Security News
MCP Community Begins Work on Official MCP Metaregistry
The MCP community is launching an official registry to standardize AI tool discovery and let agents dynamically find and install MCP servers.
By Sarah Gooding - May 09, 2025
🚀 Big News: Socket Acquires Coana to Bring Reachability Analysis to Every Appsec Team.Learn more →
semver-compare
Advanced tools
What is semver-compare?
The semver-compare npm package is a simple utility for comparing semantic version strings. It allows developers to determine the order of semantic versions, check if one version is greater than, less than, or equal to another, and sort arrays of version strings.
What are semver-compare's main functionalities?
Compare two semantic version strings
This feature allows you to compare two semantic version strings and returns -1, 0, or 1 depending on whether the first version is less than, equal to, or greater than the second version.
"const compare = require('semver-compare');
let result = compare('1.2.3', '1.2.4');
console.log(result); // -1"Sort an array of semantic version strings
This feature allows you to sort an array of semantic version strings in ascending order using the compare function provided by the package.
"const compare = require('semver-compare');
let versions = ['1.2.3', '1.2.4', '1.2.2'];
versions.sort(compare);
console.log(versions); // ['1.2.2', '1.2.3', '1.2.4']"Other packages similar to semver-compare
semver
The semver package is a more comprehensive tool for working with semantic versions. It provides functions for parsing, comparing, and manipulating semantic versions. It includes a wider range of features compared to semver-compare, such as coercion, ranges, and version incrementing.
compare-versions
compare-versions is another package that allows for comparison of semantic version strings. It offers similar basic comparison functionality to semver-compare but also includes additional options for custom sorting and comparing version segments individually.
semver-compare
compare two semver version strings, returning -1, 0, or 1
The return value can be fed straight into [].sort.
example
var cmp = require('semver-compare');
var versions = [
'1.2.3',
'4.11.6',
'4.2.0',
'1.5.19',
'1.5.5',
'4.1.3',
'2.3.1',
'10.5.5',
'11.3.0'
];
console.log(versions.sort(cmp).join('\n'));
prints:
1.2.3
1.5.5
1.5.19
2.3.1
4.1.3
4.2.0
4.11.6
10.5.5
11.3.0
whereas the default lexicographic sort (versions.sort()) would be:
1.2.3
1.5.19
1.5.5
10.5.5
11.3.0
2.3.1
4.1.3
4.11.6
4.2.0
methods
var cmp = require('semver-compare')
cmp(a, b)
If the semver string a is greater than b, return 1.
If the semver string b is greater than a, return -1.
If a equals b, return 0;
install
With npm do:
npm install semver-compare
license
MIT
Keywords
FAQs
compare two semver version strings, returning -1, 0, or 1
The npm package semver-compare receives a total of 5,681,453 weekly downloads. As such, semver-compare popularity was classified as popular.
We found that semver-compare demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Package last updated on 08 Nov 2014
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Related posts
Research
Security News
Malicious npm Packages Use Telegram to Exfiltrate BullX Credentials
Socket uncovers an npm Trojan stealing crypto wallets and BullX credentials via obfuscated code and Telegram exfiltration.
By Kush Pandya - May 08, 2025
Research
Security News
Backdooring the IDE: Malicious npm Packages Hijack Cursor Editor on macOS
Malicious npm packages posing as developer tools target macOS Cursor IDE users, stealing credentials and modifying files to gain persistent backdoor access.
By Kirill Boychenko - May 07, 2025