fix: update semantic-release to 21.1.2 #817
Merged
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Issue
npm audit
reports vulnerabilities. The following vulnerabilities come from the use of semantic-release@19.0.5npm audit fix
reports that these vulnerabilities cannot be fixed automatically.Changes
The currently used version, semantic-release@19.0.5, was released in Aug 2022.
Update to semantic-release@21.1.2. This version has proved stable in the cypress-io/github-action where it is called through main.yml and cycjimmy/semantic-release-action.
Notes
Publishing takes place through CircleCI. The current workflow shows
cypress-example-kitchensink/.circleci/config.yml
Lines 149 to 153 in b0f85b4
The version used by CircleCI
19.0.3
was mismatched to the version updated by renovate to19.0.5
. This PR aligns them again to use a common version21.1.2
version.This PR uses a semantic commit
fix:
so that a new release will be generated when the PR is merged, so also testing that it works correctly.The CircleCI pipelines are logged to https://app.circleci.com/pipelines/github/cypress-io/cypress-example-kitchensink.
The release job runs under Node.js
18.16.1
. This is not compatible with semantic-release@22.0.0 and above which requires a minimum of Node.js18.17.0
. semantic-release@21.1.2 is the highest compatible version.