Skip to content

fix(ci): configure commitlint to accept workspace-scoped Dependabot commit format #85

Description

@jeremyjs

Problem

Dependabot generates commit messages with compound scopes for workspace-scoped bumps:

chore(deps,cli)(deps-dev): bump @types/node from 22.19.19 to 22.19.20 in /packages/cli

The current commitlint.config.cjs does not allow comma-separated scopes, so Commitlint fails on every workspace-level dep bump PR. PRs #82 and #83 demonstrate this failure. It will recur on every future workspace dep upgrade.

Scope

Update commitlint.config.cjs only. Allow comma-separated scopes (e.g. scope-enum or scope-case rules to be made permissive for the Dependabot pattern). No changes to scanner logic, CLI flags, or action.yml.

Acceptance Criteria

  • A commit with message chore(deps,cli)(deps-dev): bump @types/node from X to Y passes commitlint
  • A standard feat(foo): something still passes
  • A malformed commit like badformat: oops still fails
  • CI is green on a test PR that replicates the Dependabot message format

Non-goals

  • Changing Dependabot configuration
  • Changing any scanner behavior or output

QA Checklist

  • echo "chore(deps,cli)(deps-dev): bump foo 1→2" | npx commitlint exits 0
  • echo "feat: valid" | npx commitlint exits 0
  • echo "badformat: oops" | npx commitlint exits non-zero
  • CI green on a PR with workspace-scoped Dependabot-style commit

Risk

Low — commitlint config only, no user-visible output changes.

Dependencies

None. Fixes the recurring Dependabot PR CI failure pattern (current instances: #82, #83).

Metadata

Metadata

Assignees

No one assigned

    Type

    No type

    Fields

    No fields configured for issues without a type.

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions