使用 semantic-release 自动发版
前言
最近新项目准备做自动发版,就去研究了一下 semantic-release 。
什么是 semantic-release
Fully automated version management and package publishing
semantic-release automates the whole package release workflow including: determining the next version number, generating the release notes and publishing the package.
This removes the immediate connection between human emotions and version numbers, strictly following the Semantic Versioning specification.
用人话说就是一个完全自动化的工具,可以帮助你做版本号管理、生成 changelog ,并且发布到包管理器 ( 比如 npm ) 。
如何使用 ( 官方文档 )
Install semantic-release in your project
Configure your Continuous Integration service to
run semantic-releaseConfigure your Git repository and package manager repository authentication in your Continuous Integration service
Configure semantic-release options and plugins
cd your-module
npx semantic-release-cli setup
# For Node modules projects
npm install --save-dev semantic-release
# Then in the CI environment
npx semantic-release
以上是官方文档的内容,操作真的是很简单,简单到不知道它是干嘛的,简单到后面步入一个个坑不知道怎么解决。我照着官方文档折腾了几个小时愣是没跑通,一直在 error 。要不是看在很多项目 ( 比如 octokit ) 都在用它,我都想直接放弃了。
官方文档只是告诉你需要安装这么一个包,有哪些参数,剩下的都没细说,就算有也是藏在某个角落里生怕别人找到:
-
是否需要新建 GitHub 仓库?
-
如何配置 GitHub 和 npm 的 token ?
-
何时触发 发布 操作的?手动执行命令?push ?
-
如何测试?一定要在 CI 环境中?
正确打开方式
我特地建了一个新仓库 semantic-release-test 来演示效果。感兴趣的朋友可以照着我的提交记录走一遍流程。
-
本地新建一个项目,比如
semantic-release-test目录结构
. ├─.github │ └─workflows │ └─release.yml ├─src │ └─index.js ├─.env ├─.releaserc.js ├─package.jsonpackage.json
替换为自己的包名和仓库地址
{ "name": "@anyesu/semantic-release-test", "version": "0.0.0-development", "description": "semantic-release-test", "main": "src/index.js", "scripts": { "build": "echo build success.", "semantic-release": "dotenv -c -- semantic-release", "semantic-release:local": "dotenv -c -- semantic-release --no-ci" }, "publishConfig": { "registry": "https://registry.npmjs.org/", "access": "public" }, "repository": { "type": "git", "url": "https://github.com/iewgggg/semantic-release-test.git" }, "author": "anyesu", "license": "MIT", "bugs": { "url": "https://github.com/iewgggg/semantic-release-test/issues" }, "homepage": "https://github.com/iewgggg/semantic-release-test#readme", "files": [ "src" ], "devDependencies": { "@semantic-release/git": "^9.0.0", "conventional-changelog-cmyr-config": "^1.2.3", "dotenv-cli": "^4.0.0", "semantic-release": "^17.2.1" } }.releaserc.js
semantic-release 的配置文件,具体配置项见 文档 。
module.exports = { plugins: [ "@semantic-release/commit-analyzer", [ "@semantic-release/release-notes-generator", { config: "conventional-changelog-cmyr-config", }, ], "@semantic-release/npm", [ "@semantic-release/git", { assets: ["package.json"], }, ], "@semantic-release/github", ], };.env
环境变量配置文件,通过
dotenv-cli在运行时读取NPM_TOKEN 如果是私有仓库或者不想发布到 npm 可以不填
GITHUB_TOKEN=****** NPM_TOKEN=******.github/workflows/release.yml
CI - GitHub Actions 的配置文件,可选。
GitHub Actions 会自动创建名为 GITHUB_TOKEN 的 secret ,不需要手动添加
只需要 添加 额外的 NPM_TOKEN
name: Release on: repository_dispatch: types: [ semantic-release ] push: branches: - master - next - beta - "*.x" # maintenance releases such as 15.x jobs: release: name: release runs-on: ubuntu-latest steps: - uses: actions/checkout@v2 - uses: actions/setup-node@v1 with: node-version: 12 - run: npm i - run: npm run build - run: npx semantic-release env: GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} NPM_TOKEN: ${{ secrets.NPM_TOKEN }}
-
初始化为 Git 项目,并提交初始化版本
git init git add package.json .releaserc.js .github/workflows/release.yml git commit -m "feat: :tada: Initial commit." -
新建远程仓库 ( 比如 semantic-release-test )
很重要,一定要有远程仓库
-
推送到 GitHub
git remote add origin https://{GITHUB_TOKEN}@github.com/{owner}/{repo} git push -u origin master如果按照上面步骤配置了 GitHub Actions ,那么打开 GitHub 中的项目可以看到已经成功生成了 release 。
同时还可以看到有一条新的提交记录
chore(release): 1.0.0 [skip ci] -
本地测试
安装项目
git pull npm i随便修改一个文件提交一条新记录
echo test > test.txt git add test.txt git commit -m "fix: :apple: Fixing something on macOS."测试效果
npm run semantic-release<details>
<summary>本地日志</summary>[semantic-release] » i Running semantic-release version 17.2.1 [semantic-release] » √ Loaded plugin "verifyConditions" from "@semantic-release/npm" [semantic-release] » √ Loaded plugin "verifyConditions" from "@semantic-release/git" [semantic-release] » √ Loaded plugin "verifyConditions" from "@semantic-release/github" [semantic-release] » √ Loaded plugin "analyzeCommits" from "@semantic-release/commit-analyzer" [semantic-release] » √ Loaded plugin "generateNotes" from "@semantic-release/release-notes-generator" [semantic-release] » √ Loaded plugin "prepare" from "@semantic-release/npm" [semantic-release] » √ Loaded plugin "prepare" from "@semantic-release/git" [semantic-release] » √ Loaded plugin "publish" from "@semantic-release/npm" [semantic-release] » √ Loaded plugin "publish" from "@semantic-release/github" [semantic-release] » √ Loaded plugin "addChannel" from "@semantic-release/npm" [semantic-release] » √ Loaded plugin "addChannel" from "@semantic-release/github" [semantic-release] » √ Loaded plugin "success" from "@semantic-release/github" [semantic-release] » √ Loaded plugin "fail" from "@semantic-release/github" [semantic-release] » ‼ This run was not triggered in a known CI environment, running in dry-run mode. [semantic-release] » ‼ Run automated release from branch master on repository https://[secure]@github.com/iewgggg/semantic-release-test.git in dry-run mode [semantic-release] » √ Allowed to push to the Git repository [semantic-release] » i Start step "verifyConditions" of plugin "@semantic-release/npm" [semantic-release] » √ Completed step "verifyConditions" of plugin "@semantic-release/npm" [semantic-release] » i Start step "verifyConditions" of plugin "@semantic-release/git" [semantic-release] » √ Completed step "verifyConditions" of plugin "@semantic-release/git" [semantic-release] » i Start step "verifyConditions" of plugin "@semantic-release/github" [semantic-release] [@semantic-release/github] » i Verify GitHub authentication [semantic-release] » √ Completed step "verifyConditions" of plugin "@semantic-release/github" [semantic-release] » i Found git tag v1.0.0 associated with version 1.0.0 on branch master [semantic-release] » i Found 1 commits since last release [semantic-release] » i Start step "analyzeCommits" of plugin "@semantic-release/commit-analyzer" [semantic-release] [@semantic-release/commit-analyzer] » i Analyzing commit: fix: :apple: Fixing something on macOS. [semantic-release] [@semantic-release/commit-analyzer] » i The release type for the commit is patch [semantic-release] [@semantic-release/commit-analyzer] » i Analysis of 1 commits complete: patch release [semantic-release] » √ Completed step "analyzeCommits" of plugin "@semantic-release/commit-analyzer" [semantic-release] » i The next release version is 1.0.1 [semantic-release] » i Start step "generateNotes" of plugin "@semantic-release/release-notes-generator" [semantic-release] » √ Completed step "generateNotes" of plugin "@semantic-release/release-notes-generator" [semantic-release] » ‼ Skip step "prepare" of plugin "@semantic-release/npm" in dry-run mode [semantic-release] » ‼ Skip step "prepare" of plugin "@semantic-release/git" in dry-run mode [semantic-release] » ‼ Skip v1.0.1 tag creation in dry-run mode [semantic-release] » ‼ Skip step "publish" of plugin "@semantic-release/npm" in dry-run mode [semantic-release] » ‼ Skip step "publish" of plugin "@semantic-release/github" in dry-run mode [semantic-release] » ‼ Skip step "success" of plugin "@semantic-release/github" in dry-run mode [semantic-release] » √ Published release 1.0.1 on default channel [semantic-release] » i Release note for version 1.0.1: ## 1.0.1 (https://github.com/iewgggg/semantic-release-test/compare/v1.0.0...v1.0.1) (2020-10-22) ### � Bug Fixes * � Fixing something on macOS. (c83864b (https://github.com/iewgggg/semantic-release-test/commit/c83864b))</details>
已经可以看到根据 提交记录 生成的 changelog 的内容,由于不是在 CI 环境中运行的,所以实际并没有发布到 GitHub 和 npm 。
通过预览知道已经 OK 了,下面可以在本地进行发布
npm run semantic-release:local<details>
<summary>本地日志</summary>[semantic-release] » i Running semantic-release version 17.2.1 [semantic-release] » √ Loaded plugin "verifyConditions" from "@semantic-release/npm" [semantic-release] » √ Loaded plugin "verifyConditions" from "@semantic-release/git" [semantic-release] » √ Loaded plugin "verifyConditions" from "@semantic-release/github" [semantic-release] » √ Loaded plugin "analyzeCommits" from "@semantic-release/commit-analyzer" [semantic-release] » √ Loaded plugin "generateNotes" from "@semantic-release/release-notes-generator" [semantic-release] » √ Loaded plugin "prepare" from "@semantic-release/npm" [semantic-release] » √ Loaded plugin "prepare" from "@semantic-release/git" [semantic-release] » √ Loaded plugin "publish" from "@semantic-release/npm" [semantic-release] » √ Loaded plugin "publish" from "@semantic-release/github" [semantic-release] » √ Loaded plugin "addChannel" from "@semantic-release/npm" [semantic-release] » √ Loaded plugin "addChannel" from "@semantic-release/github" [semantic-release] » √ Loaded plugin "success" from "@semantic-release/github" [semantic-release] » √ Loaded plugin "fail" from "@semantic-release/github" [semantic-release] » √ Run automated release from branch master on repository https://[secure]@github.com/iewgggg/semantic-release-test.git [semantic-release] » √ Allowed to push to the Git repository [semantic-release] » i Start step "verifyConditions" of plugin "@semantic-release/npm" [semantic-release] » √ Completed step "verifyConditions" of plugin "@semantic-release/npm" [semantic-release] » i Start step "verifyConditions" of plugin "@semantic-release/git" [semantic-release] » √ Completed step "verifyConditions" of plugin "@semantic-release/git" [semantic-release] » i Start step "verifyConditions" of plugin "@semantic-release/github" [semantic-release] [@semantic-release/github] » i Verify GitHub authentication [semantic-release] » √ Completed step "verifyConditions" of plugin "@semantic-release/github" [semantic-release] » i Found git tag v1.0.0 associated with version 1.0.0 on branch master [semantic-release] » i Found 1 commits since last release [semantic-release] » i Start step "analyzeCommits" of plugin "@semantic-release/commit-analyzer" [semantic-release] [@semantic-release/commit-analyzer] » i Analyzing commit: fix: :apple: Fixing something on macOS. [semantic-release] [@semantic-release/commit-analyzer] » i The release type for the commit is patch [semantic-release] [@semantic-release/commit-analyzer] » i Analysis of 1 commits complete: patch release [semantic-release] » √ Completed step "analyzeCommits" of plugin "@semantic-release/commit-analyzer" [semantic-release] » i The next release version is 1.0.1 [semantic-release] » i Start step "generateNotes" of plugin "@semantic-release/release-notes-generator" [semantic-release] » √ Completed step "generateNotes" of plugin "@semantic-release/release-notes-generator" [semantic-release] » i Start step "prepare" of plugin "@semantic-release/npm" [semantic-release] [@semantic-release/npm] » i Write version 1.0.1 to package.json in pathto\semantic-release-test v1.0.1 [semantic-release] » √ Completed step "prepare" of plugin "@semantic-release/npm" [semantic-release] » i Start step "prepare" of plugin "@semantic-release/git" [semantic-release] [@semantic-release/git] » i Found 1 file(s) to commit [semantic-release] [@semantic-release/git] » i Prepared Git release: v1.0.1 [semantic-release] » √ Completed step "prepare" of plugin "@semantic-release/git" [semantic-release] » i Start step "generateNotes" of plugin "@semantic-release/release-notes-generator" [semantic-release] » √ Completed step "generateNotes" of plugin "@semantic-release/release-notes-generator" [semantic-release] » √ Created tag v1.0.1 [semantic-release] » i Start step "publish" of plugin "@semantic-release/npm" [semantic-release] [@semantic-release/npm] » i Skip publishing to npm registry as package.json's private property is true [semantic-release] » √ Completed step "publish" of plugin "@semantic-release/npm" [semantic-release] » i Start step "publish" of plugin "@semantic-release/github" [semantic-release] [@semantic-release/github] » i Published GitHub release: https://github.com/iewgggg/semantic-release-test/releases/tag/v1.0.1 [semantic-release] » √ Completed step "publish" of plugin "@semantic-release/github" [semantic-release] » i Start step "success" of plugin "@semantic-release/github" [semantic-release] » √ Completed step "success" of plugin "@semantic-release/github" [semantic-release] » √ Published release 1.0.1 on default channel</details>
再打开 GitHub 中的项目可以看到 release v1.0.1 也生成了。
Tip: 可以注意到两次 release 的作者是不一样的,因为使用了不同的 GITHUB_TOKEN 。
此时虽然 GitHub Actions 中多了一个新的执行记录:
chore(release): 1.0.1 [skip ci]但不需要担心会重复发布,在日志中可以看到下面的内容:
There are no relevant changes, so no new version is released.
原理分析
首先,我们结合 semantic-release 和 semantic-release:local 两个命令的日志看下它究竟做了什么
-
加载插件。
-
判断是否在 CI 环境中,不是则跳过执行插件的一些生命周期。
-
检查远程仓库是否存在,以及合法的分支。
-
检查是否有仓库的写入权限。
这一步比较坑爹,如果没有设置 GITHUB_TOKEN 报错竟然是版本落后???
Run automated release from branch master on repository https://github.com/iewgggg/semantic-release-test.git in dry-run mode The local branch master is behind the remote one, therefore a new version won't be published.设置 GITHUB_TOKEN 后再看日志感受下区别
Run automated release from branch master on repository https://[secure]@github.com/iewgggg/semantic-release-test.git in dry-run mode √ Allowed to push to the Git repository这个问题也是我 debug 源码后才发现的。
-
检查 NPM_TOKEN 是否存在,并写入到 temp 目录的 .npmrc 文件中。
-
检查当前分支是否存在符合 语义化版本 的 tag,存在则为当前版本号。
-
对比 远程仓库 是否有新的提交记录,无则终止。
-
插件
@semantic-release/commit-analyzer开始对 新的提交记录 逐条分析,筛选符合 提交规范 的记录, 筛选结果 为空则终止。 -
如果存在 当前版本号 ,则根据 筛选结果 确定升级类型 ( MAJOR / MINOR / PATCH ) 计算 新的版本号 ,否则 新版本号 为
1.0.0。 -
插件
@semantic-release/release-notes-generator再对 新的提交记录 逐条分析生成 changelog 。 -
插件
@semantic-release/npm将 新的版本号 重新写入到 package.json 文件中。 -
插件
@semantic-release/git对修改后的 package.json 进行 提交 和 推送 。插件默认配置还会修改 CHANGELOG.md 文件,本文中配置为只修改 package.json
-
添加新版本号 tag 。
-
npm 打包 并 发布 ,如果 package.json 设置了
"private": true则跳过。 -
发布到 GitHub ,包括压缩包和 changelog 。
整个流程比较清晰了,主要操作也是通过几个插件来完成,所以通过对插件的组合、配置来实现一些个性化的需求。
缺点
-
semantic-release 强依赖于远程仓库的分支状态,所以在正式使用前测试会非常麻烦,反复测试需要反复重置远程仓库的状态,而且网络不好就更恶心了。
-
release 中的 changelog 是发布一个版本生成一次的,这就意味着仓库迁移的话,历史记录就没有了,只剩下 tag 。
如果没有使用插件
@semantic-release/git的话可以不断 reset HEAD 来恢复一个个版本,当然这也很麻烦。
FAQ
-
官方文档太烂怎么办?
直接阅读源码 + debug ,以力破法。
-
为何本地执行命令会卡住?
因为分别需要连接到 GitHub 和 npm ,网络环境差就会卡住。
-
如何不发布到 npm?
-
移除插件
@semantic-release/npm即可,但这样 package.json 中的版本号得不到修改。 -
在 package.json 中设置
"private": true。 -
插件
@semantic-release/npm配置为npmPublish: false。
-
-
registry 设置为 https://registry.npm.taobao.org 但需要发布到 npm?
在 package.json 中设置
"publishConfig": { "registry": "https://registry.npmjs.org/" } -
npm 发布报错?
npm ERR! 402 Payment Required - PUT https://registry.npmjs.org/ - You must sign up for private packages
第一次发布时会出现这个错误,因为 scoped packages 默认会被发布为 私有包 ,需要将其发布为 公有包 。见 官方文档 。
下面有三种方案
-
修改 命令行 参数
npm publish --access public -
在 .npmrc 中设置
access=public -
在 package.json 中设置
"publishConfig": { "access": "public" }
-
-
npm 开启双因素认证 ( Two Factor Authentication ) 后发布报错?
The npm token (https://github.com/semantic-release/npm/blob/master/README.md#npm-registry-authentication) configured in the NPM_TOKEN environment variable must be a valid token (https://docs.npmjs.com/getting-started/working_with_tokens) allowing to publish to
the registry https://registry.npmjs.org/.If you are using Two-Factor Authentication, make configure the auth-only level (https://docs.npmjs.com/getting-started/using-two-factor-authentication#levels-of-authentication) is supported. semantic-release cannot publish with the default auth-and-writes level.
-
双因素认证 需要设置为 auth-only 级别 ( 文档 ) 。
-
Access Tokens 类型选择 Publish 而不是 Automation 。
-
-
如何同步更新
package.json中的版本号?默认不更新版本号,可以添加插件
@semantic-release/git来额外提交。 -
如何在
1.0.0之前发布 prerelease 版本,如:1.0.0-beta.10 ?-
项目不包含 release.yml 时初始化后推送到 master 分支,这样确保 远程仓库 有一个 release 分支 并且不会自动发布。
-
切到 beta 分支提交 release.yml 后推送,自动发布为
1.0.0-beta.1。
这样就生成 beta 版本了,后续迭代继续在 beta 分支上进行,发布正式版只需将 beta 分支合并到 master 分支,然后所有 beta 版的 changelog 都会合并到
1.0.0中。( 参考 ) -
-
如何手动管理版本?
可以使用 standard-version ,二者区别:
standard-versiontakes a different approach by handling versioning, changelog generation, and git tagging for you without automatic pushing (to GitHub) or publishing (to an npm registry). Use ofstandard-versiononly affects your local git repo - it doesn't affect remote resources at all. After you runstandard-version, you can review your release state, correct mistakes and follow the release strategy that makes the most sense for your codebase."scripts": { "release:beta": "standard-version --release-as major --prerelease beta", "release:major": "standard-version --release-as major", "release:minor": "standard-version --release-as minor", "release:patch": "standard-version --release-as patch" }, "devDependencies": { "standard-version": "^9.0.0" } -
如何手动发布?
-
本地执行
npm run semantic-release:local。 -
通过 GitHub Actions Hook 调用,详见 文档 。
也可以添加按钮 - https://github-action-button.web.app
-
-
如何修改 changelog 的格式?
这部分功能底层依赖于 conventional-changelog ,已经内置几种预设 (
angular,atom,codemirror,ember,eslint,express,jquery,jshint,conventionalcommits) 可供选择,我这里使用的是第三方配置 conventional-changelog-cmyr-config ,需要更加个性化详见 conventional-changelog-writer 包配置项。本来我想配置成 antd 那样的双语 changelog ( 再复制一份用 翻译 API 翻译一下,再手动微调 ),但还要 fork 发包,那就先算了吧。
IDEA 插件推荐
-
通过表单的形式结构化输入 commit message 。
符合 AngularJS 的 Git Commit Guidelines 规范。
-
根据输入的内容来选择 emoji 表情 的表达式。
-
Gitmoji 插件的 fork 版本,可以直接显示 emoji 表情 而非表达式。
两个插件都挺不错的,缺点就是写死了不可配置,再加上几年没维护了,用起来有点尴尬。
最后
按照文中的配置,基本上满足我的需求了:
-
自动化版本管理,推送代码或者合并 PR 即可发版。
-
自动生成 changelog ,不再需要单独去写。
-
自动发布到 npm ( 😅 直接省去了学习 npm 发包的步骤 ) 。
-
发布后对应的 PR 和 issue 下会添加 发布通知 的评论,就不需要自己再手动通知了。
