
Security News
PolinRider: North Korea-Linked Supply Chain Campaign Expands Across Open Source Ecosystems
PolinRider expands across npm, Packagist, Go modules, and Chrome extensions, using hidden loaders to target developer environments.
semver-effect
Advanced tools
Strict SemVer 2.0.0 implementation built on Effect, providing typed parsing, range algebra and version cache services.
Strict SemVer 2.0.0 implementation built on Effect. Every operation returns
typed errors through Effect's error channel -- no null, no exceptions, no
loose mode.
v.bump.minor(), range.test(v)) and static methods (SemVer.parse(), Range.parse())gt, satisfies, bumpMajor, etc.)InvalidVersionError, UnsatisfiedRangeError, and others explicitlynpm install semver-effect effect
import { Effect } from "effect";
import { SemVer, Range } from "semver-effect";
const program = Effect.gen(function* () {
// Parse strings with static methods -- typed errors in the Effect channel
const v = yield* SemVer.parse("1.4.2");
const range = yield* Range.parse("^1.2.0");
// Instance methods for comparison, bumping, and matching
range.test(v); // true
v.gt(yield* SemVer.parse("1.3.0")); // true
v.compare(yield* SemVer.parse("2.0.0")); // -1
v.bump.minor().toString(); // "1.5.0"
v.isStable; // true
});
Effect.runSync(program);
Standalone functions are also available for pipe/data-last composition:
import { Effect, pipe } from "effect";
import { SemVer, parseValidSemVer, parseRange, bumpMinor, gt, satisfies } from "semver-effect";
const program = Effect.gen(function* () {
const v = yield* parseValidSemVer("1.4.2");
const range = yield* parseRange("^1.2.0");
satisfies(v, range); // true
pipe(v, gt(yield* parseValidSemVer("1.3.0"))); // true
bumpMinor(v).toString(); // "1.5.0"
});
Effect.runSync(program);
For API reference, Effect integration patterns, migration guides, and SemVer spec compliance details, see docs/.
FAQs
Strict SemVer 2.0.0 implementation built on Effect, providing typed parsing, range algebra and version cache services.
We found that semver-effect demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?

Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.

Security News
PolinRider expands across npm, Packagist, Go modules, and Chrome extensions, using hidden loaders to target developer environments.

Security News
Open source attacks are accelerating as AI coding agents pull in dependencies faster, with less human review.

Research
/Security News
Malicious Chrome and Firefox extensions posed as free VPNs while stealing clipboard data through later extension updates.