New Research: Supply Chain Attack on Axios Pulls Malicious Dependency from npm.Details
Socket
Book a DemoSign in
Socket
Book a DemoSign in

freeform-semantic-commit-analyzer

Package Overview
Dependencies
Maintainers
1
Versions
11
Alerts
File Explorer

Advanced tools

License
Socket logo

Install Socket

Detect and block malicious and high-risk dependencies

Install

freeform-semantic-commit-analyzer

derive next semantic version from commits, covering most commit messages types

latest
Source
npmnpm
Version
1.1.8
Version published
Weekly downloads
40
11.11%
Maintainers
1
Weekly downloads
 
Created
Source

freeform-semantic-commit-analyzer

npm version Build Status Coverage Status Dependency Status devDependency Status semantic-release

An analyzeCommits plugin for semantic-release covering most commit types.

Major Releases

SEE: https://github.com/semantic-release/semantic-release#major-breaking-release

  • Breaking Changes

Minor Releases

  • feat

SEE: https://github.com/angular/angular.js/blob/master/CONTRIBUTING.md#type

Patch Releases

  • chore
  • docs
  • fix
  • perf
  • refactor
  • revert
  • unstructured commits

This fork

Changes list compared to https://github.com/semantic-release/commit-analyzer:

  • unstructured commits yield in patch versions
  • most other commit types yield in patch versions
  • you can disable some version change types by specifying allowed version types in package.json like this:
  "publishConfig": {
    "tag": "1x"
  },
  "release": {
    "branch": "1x",
    "analyzeCommits": {
        "path": "./node_modules/freeform-semantic-commit-analyzer/dist/index.js",
        "allowed": ["patch", "minor"],
        "fallback": "minor"
    }
  }

Here, only 'patch' and 'minor' version changes are allowed - this is a package for legacy 1.x branch and we don't want it to jump out of 1.x versions range ocasionally. Default fallback version type is 'patch'.

Keywords

semantic-release
author
automation
changelog
module
package

FAQs

Package last updated on 14 Nov 2016

Did you know?

Socket

Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.

Install

Related posts

Socket Named Top Sales Organization by RepVue

Company News

Socket Named Top Sales Organization by RepVue

Socket won two 2026 Reppy Awards from RepVue, ranking in the top 5% of all sales orgs. AE Alexandra Lister shares what it's like to grow a sales career here.

By Sarah Gooding  -  Apr 17, 2026
Socket Selected for OpenAI's Cybersecurity Grant Program

Company News

/

Security News

Socket Selected for OpenAI's Cybersecurity Grant Program

Socket is an initial recipient of OpenAI's Cybersecurity Grant Program, which commits $10M in API credits to defenders securing open source software.

By Sarah Gooding  -  Apr 16, 2026