build(deps-dev): bump @commitlint/cli from 20.5.3 to 21.0.2#208
build(deps-dev): bump @commitlint/cli from 20.5.3 to 21.0.2#208dependabot[bot] wants to merge 1 commit into
Conversation
dependabot
Bot
added
dependencies
dependabot
Bot
added
dependencies
Greptile SummaryThis dependabot PR upgrades
Confidence Score: 4/5The upgrade itself is mechanically sound and Node.js version requirements are fully compatible, but the companion @commitlint/config-conventional package has not been co-bumped to v21, leaving the CLI and its preset at different major versions. @commitlint/cli is now at v21 while @commitlint/config-conventional remains at ^20.5.3. These packages are published in lock-step from the same monorepo, and the CLI's internal @commitlint/load uses the v21 API to load the preset. A cross-major mismatch here can cause type incompatibilities or runtime failures when commitlint resolves the config-conventional preset through its v21 loader. package.json — @commitlint/config-conventional should be bumped to ^21.0.x alongside the CLI upgrade Important Files Changed
Flowchart%%{init: {'theme': 'neutral'}}%%
flowchart TD
CLI["@commitlint/cli@21.0.2\n(this PR)"]
CFG["@commitlint/config-conventional@^20.5.3\n(unchanged)"]
LOAD["@commitlint/load@^21.0.2"]
LINT["@commitlint/lint@^21.0.2"]
FMT["@commitlint/format@^21.0.1"]
READ["@commitlint/read@^21.0.2"]
TYPES["@commitlint/types@^21.0.1"]
YARGS["yargs@18"]
CLI --> LOAD
CLI --> LINT
CLI --> FMT
CLI --> READ
CLI --> TYPES
CLI --> YARGS
LOAD -->|extends| CFG
CFG -.->|v20 major mismatch| LOAD
style CFG fill:#ffcc00,stroke:#ff8800
style CLI fill:#90ee90,stroke:#228b22
Reviews (5): Last reviewed commit: "build(deps-dev): bump @commitlint/cli fr..." | Re-trigger Greptile |
![greptile-apps[bot]](https://avatars.githubusercontent.com/in/867647?s=60&v=4){kind=small}
| "devDependencies": { | ||
| "@commitlint/cli": "^20.5.3", | ||
| "@commitlint/cli": "^21.0.2", | ||
| "@commitlint/config-conventional": "^20.5.3", |
There was a problem hiding this comment.
@commitlint/config-conventional not co-bumped
@commitlint/cli was updated to v21 while @commitlint/config-conventional remains at ^20.5.3. Commitlint publishes all its packages in lock-step from a single monorepo, so mixing major versions can cause type mismatches or unexpected runtime behavior when the CLI attempts to load the v20 config preset through its v21 internal loader (@commitlint/load). A companion PR or manual bump of @commitlint/config-conventional to ^21.0.x should be included.
dependabot
Bot
force-pushed
the
dependabot/npm_and_yarn/commitlint/cli-21.0.2
branch
3 times, most recently
from
4ea5ff8 to
ec8f464
Compare
Bumps [@commitlint/cli](https://github.com/conventional-changelog/commitlint/tree/HEAD/@commitlint/cli) from 20.5.3 to 21.0.2. - [Release notes](https://github.com/conventional-changelog/commitlint/releases) - [Changelog](https://github.com/conventional-changelog/commitlint/blob/master/@commitlint/cli/CHANGELOG.md) - [Commits](https://github.com/conventional-changelog/commitlint/commits/v21.0.2/@commitlint/cli) --- updated-dependencies: - dependency-name: "@commitlint/cli" dependency-version: 21.0.2 dependency-type: direct:development update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com>
dependabot
Bot
force-pushed
the
dependabot/npm_and_yarn/commitlint/cli-21.0.2
branch
from
ec8f464 to
8fbbad3
Compare
Bumps @commitlint/cli from 20.5.3 to 21.0.2.
Release notes
Sourced from @commitlint/cli's releases.
... (truncated)
Changelog
Sourced from @commitlint/cli's changelog.
Commits
8069048v21.0.2121005efix: disallow same commit hash for --from and --to (#4773)db8d7d6v21.0.11329a25chore: migrate to pnpm (#4762)db39968chore: pre pnpm cleanup (#4759)6099ae5chore: replace eslint with oxlint (#4756)f081a8ev21.0.040d7e36feat!: show input from a new line (#4727)44c3174chore: update dependency yargs to v18 #4432 (#4686)ac01464chore: replace dependencies with Node 22 built-ins (#4681)