danger-plugin-conventional-commitlint
Advanced tools
A danger plugin to lint commit messages with commitlint
Install:
npm install --save-dev danger-plugin-conventional-commitlint
At a glance:
// dangerfile.js
import commitlint from 'danger-plugin-conventional-commitlint';
import configConventional from '@commitlint/config-conventional';
(async function dangerReport() {
const commitlintConfig = {
severity: 'warn',
};
await commitlint(configConventional.rules, commitlintConfig);
})();
Note: you must provide your own
rulesto the function
commitlint([rules], [options])
severityType: String
Choices: 'fail' | 'warn' | 'message'
Default: 'fail'
Danger method to call when the commit message does not pass the linter
messageReplacerType:
(ruleOutcome: LintOutcome, commitMessage: string) => string;
Default:
There is a problem with the commit message > [Commit message] - [Error Messages]
Method to add a custom message. When not passed, a default message is shown. Example:
const messageReplacer = (
ruleOutcome: LintOutcome,
commitMessage: string,
): string => {
const errorsDescription = ruleOutcome.errors
.map((error) => `<li>${error.message}</li>`)
.join('');
return `<p>Commit message: <b>"${commitMessage}"</b></p><ul>${errorsDescription}</ul> Suffix after commit message`;
};
See the GitHub release history.
See CONTRIBUTING.md.
FAQs
lint commit messages with danger and commitlint
The npm package danger-plugin-conventional-commitlint receives a total of 877 weekly downloads. As such, danger-plugin-conventional-commitlint popularity was classified as not popular.
We found that danger-plugin-conventional-commitlint demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
Multiple high-impact npm maintainers confirm they have been targeted in the same social engineering campaign that compromised Axios.
Security News
Axios compromise traced to social engineering, showing how attacks on maintainers can bypass controls and expose the broader software supply chain.
Security News
Node.js has paused its bug bounty program after funding ended, removing payouts for vulnerability reports but keeping its security process unchanged.