scripts/android-release-signing.mjs` instead of Fastlane `match`.

`sync:pull` decrypts the Play upload keystore and Gradle signing properties into `apps/android/build/release-signing/`. That directory is gitignored, and Fastlane exports the materialized values as Gradle project properties for the current release command.

If `MATCH_PASSWORD` is not set, the existing manual Gradle-property signing path still works: provide `OPENCLAW_ANDROID_STORE_FILE`, `OPENCLAW_ANDROID_STORE_PASSWORD`, `OPENCLAW_ANDROID_KEY_ALIAS`, and `OPENCLAW_ANDROID_KEY_PASSWORD` through your local Gradle user properties before running release tasks.

GOOGLE_PLAY_PACKAGE_NAME=ai.openclaw.app

```

Android release signing uses the same private `apps-signing` repository and `MATCH_PASSWORD` secret as iOS, but with Android-specific encrypted assets. Pull the shared upload key before release validation:

```bash

pnpm android:release:signing:plan

MATCH_PASSWORD=<signing repo password> pnpm android:release:signing:sync:pull

MATCH_PASSWORD=<signing repo password> pnpm android:release:signing:check

```

The pull command materializes decrypted signing files under `apps/android/build/release-signing/`, which is gitignored. Later Fastlane release commands reload those materialized values and export them to Gradle for the current process.

For the first setup or rotation, provide the Play upload keystore and a local signing properties file, then push encrypted assets to `apps-signing`:

```bash

MATCH_PASSWORD=<signing repo password> \

OPENCLAW_ANDROID_UPLOAD_KEYSTORE=<path-to-upload-keystore.jks> \

OPENCLAW_ANDROID_SIGNING_PROPERTIES=<path-to-android-signing.properties> \

pnpm android:release:signing:sync:push

```

The source signing properties file must contain:

```properties

OPENCLAW_ANDROID_STORE_PASSWORD=<store-password>

OPENCLAW_ANDROID_KEY_ALIAS=<upload-key-alias>

OPENCLAW_ANDROID_KEY_PASSWORD=<key-password>

```

Store the Google Play upload key, not the irreplaceable app signing key, when Play App Signing is enabled.

Validate auth:

```bash

- `apps/android/Config/Version.properties` is generated from that source and read by Gradle.

- `apps/android/CHANGELOG.md` is the Android-only changelog and release-note source.

- `apps/android/fastlane/metadata/android/en-US/release_notes.txt` is generated from that changelog by `pnpm android:version:sync`.

- `apps/android/Config/ReleaseSigning.json` pins the encrypted Android signing assets in the shared signing repo.

- `MATCH_PASSWORD` enables Fastlane to pull encrypted Android signing assets into `apps/android/build/release-signing/` before release validation or archive builds.

- Supported pinned Android versions use CalVer: `YYYY.M.D`.

- `versionCode` uses `YYYYMMDDNN`, where `NN` is a two-digit build number for the pinned version.

- `pnpm android:version:pin -- --from-gateway` promotes the current root gateway version into the pinned Android release version.

- `pnpm android:version:pin -- --version 2026.6.5 --version-code 2026060502` increments another build on the same Android release train.

- `pnpm android:version:sync` updates generated version artifacts.

- `pnpm android:version:check` validates checked-in Android version artifacts.

- `pnpm android:release:preflight` validates Google Play auth, Android release signing, synced versioning, release notes, and prints the package/track/version/versionCode that will be uploaded.

- `pnpm android:release:signing:sync:pull` pulls encrypted Android signing assets from `apps-signing`.

- `pnpm android:release:signing:sync:push` creates or refreshes encrypted Android signing assets in `apps-signing`.

- `pnpm android:screenshots` builds and installs the Play debug app, launches deterministic screenshot scenes, and captures raw PNGs.

- `pnpm android:release:archive` builds the signed Play AAB and third-party APK into `apps/android/build/release-artifacts/`.

- `pnpm android:release:upload` uploads the Play AAB to the configured Google Play track. The default track is `internal`.