Huge News!Announcing our $40M Series B led by Abstract Ventures.Learn More
Socket
Sign inDemoInstall
Socket
Sign inDemoInstall

semantic-release-github-pr

Package Overview
Dependencies
Maintainers
1
Versions
32
Alerts
File Explorer

Advanced tools

License
Socket logo

Install Socket

Detect and block malicious and high-risk dependencies

Install

semantic-release-github-pr

A `semantic-release` plugin that creates a changelog comment on Github PRs.

  • 3.1.0
  • Source
  • npm
  • Socket score
Version published
Weekly downloads
469
increased by154.89%
Maintainers
1
Weekly downloads
 
Created
Source

semantic-release-github-pr

Build Status npm semantic-release

Preview the semantic release notes that would result from merging a Github PR.

image

This set of semantic-release plugins will post a Github PR comment with a preview of the release that would result from merging.

Install

npm install -D semantic-release-github-pr

Usage

npx semantic-release-github-pr

It helps to think about semantic-releaase-github-pr as a variation on semantic-release's default behavior, using the latter's plugin system to modify some behaviors:

  • If a new release would result from running semantic-release, instead of publishing a new release of a package to npm, it posts a comment with the changelog to matching Github PRs.

  • It posts a static message when there's no release (for clarity).

  • At the beginning of each run, it cleans up any PR comments it previously made (to keep from flooding PRs or leaving outdated information).

Which PRs get a comment?

A PR gets a comment if:

  1. The PR's "from" branch matches the current branch (that this command is being run against).

    To cover multiple CI scenarios (see below), either of:

    1. The PR's test merge commit matches the current branch's git HEAD.
    2. The PR and the current branch have the same git HEAD.

  2. The PR's base branch matches master (default) unless the githubPr.branch configuration option is set.

Configuration

It is assumed the user is already fully familiar with semantic-release and its workflow.

Github

Github authentication must be configured, exactly the same as for semantic-relase's default @semantic-release/github plugin.

Release config

It's possible to configure the expected base branch when matching a PR.

E.g., package.json:

{
  "release": {
    "githubPr": {
      "branch": "staging"
    }
  }
}

Other ways of configuring branch.

Advanced

Due to limitations in how plugins may be composed, semantic-release-github-pr must unfortunately hard-code the analyzeCommits plugin (see discussion here).

Users may still want to define a custom analyzeCommits plugin, or want to pass options to the default analyzeCommits plugin. To work around this problem, set the desired analyzeCommits configuration in the release plugin config inside the githubPr key instead.

E.g., package.json:

{
  "release": {
    "githubPr": {
      "analyzeCommits": "myCommitsAnalyzer"
    }
  }
}

CI

This plugin is best used with a CI build process to fully automate the posting of comments in Github PRs. Ideally, it should run whenever a PR is opened/updated.

Travis

To only run when necessary, we use the $TRAVIS_PULL_REQUEST environment variable to detect whether the build is a "pull request build".

after_success:
  - "[[ $TRAVIS_PULL_REQUEST != 'false' ]] && npx semantic-release-github-pr || exit 0"
CircleCI

To run only when necessary, we use the $CI_PULL_REQUEST environment variable to detect whether the build has a corresponding pull request.

Unfortunately, CircleCI only supports building on push, not when a PR is created. This limits the usefulness of the plugin somewhat, as a build will have to be triggered manually after a PR is opened for the changelog to post.

post:
  - "[[ $CI_PULL_REQUEST != '' ]] && npx semantic-release-github-pr || exit 0"

Advanced

Running semantic-release-github-pr is equivalent to running semantic-release with the following configuration (as encapsulated in the semantic-release-github-pr command):

{
  "release": {
    "analyzeCommits": "semantic-release-github-pr",
    "publish": "semantic-release-github-pr",
    "verifyConditions": [
      "@semantic-release/github",
      "semantic-release-github-pr"
    ]
  }
}
verifyConditions

Used as a hook for cleaning up previous changelog PR comments made by the publish plugin, keeping it from flooding a PR with (eventually stale) changelog comments over time.

It's recommended to pair this package's verifyConditions with that of @semantic-release/github.

analyzeCommits

Used as a hook to create a "no release" comment on a matching PR, if semantic-release determines that there's no new version. Doesn't actually analyze commits itself, but decorates an analyzeCommits implementation (@semantic-release/commit-analyzer by default).

See the Release config section for how to configure a custom analyzeCommits plugin and/or set options.

publish

Creates a comment on matching PRs with the changelog for the release that would result from merging.

FAQs

Package last updated on 11 Feb 2018

Did you know?

Socket

Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.

Install

Related posts

Weekly Downloads Now Available in npm Package Search Results

Security News

Weekly Downloads Now Available in npm Package Search Results

Socket's package search now displays weekly downloads for npm packages, helping developers quickly assess popularity and make more informed decisions.

By Sarah Gooding  -  Nov 26, 2024
SocketSocket SOC 2 Logo

Product

  • Package Alerts
  • Integrations
  • Docs
  • Pricing
  • FAQ
  • Roadmap
  • Changelog

About

Packages

npm

Go

Maven

PyPI

Rubygems

Stay in touch

Get open source security insights delivered straight into your inbox.

  • Terms
  • Privacy
  • Security

Made with ⚡️ by Socket Inc