github.com
/
verdaccio
mirror of https://github.com/verdaccio/verdaccio.git
1
0
Fork 0
Code Releases Wiki Activity
3,558 Commits 13 Branches 2,077 Tags 770 MiB
Commit Graph

3558 Commits

Author SHA1 Message Date
dependabot[bot] 15025dca5f
build(deps): bump @verdaccio/readme from 9.6.1 to 9.7.0 (#1857) 
Bumps [@verdaccio/readme](https://github.com/verdaccio/monorepo/tree/HEAD/core/readme) from 9.6.1 to 9.7.0.
- [Release notes](https://github.com/verdaccio/monorepo/releases)
- [Changelog](https://github.com/verdaccio/monorepo/blob/9.x/core/readme/CHANGELOG.md)
- [Commits](https://github.com/verdaccio/monorepo/commits/v9.7.0/core/readme)

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2020-06-25 08:06:42 +02:00
dependabot[bot] a312111a59
build(deps-dev): bump @verdaccio/babel-preset from 8.5.0 to 9.6.1 (#1858) 
Bumps [@verdaccio/babel-preset](https://github.com/verdaccio/monorepo/tree/HEAD/tools/babel-preset) from 8.5.0 to 9.6.1.
- [Release notes](https://github.com/verdaccio/monorepo/releases)
- [Changelog](https://github.com/verdaccio/monorepo/blob/9.x/tools/babel-preset/CHANGELOG.md)
- [Commits](https://github.com/verdaccio/monorepo/commits/v9.6.1/tools/babel-preset)

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2020-06-24 18:10:59 +02:00
dependabot[bot] 14b06d5cf2
build(deps): bump @verdaccio/local-storage from 9.6.1 to 9.7.0 (#1861) 
Bumps [@verdaccio/local-storage](https://github.com/verdaccio/monorepo/tree/HEAD/plugins/local-storage) from 9.6.1 to 9.7.0.
- [Release notes](https://github.com/verdaccio/monorepo/releases)
- [Changelog](https://github.com/verdaccio/monorepo/blob/9.x/plugins/local-storage/CHANGELOG.md)
- [Commits](https://github.com/verdaccio/monorepo/commits/v9.7.0/plugins/local-storage)

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Juan Picado <juanpicado19@gmail.com>
 2020-06-24 18:09:35 +02:00
dependabot[bot] f5a7460cfc
build(deps): update actions/setup-node requirement to v2.0.0 (#1856) 
Updates the requirements on [actions/setup-node](https://github.com/actions/setup-node) to permit the latest version.
- [Release notes](https://github.com/actions/setup-node/releases)
- [Commits](e434342e4e)

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2020-06-24 18:09:13 +02:00
dependabot[bot] 4de5d9f9b6
build(deps): update actions/checkout requirement to v2.3.1 (#1855) 
Updates the requirements on [actions/checkout](https://github.com/actions/checkout) to permit the latest version.
- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/master/CHANGELOG.md)
- [Commits](28c7f3d2b5)

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2020-06-24 11:39:48 +02:00
Juan Picado 7523053274
build: create dependabot.yml (#1852) 
* Create dependabot.yml

* Update dependabot.yml

* Update dependabot.yml
 2020-06-24 10:19:17 +02:00
Juan Picado a8d86091ec
chore: update readme 2020-06-24 09:50:35 +02:00
Juan Picado @jotadeveloper 092f62eec2
chore(release): 4.7.1 2020-06-22 13:54:15 +02:00
Juan Picado 0bfdeaa2e4
fix: move search v1 endpoint as experimental (#1850) 
the current one has not auth implemented, to avoid the lack of fallback to the original one now is required to be used it by default until the v1 is on shape production ready.
 2020-06-22 13:33:43 +02:00
Juan Picado @jotadeveloper c0afcadce4
chore(release): 4.7.0 2020-06-20 07:31:57 +02:00
Juan Picado 4d01831842
feat: update ui add new languages (#1849) 2020-06-20 07:24:58 +02:00
Jian-Chen Chen (jesse) 80ade97801
feat: npm deprecation support (#1842) 
* support deprecation

* test case for deprecation

* fix format

* testing for multiple packages deprecation

* update README

Co-authored-by: Juan Picado <juanpicado19@gmail.com>
 2020-06-19 22:54:03 +02:00
Robert Sabirov 67c31b69ca
fix: move bodyParse to the upper level (#1841) 
Co-authored-by: Juan Picado <juanpicado19@gmail.com>
 2020-06-19 07:40:06 +02:00
Juan Picado 99dc8510fc
build: e2e acceptance tests (#1846) 
* chore: test e2e

* chore: test

* chore: test

* chore: test

* chore: test

* chore: test

* chore: test

* chore: test

* chore: update name

* chore: test

* chore: test

* chore: test

* chore: test

* chore: test

* chore: test

* chore: test

* chore: test

* chore: test

* chore: test

* chore: test

* chore: test

* chore: test

* chore: test

* chore: test

* chore: test

* chore: test

* chore: test

* chore: test

* chore: test

* chore: test

* chore: test

* chore: test

* chore: test

* chore: test

* chore: test

* chore: this should fails

* chore: restore config
 2020-06-18 23:01:57 +02:00
Juan Picado b5028f2d8a
chore: update bug template 2020-06-14 09:43:20 +02:00
Juan Picado 03c7feb64d
feat: update verdaccio plugins and dependencies (#1838) 
* chore: update dependencies

* chore: update dependencies

* chore: remove node v10 warning
 2020-06-13 10:38:23 +02:00
Juan Picado @jotadeveloper 858bb36180
Merge branch 'master' of github.com:verdaccio/verdaccio 2020-06-13 09:16:59 +02:00
Juan Picado @jotadeveloper a608aa489e
chore: update contributors 2020-06-13 09:14:07 +02:00
allcontributors[bot] fec41d9b20
docs: add toolsofraj as a contributor (#1837) 
* docs: update CONTRIBUTORS.md [skip ci]

* docs: update .all-contributorsrc [skip ci]

Co-authored-by: allcontributors[bot] <46447321+allcontributors[bot]@users.noreply.github.com>
 2020-06-13 08:51:35 +02:00
Juan Picado @jotadeveloper 7694221175
Merge branch 'master' of github.com:verdaccio/verdaccio 2020-06-13 08:46:40 +02:00
Juan Picado @jotadeveloper c7023b9bba
chore: update contributors 2020-06-13 08:45:20 +02:00
toolsofraj aee69a9453
fix: updated nodejs version to fix vulnerability in 12.x https://nodejs.org/en/blog/vulnerability/june-2020-security-releases/ (#1836) 
Co-authored-by: Raj Sharma <raj@screenmeet.com>
 2020-06-13 08:21:41 +02:00
Juan Picado @jotadeveloper b01469ff73
chore: add contributors 2020-06-13 08:15:33 +02:00
Daniel Ruf 1352246d80
chore: test code scanning (#1833) 
Co-authored-by: Juan Picado <juanpicado19@gmail.com>
 2020-06-07 18:29:52 +02:00
Juan Picado e8e94182a4
chore: new issues report seetings (#1834) 2020-06-07 17:23:44 +02:00
dependabot-preview[bot] 530018895c
build(deps): bump mime from 2.4.4 to 2.4.6 (#1831) 
Bumps [mime](https://github.com/broofa/mime) from 2.4.4 to 2.4.6.
- [Release notes](https://github.com/broofa/mime/releases)
- [Changelog](https://github.com/broofa/mime/blob/master/CHANGELOG.md)
- [Commits](https://github.com/broofa/mime/commits)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>

Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>
 2020-06-06 07:43:44 +02:00
Juan Picado 56b677a35a
feat: restore Node 8 support (#1832) 
This restore a support I removed in Verdaccio 4.5.0

This means nothing if you were not using Node v8, this support should be removed in a major release.
 2020-06-03 22:35:31 +02:00
dependabot-preview[bot] 6b1553c257
build(deps-dev): bump codecov from 3.6.5 to 3.7.0 (#1829) 
Bumps [codecov](https://github.com/codecov/codecov-node) from 3.6.5 to 3.7.0.
- [Release notes](https://github.com/codecov/codecov-node/releases)
- [Commits](https://github.com/codecov/codecov-node/compare/v3.6.5...v3.7.0)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>

Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>
 2020-06-03 07:10:29 +02:00
Snyk bot 6e66cc6433
chore: [Snyk] Upgrade verdaccio-audit from 9.4.0 to 9.5.0 (#1821) 
* fix: upgrade verdaccio-audit from 9.4.0 to 9.5.0

Snyk has created this PR to upgrade verdaccio-audit from 9.4.0 to 9.5.0.

See this package in NPM:
https://www.npmjs.com/package/verdaccio-audit

See this project in Snyk:
https://app.snyk.io/org/juanpicado/project/0c76bae8-cfcd-43f7-aff5-70f221855049?utm_source=github&utm_medium=upgrade-pr

* fix: upgrade verdaccio-audit from 9.4.0 to 9.5.0

Snyk has created this PR to upgrade verdaccio-audit from 9.4.0 to 9.5.0.

See this package in NPM:
https://www.npmjs.com/package/verdaccio-audit

See this project in Snyk:
https://app.snyk.io/org/juanpicado/project/0c76bae8-cfcd-43f7-aff5-70f221855049?utm_source=github&utm_medium=upgrade-pr

Co-authored-by: Juan Picado <juanpicado19@gmail.com>
 2020-05-24 12:03:44 +02:00
Snyk bot 1e2159a345
fix: [Snyk] upgrade @verdaccio/streams from 9.4.0 to 9.5.0 (#1819) 
* fix: upgrade @verdaccio/streams from 9.4.0 to 9.5.0

Snyk has created this PR to upgrade @verdaccio/streams from 9.4.0 to 9.5.0.

See this package in NPM:
https://www.npmjs.com/package/@verdaccio/streams

See this project in Snyk:
https://app.snyk.io/org/juanpicado/project/0c76bae8-cfcd-43f7-aff5-70f221855049?utm_source=github&utm_medium=upgrade-pr

* fix: upgrade @verdaccio/streams from 9.4.0 to 9.5.0

Snyk has created this PR to upgrade @verdaccio/streams from 9.4.0 to 9.5.0.

See this package in NPM:
https://www.npmjs.com/package/@verdaccio/streams

See this project in Snyk:
https://app.snyk.io/org/juanpicado/project/0c76bae8-cfcd-43f7-aff5-70f221855049?utm_source=github&utm_medium=upgrade-pr
 2020-05-24 07:59:48 +02:00
Juan Picado 2d16675a66
chore: add browserstack oss sponsor on readme 2020-05-21 09:09:42 +02:00
dependabot-preview[bot] f44adf096a
build(deps-dev): bump standard-version from 7.1.0 to 8.0.0 (#1804) 
Bumps [standard-version](https://github.com/conventional-changelog/standard-version) from 7.1.0 to 8.0.0.
- [Release notes](https://github.com/conventional-changelog/standard-version/releases)
- [Changelog](https://github.com/conventional-changelog/standard-version/blob/master/CHANGELOG.md)
- [Commits](https://github.com/conventional-changelog/standard-version/compare/v7.1.0...v8.0.0)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>

Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>
 2020-05-12 22:02:03 +02:00
dependabot-preview[bot] 21216b42fa
build(deps): bump semver from 7.2.1 to 7.3.2 (#1802) 
Bumps [semver](https://github.com/npm/node-semver) from 7.2.1 to 7.3.2.
- [Release notes](https://github.com/npm/node-semver/releases)
- [Changelog](https://github.com/npm/node-semver/blob/master/CHANGELOG.md)
- [Commits](https://github.com/npm/node-semver/compare/v7.2.1...v7.3.2)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>

Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>
 2020-05-12 21:06:43 +02:00
Juan Picado 882704f981
chore: add openjs world talk 2020-05-09 20:16:35 +02:00
dependabot-preview[bot] 2e693f15ce
build(deps-dev): bump @verdaccio/types from 9.3.0 to 9.5.0 (#1805) 
Bumps [@verdaccio/types](https://github.com/verdaccio/monorepo/tree/HEAD/core/types) from 9.3.0 to 9.5.0.
- [Release notes](https://github.com/verdaccio/monorepo/releases)
- [Changelog](https://github.com/verdaccio/monorepo/blob/9.x/core/types/CHANGELOG.md)
- [Commits](https://github.com/verdaccio/monorepo/commits/v9.5.0/core/types)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>

Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>
 2020-05-09 07:50:24 +02:00
dependabot-preview[bot] 1fa75e8215
build(deps): [security] bump acorn from 6.4.0 to 6.4.1 (#1800) 
Bumps [acorn](https://github.com/acornjs/acorn) from 6.4.0 to 6.4.1. **This update includes security fixes.**
- [Release notes](https://github.com/acornjs/acorn/releases)
- [Commits](https://github.com/acornjs/acorn/compare/6.4.0...6.4.1)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>

Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>
 2020-05-07 17:16:11 +02:00
Snyk bot 50f6c71a37
fix: upgrade mkdirp from 1.0.3 to 1.0.4 (#1782) 
* fix: upgrade mkdirp from 1.0.3 to 1.0.4

Snyk has created this PR to upgrade mkdirp from 1.0.3 to 1.0.4.

See this package in NPM:
https://www.npmjs.com/package/mkdirp

See this project in Snyk:
https://app.snyk.io/org/juanpicado/project/0c76bae8-cfcd-43f7-aff5-70f221855049?utm_source=github&utm_medium=upgrade-pr

* fix: upgrade mkdirp from 1.0.3 to 1.0.4

Snyk has created this PR to upgrade mkdirp from 1.0.3 to 1.0.4.

See this package in NPM:
https://www.npmjs.com/package/mkdirp

See this project in Snyk:
https://app.snyk.io/org/juanpicado/project/0c76bae8-cfcd-43f7-aff5-70f221855049?utm_source=github&utm_medium=upgrade-pr

Co-authored-by: Juan Picado <juanpicado19@gmail.com>
 2020-05-01 12:42:58 +02:00
Juan Picado @jotadeveloper 07f1232f65
chore(release): 4.6.2 2020-05-01 11:15:10 +02:00
Juan Picado c2e0e1e0bf
fix: avoid access to sidebar without login (#1794) 2020-05-01 11:09:44 +02:00
Juan Picado f9e7f8671b
fix: update core dependencies (#1790) 
- @verdaccio/ui-theme@1.7.1 add language switch and fix bug translations powered by @priscilawebdev
- verdaccio-htpasswd@9.4.1 generate non-constant legacy 2 byte salt by @michaellotz-iart
- update dayjs and envinfo
 2020-04-30 20:39:46 +02:00
Juan Picado @jotadeveloper fa72de2521
chore: pin dependencies 2020-04-30 07:46:48 +02:00
Juan Picado 87b5822646
chore: update security policy 
3.x is no longer supported
 2020-04-27 07:51:28 +02:00
Juan Picado @jotadeveloper afb31b8baf
chore(release): 4.6.1 2020-04-27 07:42:33 +02:00
Juan Picado 416d41fa08
fix: improve token validation (#1784) 
* fix: check name of credentials

* chore: improve validation
 2020-04-26 22:26:49 +02:00
Juan Picado @jotadeveloper 9602995636
chore: add is website vulnerable local registry check 2020-04-25 22:21:06 +02:00
Juan Picado @jotadeveloper e9f99f46e2
chore: restore @octokit/rest 2020-04-24 22:15:11 +02:00
Juan Picado @jotadeveloper db68680407
chore(release): 4.6.0 2020-04-24 18:47:28 +02:00
Juan Picado 656ec55897
feat: update @verdaccio/ui-theme@1.5.0 (#1780) 2020-04-24 18:46:14 +02:00
Juan Picado @jotadeveloper 61faa33de1
feat: update docker node to 12.16.2 (#1776) 2020-04-13 11:18:21 +02:00
Juan Picado @jotadeveloper 1a9a12e918
fix: fatal exception and crash when log rotate signal event is called (#1774) 
fix #1709
 2020-04-10 17:36:29 +02:00