A simple GitHub Action to automatically bump npm versions. Designed to be used with Conventional Commits.
- Bump Package Version Action
- Table of Contents
- Usage
- Recipes
- Comparison to other actions
- Contributing
- Acknowledgments
- License
This action allows you to automatically update versions in your package.json. It scans newly pushed commits for keywords in messages. If any matches are found it updates the version in package.json and optionally (enabled by default) commits, tags and pushes changes to caller branch. There is also support for canary versions - if this action was called in a pull_request event, it will create a canary version from the latest commit (according to all commit messages in PR).
It is however important that only
pull_requestevents from the base repository are handled by default. It is unsafe to expose publishing tokens to use in PRs from unknown contributors and GitHub Actions themself do not allow you to access secrets in such Pull Requests. Therefore by defaultabort-for-forksoption is enabled. If you have a use for this action in fork PRs disable this option.
jobs:
bump:
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@v2
with:
fetch-depth: 0
- name: "Bump version"
uses: "yakovlev-alexey/bump-package-version-action@main"
env:
GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
with:
# messages starting with this words will result in a major version bump
major-wording: "feat!"
# messages starting with this words will result in a minor version bump
minor-wording: "feat"
# messages starting with this words will result in a patch version bump
# separate keywords using a comma
patch-wording: "fix,docs"
# create a custom commit message ({{version}} will be replaced with the actual version after bump)
commit-message: "ci: version bump to {{version}}"
# skip pushing resulting tag/commit
skip-push: "false"
# skip tagging resulting version
skip-tag: "false"
# skip commiting resulting bump
skip-commit: "false"
# skip commiting, tagging and pushing for canary versions (PRs)
skip-for-canary: "true"
# abort action immediately when called in PR from a fork
abort-for-forks: "true"In this section you may find a few ready-made workflows to use in your projects.
A very basic workflow with no validations made just for automatically versioning and publishing your npm package on pushes to your main branch. May also publish RCs if pull_request event is enabled.
# .github/workflows/main.yml
name: main
on:
push:
branches:
- main
pull_request:
branches:
- main
jobs:
release:
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@v2
with:
fetch-depth: 0
- name: Bump version
id: bump-version
uses: "yakovlev-alexey/bump-package-version-action@v1.1.0"
env:
GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
with:
major-wording: "feat!"
minor-wording: "feat"
patch-wording: "fix"
- name: Publish npm
if: steps.bump-version.outputs.version != null
env:
NPM_AUTH_TOKEN: ${{ secrets.NPM_AUTH_TOKEN }}
run: yarn publish --non-interactive --registry https://registry.npmjs.org/A more advanced example with multiple jobs to reflect different stages of CI. This workflow allows static type checking, test running and publishing as separate jobs with caching to increase execution speed. Whole file is available as a Gist.
# .github/workflows/main.yml
name: main
on:
push:
branches:
- main
pull_request:
branches:
- main
jobs:
sanity:
runs-on: ubuntu-latest
steps:
# ...
unit:
needs: sanity
runs-on: ubuntu-latest
steps:
# ...
release:
needs: unit
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@v2
with:
fetch-depth: 0
- name: Bump version
id: bump-version
uses: "yakovlev-alexey/bump-package-version-action@v1.1.0"
env:
GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
with:
major-wording: "feat!"
minor-wording: "feat"
patch-wording: "fix"
- name: Set cache directory
# unfortunately a job can't be stopped with success preemptively
if: steps.bump-version.outputs.version != null
id: yarn-cache-dir-path
run: echo "::set-output name=dir::$(yarn cache dir)"
- uses: actions/cache@v2
if: steps.bump-version.outputs.version != null
id: yarn-cache
with:
path: ${{ steps.yarn-cache-dir-path.outputs.dir }}
key: ${{ runner.os }}-yarn-${{ hashFiles('**/yarn.lock') }}
restore-keys: |
${{ runner.os }}-yarn-
- name: Install dependencies
if: steps.bump-version.outputs.version != null
run: yarn --frozen-lockfile
- name: Publish npm
if: steps.bump-version.outputs.version != null
env:
NPM_AUTH_TOKEN: ${{ secrets.NPM_AUTH_TOKEN }}
run: yarn publish --non-interactive --registry https://registry.npmjs.org/bump-package-version-action can be used for other cases as well: for example, you might want to update package version and create website build with this new version. Only differences compared to previous example would be in the final steps of the jobs. You might not even want to publish anything - just keep track of versions. This is the case with bump-package-version-action itself: Actions do not need to be published to npm, but having separate tags with semantic versions is very helpful. Check out main.yml.
# .github/workflows/main.yml
name: "Main"
on:
push:
branches:
- main
jobs:
node-ci:
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@v2
with:
fetch-depth: 0
- name: Install dependencies
run: yarn --frozen-lockfile
- name: Lint
run: yarn lint
- name: "Bump version"
uses: "yakovlev-alexey/bump-package-version-action@main"
env:
GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
with:
minor-wording: "feat"
major-wording: "feat!,BREAKING CHANGES"
patch-wording: "fix"You may ask: how is this action different from a few other implementations of automated version bumps?
My primary concern with other packages was code quality - I was unable to fully understand which code was responsible for what. That's why this action is written completely in TypeScript and has linters installed.
I was also unsure of how other actions bump versions (partly due to spaghetti code). In this action I'm heavily investing in providing great documentation, support and ready to use recipes.
I also have a roadmap of improving this action with one the great upcoming features being ability to use plugins - bump-package-version-action should turn into bump-version-action with a few plugins like bump-npm-version-action, bump-yarn-version-action, bump-pypi-version-action and so on. See issues for more details on future plans
Feel free to send any suggestions in GitHub issues: comment or vote on an existing issue, open a new one or create a Pull Request with your feature.
This package is largely inspired by gh-action-bump-version by @phips28.