Installations
npm install git-cliffDeveloper Guide
BETA
Typescript
Yes
Module System
ESM
Min. Node Version
>=18.19 || >=20.6 || >=21
Releases
86
Contributors
94
Languages
8
Rust
TypeScript
CSS
JavaScript
Nix
Shell
Dockerfile
HTML
Rust (87.52%)
TypeScript (5.07%)
CSS (2.96%)
JavaScript (2.21%)
Nix (0.66%)
Shell (0.56%)
Dockerfile (0.55%)
HTML (0.48%)
Developer
Download Statistics
Total Downloads
829,689
Last Day
2,910
Last Week
15,509
Last Month
52,960
Last Year
626,783
GitHub Statistics
9,598 Stars
1,315 Commits
205 Forks
39 Watching
31 Branches
94 Contributors
Maintainers
1
Package Meta Information
Latest Version
2.8.0
Package Id
git-cliff@2.8.0
Unpacked Size
170.69 kB
Size
44.94 kB
File Count
10
Publised On
24 Jan 2025
Total Downloads
Cumulative downloads
Total Downloads
829,689
Last day
9.4%
2,910
Compared to previous day
Last week
4.8%
15,509
Compared to previous week
Last month
13.2%
52,960
Compared to previous month
Last year
209.6%
626,783
Compared to previous year
Daily Downloads
Weekly Downloads
Monthly Downloads
Yearly Downloads
Dependencies
1
Dev Dependencies
9
Versions
Documentation | Website
git-cliff can generate changelog files from the Git history by utilizing conventional commits as well as regex-powered custom parsers. The changelog template can be customized with a configuration file to match the desired format.
Documentation
Learn how to use git-cliff from the documentation.
In The Media
- Turning Git commits into changelog with git-cliff - RustLab 2023 (Talk)
- An Interview with Orhun of git-cliff - Console #141 (Newsletter)
- KaiCode Open Source Festival 2024 (Second place winner)
- git-cliff: The Smart Way to Handle Changelogs (Blog post)
Editor Support
- git-cliff.el - Generate, update and release changelog in Emacs
Similar/Related Projects
- git-journal - The Git Commit Message and Changelog Generation Framework
- clog-cli - Generate beautiful changelogs from your Git commit history
- relnotes - A tool to automatically generate release notes for your project.
- cocogitto - A set of CLI tools for the conventional commit and semver specifications.
- cliff-jumper - A NodeJS CLI tool that combines git-cliff and conventional-recommended-bump to semantically bump a NodeJS package and generate a git-cliff powered changelog.
- release-plz - Release Rust packages from CI.
- git-changelog-command-line - Generate changelog and determine next version with conventional commits.
- git-changelog: Automatic Changelog generator using Jinja2 templates.
Contributors
Thanks goes to these wonderful people ✨
Made with contrib.rocks.
Socials
License
Licensed under either of Apache License Version 2.0 or The MIT License at your option.
Copyright
Copyright © 2021-2025, git-cliff contributors
No vulnerabilities found.
Reason
30 commit(s) and 18 issue activity found in the last 90 days -- score normalized to 10
Reason
security policy file detected
Details
- Info: security policy file detected: SECURITY.md:1
- Info: Found linked content: SECURITY.md:1
- Info: Found disclosure, vulnerability, and/or timelines in security policy: SECURITY.md:1
- Info: Found text in security policy: SECURITY.md:1
Reason
no dangerous workflow patterns detected
Reason
no binaries found in the repo
Reason
license file detected
Details
- Info: project has a license file: LICENSE-APACHE:0
- Info: FSF or OSI recognized license: Apache License 2.0: LICENSE-APACHE:0
Reason
packaging workflow detected
Details
- Info: Project packages its releases by way of GitHub Actions.: .github/workflows/cd.yml:26
Reason
5 out of the last 5 releases have a total of 5 signed artifacts.
Details
- Info: signed release artifact: git-cliff-2.8.0-aarch64-apple-darwin.tar.gz.sig: https://github.com/orhun/git-cliff/releases/tag/v2.8.0
- Info: signed release artifact: git-cliff-2.7.0-aarch64-apple-darwin.tar.gz.sig: https://github.com/orhun/git-cliff/releases/tag/v2.7.0
- Info: signed release artifact: git-cliff-2.6.1-aarch64-apple-darwin.tar.gz.sig: https://github.com/orhun/git-cliff/releases/tag/v2.6.1
- Info: signed release artifact: git-cliff-2.6.0-aarch64-apple-darwin.tar.gz.sig: https://github.com/orhun/git-cliff/releases/tag/v2.6.0
- Info: signed release artifact: git-cliff-2.5.0-aarch64-apple-darwin.tar.gz.sig: https://github.com/orhun/git-cliff/releases/tag/v2.5.0
- Warn: release artifact v2.8.0 does not have provenance: https://api.github.com/repos/orhun/git-cliff/releases/196655929
- Warn: release artifact v2.7.0 does not have provenance: https://api.github.com/repos/orhun/git-cliff/releases/186386570
- Warn: release artifact v2.6.1 does not have provenance: https://api.github.com/repos/orhun/git-cliff/releases/177319204
- Warn: release artifact v2.6.0 does not have provenance: https://api.github.com/repos/orhun/git-cliff/releases/176265801
- Warn: release artifact v2.5.0 does not have provenance: https://api.github.com/repos/orhun/git-cliff/releases/171776762
Reason
Found 4/22 approved changesets -- score normalized to 1
Reason
no effort to earn an OpenSSF best practices badge detected
Reason
project is not fuzzed
Details
- Warn: no fuzzer integrations found
Reason
detected GitHub workflow tokens with excessive permissions
Details
- Info: jobLevel 'contents' permission set to 'read': .github/workflows/cd.yml:482
- Warn: no topLevel permission defined: .github/workflows/cd.yml:1
- Warn: no topLevel permission defined: .github/workflows/check-semver.yml:1
- Warn: no topLevel permission defined: .github/workflows/docker.yml:1
- Warn: no topLevel permission defined: .github/workflows/test-fixtures.yml:1
- Info: topLevel 'contents' permission set to 'read': .github/workflows/website.yml:15
- Info: no jobLevel write permissions found
Reason
branch protection not enabled on development/release branches
Details
- Warn: branch protection not enabled for branch 'main'
Reason
dependency not pinned by hash detected -- score normalized to 0
Details
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/cd.yml:398: update your workflow using https://app.stepsecurity.io/secureworkflow/orhun/git-cliff/cd.yml/main?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/cd.yml:403: update your workflow using https://app.stepsecurity.io/secureworkflow/orhun/git-cliff/cd.yml/main?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/cd.yml:426: update your workflow using https://app.stepsecurity.io/secureworkflow/orhun/git-cliff/cd.yml/main?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/cd.yml:435: update your workflow using https://app.stepsecurity.io/secureworkflow/orhun/git-cliff/cd.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/cd.yml:448: update your workflow using https://app.stepsecurity.io/secureworkflow/orhun/git-cliff/cd.yml/main?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/cd.yml:452: update your workflow using https://app.stepsecurity.io/secureworkflow/orhun/git-cliff/cd.yml/main?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/cd.yml:485: update your workflow using https://app.stepsecurity.io/secureworkflow/orhun/git-cliff/cd.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/cd.yml:16: update your workflow using https://app.stepsecurity.io/secureworkflow/orhun/git-cliff/cd.yml/main?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/cd.yml:20: update your workflow using https://app.stepsecurity.io/secureworkflow/orhun/git-cliff/cd.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/cd.yml:132: update your workflow using https://app.stepsecurity.io/secureworkflow/orhun/git-cliff/cd.yml/main?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/cd.yml:145: update your workflow using https://app.stepsecurity.io/secureworkflow/orhun/git-cliff/cd.yml/main?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/cd.yml:152: update your workflow using https://app.stepsecurity.io/secureworkflow/orhun/git-cliff/cd.yml/main?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/cd.yml:159: update your workflow using https://app.stepsecurity.io/secureworkflow/orhun/git-cliff/cd.yml/main?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/cd.yml:200: update your workflow using https://app.stepsecurity.io/secureworkflow/orhun/git-cliff/cd.yml/main?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/cd.yml:211: update your workflow using https://app.stepsecurity.io/secureworkflow/orhun/git-cliff/cd.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/cd.yml:222: update your workflow using https://app.stepsecurity.io/secureworkflow/orhun/git-cliff/cd.yml/main?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/cd.yml:255: update your workflow using https://app.stepsecurity.io/secureworkflow/orhun/git-cliff/cd.yml/main?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/cd.yml:267: update your workflow using https://app.stepsecurity.io/secureworkflow/orhun/git-cliff/cd.yml/main?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/cd.yml:275: update your workflow using https://app.stepsecurity.io/secureworkflow/orhun/git-cliff/cd.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/cd.yml:283: update your workflow using https://app.stepsecurity.io/secureworkflow/orhun/git-cliff/cd.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/cd.yml:295: update your workflow using https://app.stepsecurity.io/secureworkflow/orhun/git-cliff/cd.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/cd.yml:297: update your workflow using https://app.stepsecurity.io/secureworkflow/orhun/git-cliff/cd.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/cd.yml:325: update your workflow using https://app.stepsecurity.io/secureworkflow/orhun/git-cliff/cd.yml/main?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/cd.yml:331: update your workflow using https://app.stepsecurity.io/secureworkflow/orhun/git-cliff/cd.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/cd.yml:345: update your workflow using https://app.stepsecurity.io/secureworkflow/orhun/git-cliff/cd.yml/main?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/cd.yml:350: update your workflow using https://app.stepsecurity.io/secureworkflow/orhun/git-cliff/cd.yml/main?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/cd.yml:375: update your workflow using https://app.stepsecurity.io/secureworkflow/orhun/git-cliff/cd.yml/main?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/cd.yml:384: update your workflow using https://app.stepsecurity.io/secureworkflow/orhun/git-cliff/cd.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/check-semver.yml:18: update your workflow using https://app.stepsecurity.io/secureworkflow/orhun/git-cliff/check-semver.yml/main?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/check-semver.yml:22: update your workflow using https://app.stepsecurity.io/secureworkflow/orhun/git-cliff/check-semver.yml/main?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/check-semver.yml:34: update your workflow using https://app.stepsecurity.io/secureworkflow/orhun/git-cliff/check-semver.yml/main?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/check-semver.yml:50: update your workflow using https://app.stepsecurity.io/secureworkflow/orhun/git-cliff/check-semver.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:231: update your workflow using https://app.stepsecurity.io/secureworkflow/orhun/git-cliff/ci.yml/main?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/ci.yml:234: update your workflow using https://app.stepsecurity.io/secureworkflow/orhun/git-cliff/ci.yml/main?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/ci.yml:237: update your workflow using https://app.stepsecurity.io/secureworkflow/orhun/git-cliff/ci.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:41: update your workflow using https://app.stepsecurity.io/secureworkflow/orhun/git-cliff/ci.yml/main?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/ci.yml:43: update your workflow using https://app.stepsecurity.io/secureworkflow/orhun/git-cliff/ci.yml/main?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/ci.yml:50: update your workflow using https://app.stepsecurity.io/secureworkflow/orhun/git-cliff/ci.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:53: update your workflow using https://app.stepsecurity.io/secureworkflow/orhun/git-cliff/ci.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:58: update your workflow using https://app.stepsecurity.io/secureworkflow/orhun/git-cliff/ci.yml/main?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/ci.yml:63: update your workflow using https://app.stepsecurity.io/secureworkflow/orhun/git-cliff/ci.yml/main?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/ci.yml:73: update your workflow using https://app.stepsecurity.io/secureworkflow/orhun/git-cliff/ci.yml/main?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/ci.yml:87: update your workflow using https://app.stepsecurity.io/secureworkflow/orhun/git-cliff/ci.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:91: update your workflow using https://app.stepsecurity.io/secureworkflow/orhun/git-cliff/ci.yml/main?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/ci.yml:93: update your workflow using https://app.stepsecurity.io/secureworkflow/orhun/git-cliff/ci.yml/main?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/ci.yml:98: update your workflow using https://app.stepsecurity.io/secureworkflow/orhun/git-cliff/ci.yml/main?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/ci.yml:108: update your workflow using https://app.stepsecurity.io/secureworkflow/orhun/git-cliff/ci.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:112: update your workflow using https://app.stepsecurity.io/secureworkflow/orhun/git-cliff/ci.yml/main?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/ci.yml:114: update your workflow using https://app.stepsecurity.io/secureworkflow/orhun/git-cliff/ci.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:140: update your workflow using https://app.stepsecurity.io/secureworkflow/orhun/git-cliff/ci.yml/main?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/ci.yml:142: update your workflow using https://app.stepsecurity.io/secureworkflow/orhun/git-cliff/ci.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:153: update your workflow using https://app.stepsecurity.io/secureworkflow/orhun/git-cliff/ci.yml/main?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/ci.yml:155: update your workflow using https://app.stepsecurity.io/secureworkflow/orhun/git-cliff/ci.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:213: update your workflow using https://app.stepsecurity.io/secureworkflow/orhun/git-cliff/ci.yml/main?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/ci.yml:217: update your workflow using https://app.stepsecurity.io/secureworkflow/orhun/git-cliff/ci.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:221: update your workflow using https://app.stepsecurity.io/secureworkflow/orhun/git-cliff/ci.yml/main?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/ci.yml:22: update your workflow using https://app.stepsecurity.io/secureworkflow/orhun/git-cliff/ci.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:24: update your workflow using https://app.stepsecurity.io/secureworkflow/orhun/git-cliff/ci.yml/main?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/ci.yml:26: update your workflow using https://app.stepsecurity.io/secureworkflow/orhun/git-cliff/ci.yml/main?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/ci.yml:31: update your workflow using https://app.stepsecurity.io/secureworkflow/orhun/git-cliff/ci.yml/main?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/ci.yml:124: update your workflow using https://app.stepsecurity.io/secureworkflow/orhun/git-cliff/ci.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:128: update your workflow using https://app.stepsecurity.io/secureworkflow/orhun/git-cliff/ci.yml/main?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/ci.yml:130: update your workflow using https://app.stepsecurity.io/secureworkflow/orhun/git-cliff/ci.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:171: update your workflow using https://app.stepsecurity.io/secureworkflow/orhun/git-cliff/ci.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:173: update your workflow using https://app.stepsecurity.io/secureworkflow/orhun/git-cliff/ci.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/docker.yml:21: update your workflow using https://app.stepsecurity.io/secureworkflow/orhun/git-cliff/docker.yml/main?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/docker.yml:25: update your workflow using https://app.stepsecurity.io/secureworkflow/orhun/git-cliff/docker.yml/main?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/docker.yml:39: update your workflow using https://app.stepsecurity.io/secureworkflow/orhun/git-cliff/docker.yml/main?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/docker.yml:45: update your workflow using https://app.stepsecurity.io/secureworkflow/orhun/git-cliff/docker.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/docker.yml:48: update your workflow using https://app.stepsecurity.io/secureworkflow/orhun/git-cliff/docker.yml/main?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/docker.yml:57: update your workflow using https://app.stepsecurity.io/secureworkflow/orhun/git-cliff/docker.yml/main?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/docker.yml:64: update your workflow using https://app.stepsecurity.io/secureworkflow/orhun/git-cliff/docker.yml/main?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/docker.yml:72: update your workflow using https://app.stepsecurity.io/secureworkflow/orhun/git-cliff/docker.yml/main?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/docker.yml:87: update your workflow using https://app.stepsecurity.io/secureworkflow/orhun/git-cliff/docker.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test-fixtures.yml:112: update your workflow using https://app.stepsecurity.io/secureworkflow/orhun/git-cliff/test-fixtures.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/website.yml:33: update your workflow using https://app.stepsecurity.io/secureworkflow/orhun/git-cliff/website.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/website.yml:35: update your workflow using https://app.stepsecurity.io/secureworkflow/orhun/git-cliff/website.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/website.yml:56: update your workflow using https://app.stepsecurity.io/secureworkflow/orhun/git-cliff/website.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/website.yml:58: update your workflow using https://app.stepsecurity.io/secureworkflow/orhun/git-cliff/website.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/website.yml:70: update your workflow using https://app.stepsecurity.io/secureworkflow/orhun/git-cliff/website.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/website.yml:72: update your workflow using https://app.stepsecurity.io/secureworkflow/orhun/git-cliff/website.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/website.yml:77: update your workflow using https://app.stepsecurity.io/secureworkflow/orhun/git-cliff/website.yml/main?enable=pin
- Warn: containerImage not pinned by hash: Dockerfile:2
- Warn: containerImage not pinned by hash: Dockerfile:5
- Warn: containerImage not pinned by hash: Dockerfile:9
- Warn: containerImage not pinned by hash: Dockerfile:17
- Info: 0 out of 35 GitHub-owned GitHubAction dependencies pinned
- Info: 0 out of 47 third-party GitHubAction dependencies pinned
- Info: 0 out of 4 containerImage dependencies pinned
Reason
SAST tool is not run on all commits -- score normalized to 0
Details
- Warn: 0 commits out of 17 are checked with a SAST tool
Reason
17 existing vulnerabilities detected
Details
- Warn: Project is vulnerable to: GHSA-7q7g-4xm8-89cq
- Warn: Project is vulnerable to: GHSA-grv7-fg5c-xmjg
- Warn: Project is vulnerable to: GHSA-3xgq-45jj-v275
- Warn: Project is vulnerable to: GHSA-952p-6rrq-rcjv
- Warn: Project is vulnerable to: GHSA-gcx4-mw62-g8wm
- Warn: Project is vulnerable to: GHSA-f5x3-32g6-xq36
- Warn: Project is vulnerable to: GHSA-qwcr-r2fm-qrc7
- Warn: Project is vulnerable to: GHSA-pxg6-pf52-xh8x
- Warn: Project is vulnerable to: GHSA-qw6h-vgh9-j6wx
- Warn: Project is vulnerable to: GHSA-c7qv-q95q-8v27
- Warn: Project is vulnerable to: GHSA-mwcw-c2x4-8c55
- Warn: Project is vulnerable to: GHSA-9wv6-86v2-598j
- Warn: Project is vulnerable to: GHSA-rhx6-c78j-4q9w
- Warn: Project is vulnerable to: GHSA-m6fv-jmcg-4jfg
- Warn: Project is vulnerable to: GHSA-cm22-4g7w-348p
- Warn: Project is vulnerable to: GHSA-c76h-2ccp-4975
- Warn: Project is vulnerable to: GHSA-3h5v-q93c-6h6q
Score
4.8
/10
Last Scanned on 2025-01-27
The Open Source Security Foundation is a cross-industry collaboration to improve the security of open source software (OSS). The Scorecard provides security health metrics for open source projects.
Learn MoreOther packages similar to git-cliff
git-cliff-linux-x64
2.8.0
A highly customizable Changelog Generator that follows Conventional Commit specifications ⛰️
@favware/cliff-jumper
6.0.0
A small CLI tool to create a semantic release and git-cliff powered Changelog
git-cliff-darwin-arm64
2.8.0
A highly customizable Changelog Generator that follows Conventional Commit specifications ⛰️
git-cliff-windows-x64
2.8.0
A highly customizable Changelog Generator that follows Conventional Commit specifications ⛰️