LinusU
commented
3 years ago Looking at our code, we are actually just grabbing the first match:
So the best for cz-cli would be to just call findup-sync directly (or potentially find-up which seems to be more popular).
Hey!
I'm the maintainer of find-node-modules, and commitizen is… pretty much the only project using it as a dependency! I haven't used it myself in years and every time people open an issue about a vulnerable dependency, they're using it via this project.
Would commitizen be interested / up for taking ownership of the package? I feel like I've been neglecting it a bit.
I'd be happy to either transfer it to the commitizen org or add some maintainers, whatever works for you :)