semantic-release 17.0.4 → 17.0.8

package/bin/semantic-release.js

@@ -29,7 +29,7 @@ execa('git', ['--version'])
       process.exit(1);
     }
   })
-  .catch(error => {
+  .catch((error) => {
     console.error(`[semantic-release]: Git version ${MIN_GIT_VERSION} is required. No git binary found.`);
     console.error(error);
     process.exit(1);
@@ -37,7 +37,7 @@ execa('git', ['--version'])
 
 // Node 10+ from this point on
 require('../cli')()
-  .then(exitCode => {
+  .then((exitCode) => {
     process.exitCode = exitCode;
   })
   .catch(() => {

package/cli.js

@@ -5,15 +5,15 @@ const hideSensitive = require('./lib/hide-sensitive');
 const stringList = {
   type: 'string',
   array: true,
-  coerce: values =>
+  coerce: (values) =>
     values.length === 1 && values[0].trim() === 'false'
       ? []
-      : values.reduce((values, value) => values.concat(value.split(',').map(value => value.trim())), []),
+      : values.reduce((values, value) => values.concat(value.split(',').map((value) => value.trim())), []),
 };
 
 module.exports = async () => {
   const cli = require('yargs')
-    .command('$0', 'Run automated package publishing', yargs => {
+    .command('$0', 'Run automated package publishing', (yargs) => {
       yargs.demandCommand(0, 0).usage(`Run automated package publishing
 
 Usage:
@@ -41,18 +41,18 @@ Usage:
     .exitProcess(false);
 
   try {
-    const {help, version, ...opts} = cli.parse(argv.slice(2));
+    const {help, version, ...options} = cli.parse(argv.slice(2));
 
     if (Boolean(help) || Boolean(version)) {
       return 0;
     }
 
-    if (opts.debug) {
+    if (options.debug) {
       // Debug must be enabled before other requires in order to work
       require('debug').enable('semantic-release:*');
     }
 
-    await require('.')(opts);
+    await require('.')(options);
     return 0;
   } catch (error) {
     if (error.name !== 'YError') {

package/docs/extending/plugins-list.md

@@ -99,3 +99,5 @@
   - `verifyConditions`: Verify the presence and the validity of the authentication and the assets option configuration.
   - `publish`: Publish a Gitea release, optionally uploading file assets.
   - `addChannel`: Update a Gitea release's pre-release field.
+- [@google/semantic-release-replace-plugin](https://github.com/google/semantic-release-replace-plugin)
+  - `prepare`: Replace version strings in files using regex and glob.

package/docs/recipes/github-actions.md

@@ -66,3 +66,8 @@ To trigger a release, call (with a [Personal Access Tokens](https://help.github.
 ```
 $ curl -v -H "Accept: application/vnd.github.everest-preview+json" -H "Authorization: token ${GITHUB_TOKEN}" https://api.github.com/repos/[org-name-or-username]/[repository]/dispatches -d '{ "event_type": "semantic-release" }'
 ```
+
+If you'd like to use a GitHub app to manage this instead of creating a personal access token, you could consider using a project like:
+
+* [Actions Panel](https://www.actionspanel.app/) - A declaratively configured way for triggering GitHub Actions
+* [Action Button](https://github-action-button.web.app/#details) - A simple badge based mechanism for triggering GitHub Actions

package/docs/recipes/gitlab-ci.md

@@ -14,7 +14,7 @@ GitLab CI supports [Pipelines](https://docs.gitlab.com/ee/ci/pipelines.html) all
 
 ### `.gitlab-ci.yml` configuration for Node projects
 
-This example is a minimal configuration for **semantic-release** with a build running Node 6 and 8. See [GitLab CI - Configuration of your jobs with .gitlab-ci.yml](https://docs.gitlab.com/ee/ci/yaml/README.html) for additional configuration options.
+This example is a minimal configuration for **semantic-release** with a build running Node 10 and 12. See [GitLab CI - Configuration of your jobs with .gitlab-ci.yml](https://docs.gitlab.com/ee/ci/yaml/README.html) for additional configuration options.
 
 **Note**: The`semantic-release` execution command varies depending if you are using a [local](../usage/installation.md#local-installation) or [global](../usage/installation.md#global-installation) **semantic-release** installation.
 
@@ -27,25 +27,60 @@ stages:
 before_script:
   - npm install
 
-node:6:
-  image: node:6
+node:10:
+  image: node:10
   stage: test
   script:
     - npm test
 
-node:8:
-  image: node:8
+node:12:
+  image: node:12
   stage: test
   script:
     - npm test
 
 publish:
-  image: node:8
+  image: node:12
   stage: release
   script:
     - npx semantic-release
 ```
 
+### `.gitlab-ci.yml` configuration for all projects
+
+This example is a minimal configuration for **semantic-release** with a build running Node 10 and 12. See [GitLab CI - Configuration of your jobs with .gitlab-ci.yml](https://docs.gitlab.com/ee/ci/yaml/README.html) for additional configuration options.
+
+**Note**: The`semantic-release` execution command varies depending if you are using a [local](../usage/installation.md#local-installation) or [global](../usage/installation.md#global-installation) **semantic-release** installation.
+
+
+```yaml
+# The release pipeline will run only on the master branch a commit is triggered 
+stages:
+  - release
+
+release:
+  image: node:10-buster-slim
+  stage: release
+  before_script:
+    - apt-get update && apt-get install -y --no-install-recommends git-core ca-certificates
+    - npm install -g semantic-release @semantic-release/gitlab
+  script:
+    - semantic-release
+  only:
+    - master
+
+release:
+  image: node:12-buster-slim
+  stage: release
+  before_script:
+    - apt-get update && apt-get install -y --no-install-recommends git-core ca-certificates
+    - npm install -g semantic-release @semantic-release/gitlab
+  script:
+    - semantic-release
+  only:
+    - master
+```
+
 ### `package.json` configuration
 
 A `package.json` is required only for [local](../usage/installation.md#local-installation) **semantic-release** installation.

package/docs/usage/getting-started.md

@@ -1,6 +1,7 @@
 # Getting started
 
 In order to use **semantic-release** you must follow these steps:
+
 1. [Install](./installation.md#installation) **semantic-release** in your project
 2. Configure your Continuous Integration service to [run **semantic-release**](./ci-configuration.md#run-semantic-release-only-after-all-tests-succeeded)
 3. Configure your Git repository and package manager repository [authentication](ci-configuration.md#authentication) in your Continuous Integration service
@@ -9,10 +10,8 @@ In order to use **semantic-release** you must follow these steps:
 Alternatively those steps can be easily done with the [**semantic-release** interactive CLI](https://github.com/semantic-release/cli):
 
 ```bash
-npm install -g semantic-release-cli
-
 cd your-module
-semantic-release-cli setup
+npx semantic-release-cli setup
 ```
 
 ![dialogue](../../media/semantic-release-cli.png)

package/docs/usage/workflow-configuration.md

@@ -140,7 +140,7 @@ A maintenance branch is characterized by a range which defines the versions that
 
 Maintenance branches are always considered lower than [release branches](#release-branches) and similarly to them, when a commit that would create a version conflict is pushed, **semantic-release** will not perform the release and will throw an `EINVALIDNEXTVERSION` error, listing the problematic commits and the valid branches on which to move them.
 
-**semantic-release** will automatically add releases to the corresponding distribution channel when code is [merged from a release or maintenance branch to another maintenance branch](#merging-into-a-maintenance-branch), however only version version within the branch `range` can be merged. Ia merged version is outside the maintenance branch `range` **semantic-release** will not add to the corresponding channel and will throw an `EINVALIDMAINTENANCEMERGE` error.
+**semantic-release** will automatically add releases to the corresponding distribution channel when code is [merged from a release or maintenance branch to another maintenance branch](#merging-into-a-maintenance-branch), however only versions within the branch `range` can be merged. If a merged version is outside the maintenance branch `range`, **semantic-release** will not add to the corresponding channel and will throw an `EINVALIDMAINTENANCEMERGE` error.
 
 See [publishing maintenance releases recipe](../recipes/maintenance-releases.md) for a detailed example.
 

package/index.js

@@ -214,7 +214,7 @@ async function run(context, plugins) {
 }
 
 function logErrors({logger, stderr}, err) {
-  const errors = extractErrors(err).sort(error => (error.semanticRelease ? -1 : 0));
+  const errors = extractErrors(err).sort((error) => (error.semanticRelease ? -1 : 0));
   for (const error of errors) {
     if (error.semanticRelease) {
       logger.error(`${error.code} ${error.message}`);
@@ -228,7 +228,7 @@ function logErrors({logger, stderr}, err) {
 }
 
 async function callFail(context, plugins, err) {
-  const errors = extractErrors(err).filter(err => err.semanticRelease);
+  const errors = extractErrors(err).filter((err) => err.semanticRelease);
   if (errors.length > 0) {
     try {
       await plugins.fail({...context, errors});
@@ -238,7 +238,7 @@ async function callFail(context, plugins, err) {
   }
 }
 
-module.exports = async (opts = {}, {cwd = process.cwd(), env = process.env, stdout, stderr} = {}) => {
+module.exports = async (cliOptions = {}, {cwd = process.cwd(), env = process.env, stdout, stderr} = {}) => {
   const {unhook} = hookStd(
     {silent: false, streams: [process.stdout, process.stderr, stdout, stderr].filter(Boolean)},
     hideSensitive(env)
@@ -253,7 +253,7 @@ module.exports = async (opts = {}, {cwd = process.cwd(), env = process.env, stdo
   context.logger = getLogger(context);
   context.logger.log(`Running ${pkg.name} version ${pkg.version}`);
   try {
-    const {plugins, options} = await getConfig(context, opts);
+    const {plugins, options} = await getConfig(context, cliOptions);
     context.options = options;
     try {
       const result = await run(context, plugins);

package/lib/branches/expand.js

@@ -8,9 +8,9 @@ module.exports = async (repositoryUrl, {cwd}, branches) => {
   return branches.reduce(
     (branches, branch) => [
       ...branches,
-      ...remove(gitBranches, name => micromatch(gitBranches, branch.name).includes(name)).map(name => ({
+      ...remove(gitBranches, (name) => micromatch(gitBranches, branch.name).includes(name)).map((name) => ({
         name,
-        ...mapValues(omit(branch, 'name'), value => (isString(value) ? template(value)({name}) : value)),
+        ...mapValues(omit(branch, 'name'), (value) => (isString(value) ? template(value)({name}) : value)),
       })),
     ],
     []

package/lib/branches/index.js

@@ -14,7 +14,7 @@ module.exports = async (repositoryUrl, ciBranch, context) => {
   const remoteBranches = await expand(
     repositoryUrl,
     context,
-    context.options.branches.map(branch => (isString(branch) || isRegExp(branch) ? {name: branch} : branch))
+    context.options.branches.map((branch) => (isString(branch) || isRegExp(branch) ? {name: branch} : branch))
   );
 
   await pEachSeries(remoteBranches, async ({name}) => {
@@ -32,7 +32,7 @@ module.exports = async (repositoryUrl, ciBranch, context) => {
   );
 
   const result = Object.entries(DEFINITIONS).reduce((result, [type, {branchesValidator, branchValidator}]) => {
-    branchesByType[type].forEach(branch => {
+    branchesByType[type].forEach((branch) => {
       if (branchValidator && !branchValidator(branch)) {
         errors.push(getError(`E${type.toUpperCase()}BRANCH`, {branch}));
       }
@@ -48,15 +48,15 @@ module.exports = async (repositoryUrl, ciBranch, context) => {
   }, {});
 
   const duplicates = [...branches]
-    .map(branch => branch.name)
+    .map((branch) => branch.name)
     .sort()
-    .filter((_, idx, arr) => arr[idx] === arr[idx + 1] && arr[idx] !== arr[idx - 1]);
+    .filter((_, idx, array) => array[idx] === array[idx + 1] && array[idx] !== array[idx - 1]);
 
   if (duplicates.length > 0) {
     errors.push(getError('EDUPLICATEBRANCHES', {duplicates}));
   }
 
-  await pEachSeries(branches, async branch => {
+  await pEachSeries(branches, async (branch) => {
     if (!(await verifyBranchName(branch.name))) {
       errors.push(getError('EINVALIDBRANCHNAME', branch));
     }

package/lib/definitions/branches.js

@@ -5,19 +5,19 @@ const {isMaintenanceRange} = require('../utils');
 const maintenance = {
   filter: ({name, range}) => (!isNil(range) && range !== false) || isMaintenanceRange(name),
   branchValidator: ({range}) => (isNil(range) ? true : isMaintenanceRange(range)),
-  branchesValidator: branches => uniqBy(branches, ({range}) => semver.validRange(range)).length === branches.length,
+  branchesValidator: (branches) => uniqBy(branches, ({range}) => semver.validRange(range)).length === branches.length,
 };
 
 const prerelease = {
   filter: ({prerelease}) => !isNil(prerelease) && prerelease !== false,
   branchValidator: ({name, prerelease}) =>
     Boolean(prerelease) && Boolean(semver.valid(`1.0.0-${prerelease === true ? name : prerelease}.1`)),
-  branchesValidator: branches => uniqBy(branches, 'prerelease').length === branches.length,
+  branchesValidator: (branches) => uniqBy(branches, 'prerelease').length === branches.length,
 };
 
 const release = {
-  filter: branch => !maintenance.filter(branch) && !prerelease.filter(branch),
-  branchesValidator: branches => branches.length <= 3 && branches.length > 0,
+  filter: (branch) => !maintenance.filter(branch) && !prerelease.filter(branch),
+  branchesValidator: (branches) => branches.length <= 3 && branches.length > 0,
 };
 
 module.exports = {maintenance, prerelease, release};

package/lib/definitions/errors.js

@@ -4,9 +4,10 @@ const pkg = require('../../package.json');
 const {RELEASE_TYPE} = require('./constants');
 
 const [homepage] = pkg.homepage.split('#');
-const stringify = obj => (isString(obj) ? obj : inspect(obj, {breakLength: Infinity, depth: 2, maxArrayLength: 5}));
-const linkify = file => `${homepage}/blob/master/${file}`;
-const wordsList = words =>
+const stringify = (object) =>
+  isString(object) ? object : inspect(object, {breakLength: Infinity, depth: 2, maxArrayLength: 5});
+const linkify = (file) => `${homepage}/blob/master/${file}`;
+const wordsList = (words) =>
   `${words.slice(0, -1).join(', ')}${words.length > 1 ? ` or ${words[words.length - 1]}` : trim(words[0])}`;
 
 module.exports = {
@@ -84,7 +85,7 @@ Please refer to the \`${pluginName}\` and [semantic-release plugins configuratio
   EANALYZECOMMITSOUTPUT: ({result, pluginName}) => ({
     message: 'The `analyzeCommits` plugin returned an invalid value. It must return a valid semver release type.',
     details: `The \`analyzeCommits\` plugin must return a valid [semver](https://semver.org) release type. The valid values are: ${RELEASE_TYPE.map(
-      type => `\`${type}\``
+      (type) => `\`${type}\``
     ).join(', ')}.
 
 The \`analyzeCommits\` function of the \`${pluginName}\` returned \`${stringify(result)}\` instead.

package/lib/definitions/plugins.js

@@ -16,12 +16,12 @@ module.exports = {
     default: ['@semantic-release/commit-analyzer'],
     required: true,
     dryRun: true,
-    outputValidator: output => !output || RELEASE_TYPE.includes(output),
+    outputValidator: (output) => !output || RELEASE_TYPE.includes(output),
     preprocess: ({commits, ...inputs}) => ({
       ...inputs,
-      commits: commits.filter(commit => !/\[skip\s+release\]|\[release\s+skip\]/i.test(commit.message)),
+      commits: commits.filter((commit) => !/\[skip\s+release]|\[release\s+skip]/i.test(commit.message)),
     }),
-    postprocess: results =>
+    postprocess: (results) =>
       RELEASE_TYPE[
         results.reduce((highest, result) => {
           const typeIndex = RELEASE_TYPE.indexOf(result);
@@ -37,7 +37,7 @@ module.exports = {
   generateNotes: {
     required: false,
     dryRun: true,
-    outputValidator: output => !output || isString(output),
+    outputValidator: (output) => !output || isString(output),
     pipelineConfig: () => ({
       getNextInput: ({nextRelease, ...context}, notes) => ({
         ...context,
@@ -53,7 +53,7 @@ module.exports = {
     required: false,
     dryRun: false,
     pipelineConfig: ({generateNotes}) => ({
-      getNextInput: async context => {
+      getNextInput: async (context) => {
         const newGitHead = await getGitHead({cwd: context.cwd});
         // If previous prepare plugin has created a commit (gitHead changed)
         if (context.nextRelease.gitHead !== newGitHead) {
@@ -70,7 +70,7 @@ module.exports = {
   publish: {
     required: false,
     dryRun: false,
-    outputValidator: output => !output || isPlainObject(output),
+    outputValidator: (output) => !output || isPlainObject(output),
     pipelineConfig: () => ({
       // Add `nextRelease` and plugin properties to published release
       transform: (release, step, {nextRelease}) => ({
@@ -83,7 +83,7 @@ module.exports = {
   addChannel: {
     required: false,
     dryRun: false,
-    outputValidator: output => !output || isPlainObject(output),
+    outputValidator: (output) => !output || isPlainObject(output),
     pipelineConfig: () => ({
       // Add `nextRelease` and plugin properties to published release
       transform: (release, step, {nextRelease}) => ({

package/lib/get-config.js

@@ -19,14 +19,14 @@ const CONFIG_FILES = [
   `${CONFIG_NAME}.config.js`,
 ];
 
-module.exports = async (context, opts) => {
+module.exports = async (context, cliOptions) => {
   const {cwd, env} = context;
   const {config, filepath} = (await cosmiconfig(CONFIG_NAME, {searchPlaces: CONFIG_FILES}).search(cwd)) || {};
 
   debug('load config from: %s', filepath);
 
   // Merge config file options and CLI/API options
-  let options = {...config, ...opts};
+  let options = {...config, ...cliOptions};
   if (options.ci === false) {
     options.noCi = true;
   }
@@ -38,14 +38,14 @@ module.exports = async (context, opts) => {
     // If `extends` is defined, load and merge each shareable config with `options`
     options = {
       ...castArray(extendPaths).reduce((result, extendPath) => {
-        const extendsOpts = require(resolveFrom.silent(__dirname, extendPath) || resolveFrom(cwd, extendPath));
+        const extendsOptions = require(resolveFrom.silent(__dirname, extendPath) || resolveFrom(cwd, extendPath));
 
         // For each plugin defined in a shareable config, save in `pluginsPath` the extendable config path,
         // so those plugin will be loaded relatively to the config file
-        Object.entries(extendsOpts)
+        Object.entries(extendsOptions)
           .filter(([, value]) => Boolean(value))
           .reduce((pluginsPath, [option, value]) => {
-            castArray(value).forEach(plugin => {
+            castArray(value).forEach((plugin) => {
               if (option === 'plugins' && validatePlugin(plugin)) {
                 pluginsPath[parseConfig(plugin)[0]] = extendPath;
               } else if (
@@ -58,7 +58,7 @@ module.exports = async (context, opts) => {
             return pluginsPath;
           }, pluginsPath);
 
-        return {...result, ...extendsOpts};
+        return {...result, ...extendsOptions};
       }, {}),
       ...options,
     };
@@ -83,7 +83,7 @@ module.exports = async (context, opts) => {
       '@semantic-release/github',
     ],
     // Remove `null` and `undefined` options so they can be replaced with default ones
-    ...pickBy(options, option => !isNil(option)),
+    ...pickBy(options, (option) => !isNil(option)),
     ...(options.branches ? {branches: castArray(options.branches)} : {}),
   };
 
@@ -92,7 +92,7 @@ module.exports = async (context, opts) => {
   return {options, plugins: await plugins({...context, options}, pluginsPath)};
 };
 
-async function pkgRepoUrl(opts) {
-  const {packageJson} = (await readPkgUp(opts)) || {};
+async function pkgRepoUrl(options) {
+  const {packageJson} = (await readPkgUp(options)) || {};
   return packageJson && (isPlainObject(packageJson.repository) ? packageJson.repository.url : packageJson.repository);
 }

package/lib/get-git-auth-url.js

@@ -42,7 +42,7 @@ module.exports = async ({cwd, env, branch, options: {repositoryUrl}}) => {
   try {
     await verifyAuth(repositoryUrl, branch.name, {cwd, env});
   } catch (_) {
-    const envVar = Object.keys(GIT_TOKENS).find(envVar => !isNil(env[envVar]));
+    const envVar = Object.keys(GIT_TOKENS).find((envVar) => !isNil(env[envVar]));
     const gitCredentials = `${GIT_TOKENS[envVar] || ''}${env[envVar] || ''}`;
 
     if (gitCredentials) {

package/lib/get-last-release.js

@@ -29,8 +29,8 @@ const {makeTag, isSameChannel} = require('./utils');
 module.exports = ({branch, options: {tagFormat}}, {before} = {}) => {
   const [{version, gitTag, channels} = {}] = branch.tags
     .filter(
-      tag =>
-        ((branch.type === 'prerelease' && tag.channels.some(channel => isSameChannel(branch.channel, channel))) ||
+      (tag) =>
+        ((branch.type === 'prerelease' && tag.channels.some((channel) => isSameChannel(branch.channel, channel))) ||
           !semver.prerelease(tag.version)) &&
         (isUndefined(before) || semver.lt(tag.version, before))
     )

package/lib/get-next-version.js

@@ -10,7 +10,7 @@ module.exports = ({branch, nextRelease: {type, channel}, lastRelease, logger}) =
     if (branch.type === 'prerelease') {
       if (
         semver.prerelease(lastRelease.version) &&
-        lastRelease.channels.some(lastReleaseChannel => isSameChannel(lastReleaseChannel, channel))
+        lastRelease.channels.some((lastReleaseChannel) => isSameChannel(lastReleaseChannel, channel))
       ) {
         version = highest(
           semver.inc(lastRelease.version, 'prerelease'),

package/lib/get-release-to-add.js

@@ -11,7 +11,7 @@ const {makeTag, getLowerBound} = require('./utils');
  *
  * @return {Array<Object>} Last release and next release to be added on the channel of the current branch.
  */
-module.exports = context => {
+module.exports = (context) => {
   const {
     branch,
     branches,

package/lib/git.js

@@ -14,8 +14,8 @@ Object.assign(gitLogParser.fields, {hash: 'H', message: 'B', gitTags: 'd', commi
  *
  * @return {String} The commit sha of the tag in parameter or `null`.
  */
-async function getTagHead(tagName, execaOpts) {
-  return (await execa('git', ['rev-list', '-1', tagName], execaOpts)).stdout;
+async function getTagHead(tagName, execaOptions) {
+  return (await execa('git', ['rev-list', '-1', tagName], execaOptions)).stdout;
 }
 
 /**
@@ -27,10 +27,10 @@ async function getTagHead(tagName, execaOpts) {
  * @return {Array<String>} List of git tags.
  * @throws {Error} If the `git` command fails.
  */
-async function getTags(branch, execaOpts) {
-  return (await execa('git', ['tag', '--merged', branch], execaOpts)).stdout
+async function getTags(branch, execaOptions) {
+  return (await execa('git', ['tag', '--merged', branch], execaOptions)).stdout
     .split('\n')
-    .map(tag => tag.trim())
+    .map((tag) => tag.trim())
     .filter(Boolean);
 }
 
@@ -42,12 +42,12 @@ async function getTags(branch, execaOpts) {
  * @param {Object} [execaOpts] Options to pass to `execa`.
  * @return {Promise<Array<Object>>} The list of commits between `from` and `to`.
  */
-async function getCommits(from, to, execaOpts) {
+async function getCommits(from, to, execaOptions) {
   return (
     await getStream.array(
       gitLogParser.parse(
         {_: `${from ? from + '..' : ''}${to}`},
-        {cwd: execaOpts.cwd, env: {...process.env, ...execaOpts.env}}
+        {cwd: execaOptions.cwd, env: {...process.env, ...execaOptions.env}}
       )
     )
   ).map(({message, gitTags, ...commit}) => ({...commit, message: message.trim(), gitTags: gitTags.trim()}));
@@ -62,11 +62,11 @@ async function getCommits(from, to, execaOpts) {
  * @return {Array<String>} List of git branches.
  * @throws {Error} If the `git` command fails.
  */
-async function getBranches(repositoryUrl, execaOpts) {
-  return (await execa('git', ['ls-remote', '--heads', repositoryUrl], execaOpts)).stdout
+async function getBranches(repositoryUrl, execaOptions) {
+  return (await execa('git', ['ls-remote', '--heads', repositoryUrl], execaOptions)).stdout
     .split('\n')
     .filter(Boolean)
-    .map(branch => branch.match(/^.+refs\/heads\/(?<branch>.+)$/)[1]);
+    .map((branch) => branch.match(/^.+refs\/heads\/(?<branch>.+)$/)[1]);
 }
 
 /**
@@ -77,9 +77,9 @@ async function getBranches(repositoryUrl, execaOpts) {
  *
  * @return {Boolean} `true` if the reference exists, falsy otherwise.
  */
-async function isRefExists(ref, execaOpts) {
+async function isRefExists(ref, execaOptions) {
   try {
-    return (await execa('git', ['rev-parse', '--verify', ref], execaOpts)).exitCode === 0;
+    return (await execa('git', ['rev-parse', '--verify', ref], execaOptions)).exitCode === 0;
   } catch (error) {
     debug(error);
   }
@@ -99,9 +99,9 @@ async function isRefExists(ref, execaOpts) {
  * @param {String} branch The repository branch to fetch.
  * @param {Object} [execaOpts] Options to pass to `execa`.
  */
-async function fetch(repositoryUrl, branch, ciBranch, execaOpts) {
+async function fetch(repositoryUrl, branch, ciBranch, execaOptions) {
   const isDetachedHead =
-    (await execa('git', ['rev-parse', '--abbrev-ref', 'HEAD'], {...execaOpts, reject: false})).stdout === 'HEAD';
+    (await execa('git', ['rev-parse', '--abbrev-ref', 'HEAD'], {...execaOptions, reject: false})).stdout === 'HEAD';
 
   try {
     await execa(
@@ -114,7 +114,7 @@ async function fetch(repositoryUrl, branch, ciBranch, execaOpts) {
           ? [repositoryUrl]
           : ['--update-head-ok', repositoryUrl, `+refs/heads/${branch}:refs/heads/${branch}`]),
       ],
-      execaOpts
+      execaOptions
     );
   } catch (_) {
     await execa(
@@ -126,7 +126,7 @@ async function fetch(repositoryUrl, branch, ciBranch, execaOpts) {
           ? [repositoryUrl]
           : ['--update-head-ok', repositoryUrl, `+refs/heads/${branch}:refs/heads/${branch}`]),
       ],
-      execaOpts
+      execaOptions
     );
   }
 }
@@ -137,16 +137,16 @@ async function fetch(repositoryUrl, branch, ciBranch, execaOpts) {
  * @param {String} repositoryUrl The remote repository URL.
  * @param {Object} [execaOpts] Options to pass to `execa`.
  */
-async function fetchNotes(repositoryUrl, execaOpts) {
+async function fetchNotes(repositoryUrl, execaOptions) {
   try {
     await execa(
       'git',
       ['fetch', '--unshallow', repositoryUrl, `+refs/notes/${GIT_NOTE_REF}:refs/notes/${GIT_NOTE_REF}`],
-      execaOpts
+      execaOptions
     );
   } catch (_) {
     await execa('git', ['fetch', repositoryUrl, `+refs/notes/${GIT_NOTE_REF}:refs/notes/${GIT_NOTE_REF}`], {
-      ...execaOpts,
+      ...execaOptions,
       reject: false,
     });
   }
@@ -159,8 +159,8 @@ async function fetchNotes(repositoryUrl, execaOpts) {
  *
  * @return {String} the sha of the HEAD commit.
  */
-async function getGitHead(execaOpts) {
-  return (await execa('git', ['rev-parse', 'HEAD'], execaOpts)).stdout;
+async function getGitHead(execaOptions) {
+  return (await execa('git', ['rev-parse', 'HEAD'], execaOptions)).stdout;
 }
 
 /**
@@ -170,9 +170,9 @@ async function getGitHead(execaOpts) {
  *
  * @return {string} The value of the remote git URL.
  */
-async function repoUrl(execaOpts) {
+async function repoUrl(execaOptions) {
   try {
-    return (await execa('git', ['config', '--get', 'remote.origin.url'], execaOpts)).stdout;
+    return (await execa('git', ['config', '--get', 'remote.origin.url'], execaOptions)).stdout;
   } catch (error) {
     debug(error);
   }
@@ -185,9 +185,9 @@ async function repoUrl(execaOpts) {
  *
  * @return {Boolean} `true` if the current working directory is in a git repository, falsy otherwise.
  */
-async function isGitRepo(execaOpts) {
+async function isGitRepo(execaOptions) {
   try {
-    return (await execa('git', ['rev-parse', '--git-dir'], execaOpts)).exitCode === 0;
+    return (await execa('git', ['rev-parse', '--git-dir'], execaOptions)).exitCode === 0;
   } catch (error) {
     debug(error);
   }
@@ -202,9 +202,9 @@ async function isGitRepo(execaOpts) {
  *
  * @throws {Error} if not authorized to push.
  */
-async function verifyAuth(repositoryUrl, branch, execaOpts) {
+async function verifyAuth(repositoryUrl, branch, execaOptions) {
   try {
-    await execa('git', ['push', '--dry-run', '--no-verify', repositoryUrl, `HEAD:${branch}`], execaOpts);
+    await execa('git', ['push', '--dry-run', '--no-verify', repositoryUrl, `HEAD:${branch}`], execaOptions);
   } catch (error) {
     debug(error);
     throw error;
@@ -220,8 +220,8 @@ async function verifyAuth(repositoryUrl, branch, execaOpts) {
  *
  * @throws {Error} if the tag creation failed.
  */
-async function tag(tagName, ref, execaOpts) {
-  await execa('git', ['tag', tagName, ref], execaOpts);
+async function tag(tagName, ref, execaOptions) {
+  await execa('git', ['tag', tagName, ref], execaOptions);
 }
 
 /**
@@ -232,8 +232,8 @@ async function tag(tagName, ref, execaOpts) {
  *
  * @throws {Error} if the push failed.
  */
-async function push(repositoryUrl, execaOpts) {
-  await execa('git', ['push', '--tags', repositoryUrl], execaOpts);
+async function push(repositoryUrl, execaOptions) {
+  await execa('git', ['push', '--tags', repositoryUrl], execaOptions);
 }
 
 /**
@@ -244,8 +244,8 @@ async function push(repositoryUrl, execaOpts) {
  *
  * @throws {Error} if the push failed.
  */
-async function pushNotes(repositoryUrl, execaOpts) {
-  await execa('git', ['push', repositoryUrl, `refs/notes/${GIT_NOTE_REF}`], execaOpts);
+async function pushNotes(repositoryUrl, execaOptions) {
+  await execa('git', ['push', repositoryUrl, `refs/notes/${GIT_NOTE_REF}`], execaOptions);
 }
 
 /**
@@ -256,9 +256,9 @@ async function pushNotes(repositoryUrl, execaOpts) {
  *
  * @return {Boolean} `true` if valid, falsy otherwise.
  */
-async function verifyTagName(tagName, execaOpts) {
+async function verifyTagName(tagName, execaOptions) {
   try {
-    return (await execa('git', ['check-ref-format', `refs/tags/${tagName}`], execaOpts)).exitCode === 0;
+    return (await execa('git', ['check-ref-format', `refs/tags/${tagName}`], execaOptions)).exitCode === 0;
   } catch (error) {
     debug(error);
   }
@@ -272,9 +272,9 @@ async function verifyTagName(tagName, execaOpts) {
  *
  * @return {Boolean} `true` if valid, falsy otherwise.
  */
-async function verifyBranchName(branch, execaOpts) {
+async function verifyBranchName(branch, execaOptions) {
   try {
-    return (await execa('git', ['check-ref-format', `refs/heads/${branch}`], execaOpts)).exitCode === 0;
+    return (await execa('git', ['check-ref-format', `refs/heads/${branch}`], execaOptions)).exitCode === 0;
   } catch (error) {
     debug(error);
   }
@@ -289,10 +289,10 @@ async function verifyBranchName(branch, execaOpts) {
  *
  * @return {Boolean} `true` is the HEAD of the current local branch is the same as the HEAD of the remote branch, falsy otherwise.
  */
-async function isBranchUpToDate(repositoryUrl, branch, execaOpts) {
+async function isBranchUpToDate(repositoryUrl, branch, execaOptions) {
   return (
-    (await getGitHead(execaOpts)) ===
-    (await execa('git', ['ls-remote', '--heads', repositoryUrl, branch], execaOpts)).stdout.match(/^(?<ref>\w+)?/)[1]
+    (await getGitHead(execaOptions)) ===
+    (await execa('git', ['ls-remote', '--heads', repositoryUrl, branch], execaOptions)).stdout.match(/^(?<ref>\w+)?/)[1]
   );
 }
 
@@ -304,9 +304,9 @@ async function isBranchUpToDate(repositoryUrl, branch, execaOpts) {
  *
  * @return {Object} the parsed JSON note if there is one, an empty object otherwise.
  */
-async function getNote(ref, execaOpts) {
+async function getNote(ref, execaOptions) {
   try {
-    return JSON.parse((await execa('git', ['notes', '--ref', GIT_NOTE_REF, 'show', ref], execaOpts)).stdout);
+    return JSON.parse((await execa('git', ['notes', '--ref', GIT_NOTE_REF, 'show', ref], execaOptions)).stdout);
   } catch (error) {
     if (error.exitCode === 1) {
       return {};
@@ -324,8 +324,8 @@ async function getNote(ref, execaOpts) {
  * @param {String} ref The Git reference to add the note to.
  * @param {Object} [execaOpts] Options to pass to `execa`.
  */
-async function addNote(note, ref, execaOpts) {
-  await execa('git', ['notes', '--ref', GIT_NOTE_REF, 'add', '-f', '-m', JSON.stringify(note), ref], execaOpts);
+async function addNote(note, ref, execaOptions) {
+  await execa('git', ['notes', '--ref', GIT_NOTE_REF, 'add', '-f', '-m', JSON.stringify(note), ref], execaOptions);
 }
 
 module.exports = {

package/lib/hide-sensitive.js

@@ -1,12 +1,17 @@
 const {escapeRegExp, size, isString} = require('lodash');
 const {SECRET_REPLACEMENT, SECRET_MIN_SIZE} = require('./definitions/constants');
 
-module.exports = env => {
-  const toReplace = Object.keys(env).filter(
-    envVar => /token|password|credential|secret|private/i.test(envVar) && size(env[envVar].trim()) >= SECRET_MIN_SIZE
-  );
+module.exports = (env) => {
+  const toReplace = Object.keys(env).filter((envVar) => {
+    // https://github.com/semantic-release/semantic-release/issues/1558
+    if (envVar === 'GOPRIVATE') {
+      return false;
+    }
 
-  const regexp = new RegExp(toReplace.map(envVar => escapeRegExp(env[envVar])).join('|'), 'g');
-  return output =>
+    return /token|password|credential|secret|private/i.test(envVar) && size(env[envVar].trim()) >= SECRET_MIN_SIZE;
+  });
+
+  const regexp = new RegExp(toReplace.map((envVar) => escapeRegExp(env[envVar])).join('|'), 'g');
+  return (output) =>
     output && isString(output) && toReplace.length > 0 ? output.toString().replace(regexp, SECRET_REPLACEMENT) : output;
 };

package/lib/plugins/index.js

@@ -46,14 +46,14 @@ module.exports = (context, pluginsPath) => {
 
   const pluginsConf = Object.entries(PLUGINS_DEFINITIONS).reduce(
     (pluginsConf, [type, {required, default: def, pipelineConfig, postprocess = identity, preprocess = identity}]) => {
-      let pluginOpts;
+      let pluginOptions;
 
       if (isNil(options[type]) && def) {
-        pluginOpts = def;
+        pluginOptions = def;
       } else {
         // If an object is passed and the path is missing, merge it with step options
         if (isPlainObject(options[type]) && !options[type].path) {
-          options[type] = castArray(plugins[type]).map(plugin =>
+          options[type] = castArray(plugins[type]).map((plugin) =>
             plugin ? [plugin[0], Object.assign(plugin[1], options[type])] : plugin
           );
         }
@@ -63,10 +63,10 @@ module.exports = (context, pluginsPath) => {
           return pluginsConf;
         }
 
-        pluginOpts = options[type];
+        pluginOptions = options[type];
       }
 
-      const steps = castArray(pluginOpts).map(pluginOpt =>
+      const steps = castArray(pluginOptions).map((pluginOpt) =>
         normalize(
           {...context, options: omit(options, Object.keys(PLUGINS_DEFINITIONS), 'plugins')},
           type,
@@ -75,7 +75,7 @@ module.exports = (context, pluginsPath) => {
         )
       );
 
-      pluginsConf[type] = async input =>
+      pluginsConf[type] = async (input) =>
         postprocess(
           await pipeline(steps, pipelineConfig && pipelineConfig(pluginsConf, logger))(await preprocess(input)),
           input

package/lib/plugins/normalize.js

@@ -26,7 +26,7 @@ module.exports = (context, type, pluginOpt, pluginsPath) => {
     throw getError('EPLUGIN', {type, pluginName});
   }
 
-  const validator = async input => {
+  const validator = async (input) => {
     const {dryRun, outputValidator} = PLUGINS_DEFINITIONS[type] || {};
     try {
       if (!input.options.dryRun || dryRun) {
@@ -48,7 +48,7 @@ module.exports = (context, type, pluginOpt, pluginsPath) => {
       logger.warn(`Skip step "${type}" of plugin "${pluginName}" in dry-run mode`);
     } catch (error) {
       logger.error(`Failed step "${type}" of plugin "${pluginName}"`);
-      extractErrors(error).forEach(err => Object.assign(err, {pluginName}));
+      extractErrors(error).forEach((err) => Object.assign(err, {pluginName}));
       throw error;
     }
   };

package/lib/plugins/pipeline.js

@@ -25,7 +25,7 @@ const {extractErrors} = require('../utils');
  *
  * @return {Pipeline} A Function that execute the `steps` sequencially
  */
-module.exports = (steps, {settleAll = false, getNextInput = identity, transform = identity} = {}) => async input => {
+module.exports = (steps, {settleAll = false, getNextInput = identity, transform = identity} = {}) => async (input) => {
   const results = [];
   const errors = [];
   await pReduce(

package/lib/plugins/utils.js

@@ -2,8 +2,8 @@ const {dirname} = require('path');
 const {isString, isFunction, castArray, isArray, isPlainObject, isNil} = require('lodash');
 const resolveFrom = require('resolve-from');
 
-const validateSteps = conf => {
-  return conf.every(conf => {
+const validateSteps = (conf) => {
+  return conf.every((conf) => {
     if (
       isArray(conf) &&
       (conf.length === 1 || conf.length === 2) &&

package/lib/utils.js

@@ -8,13 +8,13 @@ function extractErrors(err) {
 
 function hideSensitiveValues(env, objs) {
   const hideFunction = hideSensitive(env);
-  return objs.map(obj => {
-    Object.getOwnPropertyNames(obj).forEach(prop => {
-      if (obj[prop]) {
-        obj[prop] = hideFunction(obj[prop]);
+  return objs.map((object) => {
+    Object.getOwnPropertyNames(object).forEach((prop) => {
+      if (object[prop]) {
+        object[prop] = hideFunction(object[prop]);
       }
     });
-    return obj;
+    return object;
   });
 }
 
@@ -31,9 +31,14 @@ function isMaintenanceRange(range) {
 }
 
 function getUpperBound(range) {
-  return semver.valid(range)
+  const result = semver.valid(range)
     ? range
-    : ((semver.validRange(range) || '').match(/<(?<upperBound>\d+\.\d+\.\d+)$/) || [])[1];
+    : ((semver.validRange(range) || '').match(/<(?<upperBound>\d+\.\d+\.\d+(-\d+)?)$/) || [])[1];
+
+  return result
+    ? // https://github.com/npm/node-semver/issues/322
+      result.replace(/-\d+$/, '')
+    : result;
 }
 
 function getLowerBound(range) {
@@ -49,17 +54,17 @@ function lowest(version1, version2) {
 }
 
 function getLatestVersion(versions, {withPrerelease} = {}) {
-  return versions.filter(version => withPrerelease || !semver.prerelease(version)).sort(semver.rcompare)[0];
+  return versions.filter((version) => withPrerelease || !semver.prerelease(version)).sort(semver.rcompare)[0];
 }
 
 function getEarliestVersion(versions, {withPrerelease} = {}) {
-  return versions.filter(version => withPrerelease || !semver.prerelease(version)).sort(semver.compare)[0];
+  return versions.filter((version) => withPrerelease || !semver.prerelease(version)).sort(semver.compare)[0];
 }
 
 function getFirstVersion(versions, lowerBranches) {
   const lowerVersion = union(...lowerBranches.map(({tags}) => tagsToVersions(tags))).sort(semver.rcompare);
   if (lowerVersion[0]) {
-    return versions.sort(semver.compare).find(version => semver.gt(version, lowerVersion[0]));
+    return versions.sort(semver.compare).find((version) => semver.gt(version, lowerVersion[0]));
   }
 
   return getEarliestVersion(versions);

package/lib/verify.js

@@ -3,7 +3,7 @@ const AggregateError = require('aggregate-error');
 const {isGitRepo, verifyTagName} = require('./git');
 const getError = require('./get-error');
 
-module.exports = async context => {
+module.exports = async (context) => {
   const {
     cwd,
     env,
@@ -29,7 +29,7 @@ module.exports = async context => {
     errors.push(getError('ETAGNOVERSION', context));
   }
 
-  branches.forEach(branch => {
+  branches.forEach((branch) => {
     if (
       !((isString(branch) && branch.trim()) || (isPlainObject(branch) && isString(branch.name) && branch.name.trim()))
     ) {

package/package.json

@@ -1,7 +1,7 @@
 {
   "name": "semantic-release",
   "description": "Automated semver compliant package publishing",
-  "version": "17.0.4",
+  "version": "17.0.8",
   "author": "Stephan Bönnemann <stephan@boennemann.me> (http://boennemann.me)",
   "ava": {
     "files": [
@@ -37,14 +37,14 @@
     "hook-std": "^2.0.0",
     "hosted-git-info": "^3.0.0",
     "lodash": "^4.17.15",
-    "marked": "^0.8.0",
+    "marked": "^1.0.0",
     "marked-terminal": "^4.0.0",
     "micromatch": "^4.0.2",
     "p-each-series": "^2.1.0",
     "p-reduce": "^2.0.0",
     "read-pkg-up": "^7.0.0",
     "resolve-from": "^5.0.0",
-    "semver": "^7.1.1",
+    "semver": "^7.3.2",
     "semver-diff": "^3.1.1",
     "signale": "^1.2.1",
     "yargs": "^15.0.1"
@@ -56,18 +56,18 @@
     "delay": "^4.0.0",
     "dockerode": "^3.0.0",
     "file-url": "^3.0.0",
-    "fs-extra": "^8.0.0",
-    "got": "^10.5.2",
+    "fs-extra": "^9.0.0",
+    "got": "^11.0.0",
     "js-yaml": "^3.10.0",
     "mockserver-client": "^5.1.1",
     "nock": "^12.0.0",
     "nyc": "^15.0.0",
     "p-retry": "^4.0.0",
     "proxyquire": "^2.0.0",
-    "sinon": "^8.0.4",
+    "sinon": "^9.0.0",
     "stream-buffers": "^3.0.2",
-    "tempy": "^0.4.0",
-    "xo": "^0.26.0"
+    "tempy": "^0.5.0",
+    "xo": "^0.29.0"
   },
   "engines": {
     "node": ">=10.18"
@@ -126,6 +126,9 @@
   },
   "xo": {
     "prettier": true,
-    "space": true
+    "space": true,
+    "rules": {
+      "unicorn/string-content": "off"
+    }
   }
 }