@commitlint/cli has been updated from version 18.2.0 to 18.4.0, offering developers refined tools for linting commit messages and ensuring adherence to project standards. The core functionality remains the same: enforcing consistent commit message formats to improve project clarity and maintainability.
Significant changes appear in the dependency updates. Version 18.4.0 brings updates to several core @commitlint packages. @commitlint/lint, @commitlint/load, @commitlint/read, @commitlint/types and @commitlint/format are bumped from the 18.1.0/18.2.0 range to the 18.4.0 range, aligning the CLI with the latest versions of these core modules. This likely includes bug fixes, performance improvements, and potentially new features within these core libraries. @commitlint/utils also received an update, going from 18.1.0 to 18.4.0.
Notably, the dependencies execa, yargs, resolve-from, resolve-global, and lodash.isfunction remain at the same versions between the 18.2.0 and 18.4.0 releases. Similarly, the devDependencies like fs-extra, @types/node, @types/yargs, lodash.merge, @commitlint/test, @types/lodash.merge and @types/lodash.isfunction are also unchanged indicating a focus on internal library refinements rather than broader tooling updates.
Developers upgrading to 18.4.0 should experience improved stability and potentially benefit from enhancements within the core @commitlint linting process. Thorough testing is always recommended when upgrading dependencies, though given the nature of the version bump (patch release), the update should pose minimal disruption.
The are not vulnerabilities for the version 18.4.0 of the package @commitlint/cli
