chore(deps): update semantic-release monorepo (major)

[renovate[bot]]

This PR contains the following updates:

Package	Change	Age	Adoption	Passing	Confidence
@semantic-release/commit-analyzer	^9.0.1 -> ^13.0.0
@semantic-release/npm	^8.0.1 -> ^13.0.0
@semantic-release/release-notes-generator	^10.0.2 -> ^14.0.0
semantic-release	^18.0.0 -> ^25.0.0

---

Release Notes

semantic-release/commit-analyzer (@​semantic-release/commit-analyzer)

v13.0.1

Compare Source

Bug Fixes

• deps: update dependency import-from-esm to v2 (#​741) (f106b76)

v13.0.0

Compare Source

Bug Fixes

• log the raw message again (e2f5d6c)

Features

• support latest conventional-changelog packages (0254d7a)

BREAKING CHANGES

• by supporting the latest major versions of conventional-changelog packages, we are dropping support for previous major versions of those packages due to the breaking changes between majors. this only impacts your project if you are installing alongside semantic-release, so updating those packages to latest version should be the only change you need for this update. no action should be necessary if you are using default semantic-release config

v12.0.0

Compare Source

Features

• exports: defined exports to point at ./index.js (f3358dd)
• node-versions: dropped support for node v18 and v19 (0a23b82)

BREAKING CHANGES

• exports: exports has been defined, which prevents access to private apis (which arent intended for consumption anyway)
• node-versions: node v18 and v19 are no longer supported

v11.1.0

Compare Source

Features

• add support for ESM presets (#​537) (9dc87e0)

v11.0.0

Compare Source

Bug Fixes

• config-loader: accounted for normalization of preset interfaces (3ff9458)
• deps: update dependency conventional-commits-filter to v4 (99dcf7e)

Features

• conventional-changelog-presets: supported new preset format (f3b88d3)
• node-versions: raised the minimum node version to v18.17 and dropped v19 support (a681fbd)

BREAKING CHANGES

• node-versions: the minimum required node version is now v18.17, v19 support has been dropped, and the minimum required in the v20 range is v20.6.1
• conventional-changelog-presets: the new preset format is a breaking change when compared to the previous preset format. updating to support the new format means that the old preset format is no longer supported. update your preset to the latest version to maintain compatibility

v10.0.4

Compare Source

Bug Fixes

• deps: update dependency conventional-commits-parser to v5 (a7201b6)

v10.0.3

Compare Source

Reverts

• Revert "fix(deps): update dependency conventional-commits-parser to v5 (#​501)" (ab3ee9f), closes #​501
• Revert "chore(deps): update dependency conventional-changelog-atom to v4 (#​502)" (f21eb8e), closes #​502
• Revert "chore(deps): update dependency conventional-changelog-ember to v4 (#​504)" (c48b533), closes #​504

v10.0.2

Compare Source

Bug Fixes

• deps: update dependency conventional-commits-parser to v5 (#​501) (91cf4d5)

v10.0.1

Compare Source

Bug Fixes

• deps: update dependency conventional-changelog-angular to v6 (#​460) (0607201)
• deps: update dependency conventional-commits-filter to v3 (#​461) (97d683f)
• deps: update dependency conventional-commits-parser to v4 (#​462) (5d94efa)

v10.0.0

Compare Source

Code Refactoring

• esm: converted the package to esm (b4f9865), closes #​296

Features

• deps: raised the peer-dependency requirement on semantic-release to v20.1.0 (e1ab8ea)
• node-versions: raised the minimum required node version to v18 (affeb23)

BREAKING CHANGES

• deps: the minimum required version of semantic-release is now v20.1.0 in order to support loading ESM plugins
• node-versions: the minimum required version of node is now v18
• esm: @semantic-release/commit-analyzer is now a native ES Module. It has named exports for each plugin hook (analyzeCommits)

semantic-release/npm (@​semantic-release/npm)

v13.1.2

Compare Source

Bug Fixes

• deps: update dependency read-pkg to v10 (#​1032) (f3f1a00)

v13.1.1

Compare Source

Bug Fixes

• publish-dry-run: temporarily remove the addition of dry-running the publish step (30bd176)

v13.1.0

Compare Source

Features

• trusted-publishing: verify auth, considering OIDC vs tokens from various registries (e3319f1), closes #​958
• trusted-publishing: refine the messages for related errors (316ce21), closes #​958
• trusted-publishing: make request to verify if OIDC token exchange can succeed (c80ecb0), closes #​958
• trusted-publishing: pass id-token as bearer header for github actions (d83b727), closes #​958
• trusted-publishing: pass id-token as bearer header for gitlab pipelines (6d1c3cf), closes #​958
• trusted-publishing: handle failure to retrieve id-token in the context of github actions (b673257), closes #​958
• auth-error: update messaging for auth failure to be less token specific (e24967d)
• auth: attempt a dry-run publish to determine auth status (841dc67)

Bug Fixes

• trusted-publishing: uri encode the package name for the token exchange request (3dd95d0), closes #​958
• auth: throw appropriate error when auth context fails to enable publishing (f5c8d85)
• auth: throw error if dry-run publish determines lack of auth (8f88e9d)
• verify-auth: enable the publish dry-run to work for projects publishing from a sub-directory (e7d684c)

v13.0.0

Compare Source

Features

• node-versions: drop support for node versions v20, v21, and v23
• node-versions: raise the minimum node version requirement for the v24 range (935439e)

Bug Fixes

• deps: update npm to v11 (debc7c5), closes #​966 #​966
• deps: update to the latest version of npm (1b25d6c)

BREAKING CHANGES

• node-versions: the minimum node version for the v24 range is now v24.10.0
• deps: a minimum of node v22.14 is now required

v12.0.2

Compare Source

Bug Fixes

• deps: update npm to ^10.9.3 (#​972) (93e0937)

v12.0.1

Compare Source

Bug Fixes

• deps: update dependency execa to v9 (9ac5ed0)

v12.0.0

Compare Source

Features

• exports: defined exports to point at ./index.js (9e193c2)
• node-versions: dropped support for node v18 and v19 (2df962b)

BREAKING CHANGES

• exports: exports has been defined, which prevents access to private apis (which arent intended for consumption anyway)
• node-versions: node v18 and v19 are no longer supported

v11.0.3

Compare Source

Bug Fixes

• deps: raised the minimum accepted range of npm to v10.5.0 (#​759) (a0313f8), closes semantic-release/semantic-release#3202

even though our existing range allowed anyone to update as soon as the new npm version was available, this will encourage being on a version that does not report the ip vulnerability a bit more forcefully

v11.0.2

Compare Source

Bug Fixes

• deps: update dependency npm to v10.2.5 (42b5dec)

v11.0.1

Compare Source

Bug Fixes

• deps: update dependency read-pkg to v9 (#​703) (6e84013)

v11.0.0

Compare Source

Bug Fixes

• deps: update dependency npm to v10 (819f257)

Features

• node-versions: raised the minimum required node version to v18.17 and dropped v19 support (6413130)

BREAKING CHANGES

• node-versions: node v18.17 is now the minimum required version and support for v19 has been dropped

v10.0.6

Compare Source

Bug Fixes

• deps: update dependency aggregate-error to v5 (#​676) (f2bc9e7)

v10.0.5

Compare Source

Bug Fixes

• deps: update dependency execa to v8 (#​659) (502d5ba)

v10.0.4

Compare Source

Bug Fixes

• deps: update dependency @​semantic-release/error to v4 (#​628) (53a1012)

v10.0.3

Compare Source

Bug Fixes

• deps: update dependency read-pkg to v8 (#​602) (aaddc5c)

v10.0.2

Compare Source

Bug Fixes

• deps: update dependency fs-extra to v11.1.1 (#​591) (31e0e27)

v10.0.1

Compare Source

Bug Fixes

• deps: update dependency execa to v7 (#​575) (4c11706)

v10.0.0

Compare Source

Bug Fixes

• aggregate-error: upgraded to the latest version (7285e05)
• deps: upgraded npm to v9 (2a79f80)
• execa: upgraded to the latest version (7c74660)
• normalize-url: upgraded to the latest version (b55bb01)
• remove support for legacy auth (51ab3c8)
• tempy: upgraded to the latest version of tempy (f1992a5)

Code Refactoring

• esm: converted the package to esm (2d8ff15)

Features

• node-versions: dropped support for node versions below v18 (aff3574)
• semantic-release-peer: raised the minimum peer requirement to the first version that supports loading esm plugins (22e70ad)

BREAKING CHANGES

• deps: the direct dependency on npm has been upgraded to v9. details of breaking changes can be found at https://github.com/npm/cli/releases/tag/v9.0.0
• semantic-release-peer: the required version of semantic-release has been raised to v20.1.0 in order to support loading of ESM plugins
• aggregate-error: due to the aggregate-error upgrade, thrown errors are no longer iterable, but instead list the errors under an errors property
• legacy authentication using NPM_USERNAME and NPM_PASSWORD is no longer supported. Use NPM_TOKEN instead.
• node-versions: node v18 is now the minimum required node version
• esm: @semantic-release/npm is now a native ES Module. It has named exports for each plugin hook (verifyConditions, prepare, publish, addChannel)

v9.0.2

Compare Source

Bug Fixes

• deps: update dependency fs-extra to v11 (7157d76)
• deps: update dependency npm to v9 (28265ec)
• deps: update dependency registry-auth-token to v5 (187671f)
• revert): "fix(deps: update dependency npm to v9" (#​561) (c28a848)

v9.0.1

Compare Source

Bug Fixes

• add missed preferLocal option for execa call (#​458) (c817a88)

v9.0.0

Compare Source

Bug Fixes

• add preferLocal option to allow execa to use local npm version (#​445) (002439e)
• updated the peer requirement for semantic-release to the new stable version (575a5a4)
• updated the peer requirement on semantic-release to a version matching the engines definition of this package (2d1f5f2)
• upgrade npm dependency to v8 (a12d6e5)

BREAKING CHANGES

• the minimum required peer of semantic-release has been raised to match the engines.node requirements of this package
• npm v8 dropped support for node v15, so it is no longer supported in this plugin. this should be low impact since node v15 is already EOL

Co-authored-by: Matt Travi [email protected]

semantic-release/release-notes-generator (@​semantic-release/release-notes-generator)

v14.1.0

Compare Source

Features

• preset: support ignoreCommits option (#​836) (485bc0a)

v14.0.3

Compare Source

Bug Fixes

• deps: update dependency import-from-esm to v2 (#​756) (832620e)

v14.0.2

Compare Source

Bug Fixes

• AWS CodeCommit compatibility (#​748) (687e2e2)

v14.0.1

Compare Source

Bug Fixes

• deps: rename read-pkg-up to read-package-up (#​671) (687ba5a)

v14.0.0

Compare Source

Features

• support latest conventional-changelog packages (#​643) (2bce0d3)

BREAKING CHANGES

• by supporting the latest major versions of conventional-changelog packages, we are dropping support for previous major versions of those packages due to the breaking changes between majors. this only impacts your project if you are installing alongside semantic-release, so updating those packages to latest version should be the only change you need for this update. no action should be necessary if you are using default semantic-release config

v13.0.0

Compare Source

Features

• exports: defined exports to point at ./index.js (5655b18)
• node-versions: dropped support for node v18 and v19 (e65959a)

BREAKING CHANGES

• exports: exports has been defined, which prevents access to private apis (which arent intended for consumption anyway)
• node-versions: node v18 and v19 are no longer supported

v12.1.0

Compare Source

Features

• add support for ESM presets (#​544) (53c18ce)

v12.0.1

Compare Source

Bug Fixes

• deps: update dependency read-pkg-up to v11 (#​557) (5756c18)

v12.0.0

Compare Source

Bug Fixes

• deps: update dependency conventional-changlog-writer to v7 (4fe3563)

Features

• conventional-changelog-presets: supported new preset format (a681671)
• node-versions: raised the minimum node version to v18.17 and dropped v19 support (9c4e5f5)

BREAKING CHANGES

• node-versions: the minimum required node version is now v18.17, v19 support has been dropped, and the minimum required in the v20 range is v20.6.1
• conventional-changelog-presets: the new preset format is a breaking change when compared to the previous preset format. updating to support the new format means that the old preset format is no longer supported. update your preset to the latest version to maintain compatibility

v11.0.7

Compare Source

Bug Fixes

• deps: update dependency conventional-commits-filter to v4 (a347fa6)

v11.0.6

Compare Source

Reverts

• Revert "chore(deps): update dependency conventional-changelog-atom to v4 (#​509)" (e6b939a), closes #​509
• Revert "chore(deps): update dependency conventional-changelog-ember to v4 (#​511)" (1f6fa69), closes #​511
• Revert "chore(deps): update dependency conventional-changelog-conventionalcommits to v7 (#​510)" (9793686), closes #​510
• Revert "chore(deps): update dependency conventional-changelog-eslint to v5 (#​512)" (a74f93d), closes #​512
• Revert "chore(deps): update dependency conventional-changelog-express to v4 (#​513)" (a84e7ed), closes #​513

v11.0.5

Compare Source

Bug Fixes

• deps: update dependency conventional-commits-parser to v5 (#​508) (45f893f)

v11.0.4

Compare Source

Bug Fixes

• deps: update dependency read-pkg-up to v10 (68772c4)

v11.0.3

Compare Source

Bug Fixes

• deps: update dependency conventional-changelog-angular to v6 (#​466) (a8d8868)
• deps: update dependency conventional-changelog-writer to v6 (#​467) (d80b880)
• deps: update dependency conventional-commits-filter to v3 (#​468) (b058ee7)
• deps: update dependency conventional-commits-parser to v4 (#​469) (7d84222)

v11.0.2

Compare Source

Bug Fixes

• deps: update dependency get-stream to v7 (#​453) (96e435e)

v11.0.1

Compare Source

Bug Fixes

• files: include the wrappers directory in the published package (949607f)

v11.0.0

Compare Source

Code Refactoring

• esm: converted the package to esm (40f7596), closes #​296

Features

• node-versions: raised the minimum required node version to v18 (4bfe425)
• semantic-release-peer: raised the minimum peer requirement to the first version that supports loading esm plugins (f094cb0)

BREAKING CHANGES

• semantic-release-peer: the required version of semantic-release has been raised to v20.1.0 in order to support loading of ESM plugins
• node-versions: node v18 is now the minimum supported version
• esm: @semantic-release/release-notes-generator is now a native ES Module. It has named exports for each plugin hook (generateNotes)

semantic-release/semantic-release (semantic-release)

v25.0.2

Compare Source

Bug Fixes

• deps: update dependency read-package-up to v12 (#​3935) (1494cb9)

v25.0.1

Compare Source

Bug Fixes

• deps: update to the latest version of the npm plugin to add trusted publishing support (fad173e), closes semantic-release/npm#958

v25.0.0

Compare Source

Bug Fixes

• deps: update dependency hosted-git-info to v9 (9fa04f8)
• deps: update dependency yargs to v18 (#​3745) (cde9a72)
• deps: update to the stable version of the github plugin (f12cf81)
• deps: update to the stable version of the release-notes-generator plugin (d9def72)
• deps: updated to the stable version of the commit-analyzer plugin (291533b)
• deps: upgrade to the new major version of the npm plugin, which upgrades npm to v11 for publishing (1be8290)

Features

• node-versions: drop support for node versions v20, v21, and v23 (56d16f4)
• node-versions: raise the minimum node version for the v24 range (116a188)

BREAKING CHANGES

• node-versions: the minimum node version for the v24 range is now v24.10.0
• node-versions: a minimum of node v22.14 is now required

v24.2.9

Compare Source

Bug Fixes

• deps: update dependency semver-diff to v5 (#​3867) (a834948)

v24.2.8

Compare Source

Bug Fixes

• deps: update dependency hook-std to v4 (#​3859) (67abe56)

v24.2.7

Compare Source

Performance Improvements

• get-tags.js: bulk get for tags notes (#​3732) (85187e2)

v24.2.6

Compare Source

Bug Fixes

• deps: update @​semantic-release/npm to ^12.0.2 (#​3791) (93177d0)

v24.2.5

Compare Source

Bug Fixes

• deps: raise the minimum of the defined range for marked-terminal (#​3742) (fb1ccd4)

v24.2.4

Compare Source

Bug Fixes

• deps: update dependency marked to v15 (#​3499) (e45040e)

v24.2.3

Compare Source

Bug Fixes

• types: fixed typescript definition (0e08b5c), closes #​3601

v24.2.2

Compare Source

Bug Fixes

• get-git-auth-url.js: Added debug for success (#​3595) (2616d93)

v24.2.1

Compare Source

Bug Fixes

• deps: update dependency import-from-esm to v2 (#​3556) (f15019c)

v24.2.0

Compare Source

Features

• clarify branch existence requirement in error messages (#​3462) (05a2ea9)

v24.1.3

Compare Source

Bug Fixes

• branch-naming: prevent non-range versions from being identified as maintenance branches (07f2672)

v24.1.2

Compare Source

Bug Fixes

• deps: update @semantic-release/github to v11.0.0 (#​3460) (43df51b)

v24.1.1

Compare Source

Bug Fixes

• deps: update dependency hosted-git-info to v8 (#​3436) (ab10ac1)

v24.1.0

Compare Source

Features

• add warn type to global context.logger (#​3423) (bcc663c)

v24.0.0

Compare Source

Bug Fixes

• deps: upgraded to the beta of the commit-analyzer plugin (dfc3d91)
• deps: upgraded to the beta of the release-notes-generator plugin (4a4cd92)

BREAKING CHANGES

• deps: the commit-analyzer plugin now expects to be used with the latest major versions of conventional-changelog packages. if you are installing any of these packages in addition to semantic-release, be sure to update them as well
• deps: the release-notes-generator plugin now expects to be used with the latest major versions of conventional-changelog packages. if you are installing any of these packages in addition to semantic-release, be sure to update them as well

v23.1.1

Compare Source

Bug Fixes

• deps: update dependency execa to v9 (#​3296) (73bcd0b)

v23.1.0

Compare Source

Features

• add main branch to default release branch config (#​1737) (95d8736)

v23.0.8

Compare Source

Bug Fixes

• deps: rename read-pkg-up -> read-package-up (4980cba)
• deps: rename read-pkg-up -> read-package-up (#​3249) (95a8b9e)

v23.0.7

Compare Source

Bug Fixes

• deps: update dependency find-versions to v6 (6a2b6bb)

v23.0.6

Compare Source

Bug Fixes

• deps: update dependency @​semantic-release/release-notes-generator to v13 (#​3237) (b7e08fc)

v23.0.5

[Compare Source](https://redirect.github.com/semantic-release/semantic-release/

---

Configuration

📅 Schedule: Branch creation - Between 12:00 AM and 03:59 AM, only on Monday ( * 0-3 * * 1 ) (UTC), Automerge - At any time (no schedule defined).

🚦 Automerge: Enabled.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

---

• [ ] If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.