Co-authored-by: github-actions[bot] <github-actions[bot]@users.noreply.github.com>
7.7 KiB
@verdaccio/api
6.0.0-6-next.7
Patch Changes
- Updated dependencies [
cb2281a5
]- @verdaccio/store@6.0.0-6-next.5
- @verdaccio/tarball@11.0.0-6-next.4
5.0.0-alpha.6
Patch Changes
- @verdaccio/auth@5.0.0-alpha.5
- @verdaccio/hooks@5.0.0-alpha.3
- @verdaccio/middleware@5.0.0-alpha.5
5.0.0-alpha.5
Patch Changes
- Updated dependencies [
f8a50baa
]- @verdaccio/auth@5.0.0-alpha.4
- @verdaccio/hooks@5.0.0-alpha.3
- @verdaccio/middleware@5.0.0-alpha.4
5.0.0-alpha.4
Patch Changes
fecbb9be
: chore: add release step to private regisry on merge changeset pr- Updated dependencies [
fecbb9be
]- @verdaccio/auth@5.0.0-alpha.3
- @verdaccio/config@5.0.0-alpha.3
- @verdaccio/commons-api@10.0.0-alpha.3
- @verdaccio/hooks@5.0.0-alpha.3
- @verdaccio/logger@5.0.0-alpha.3
- @verdaccio/middleware@5.0.0-alpha.3
- @verdaccio/store@5.0.0-alpha.4
- @verdaccio/utils@5.0.0-alpha.3
5.0.0-alpha.3
Minor Changes
-
54c58d1e
: feat: add server rate limit protection to all requestTo modify custom values, use the server settings property.
server: ## https://www.npmjs.com/package/express-rate-limit#configuration-options rateLimit: windowMs: 1000 max: 10000
The values are intended to be high, if you want to improve security of your server consider using different values.
Patch Changes
- Updated dependencies [
54c58d1e
]- @verdaccio/auth@5.0.0-alpha.2
- @verdaccio/config@5.0.0-alpha.2
- @verdaccio/commons-api@10.0.0-alpha.2
- @verdaccio/hooks@5.0.0-alpha.2
- @verdaccio/logger@5.0.0-alpha.2
- @verdaccio/middleware@5.0.0-alpha.2
- @verdaccio/store@5.0.0-alpha.3
- @verdaccio/utils@5.0.0-alpha.2
5.0.0-alpha.2
Minor Changes
-
2a327c4b
: feat: remove level dependency by lowdb for npm token cli as storagenew npm token database
There will be a new database located in your storage named
.token-db.json
which will store all references to created tokens, it does not store tokens, just mask of them and related metadata required to reference them.Breaking change
If you were relying on
npm token
experiment. This PR will replace the used database (level) by a json plain based one (lowbd) which does not require Node.js C++ compilation step and has less dependencies. Since was a experiment there is no migration step.
Patch Changes
- @verdaccio/store@5.0.0-alpha.2
5.0.0-alpha.1
Major Changes
-
d87fa026
: feat!: experiments config renamed to flags- The
experiments
configuration is renamed toflags
. The functionality is exactly the same.
flags: token: false; search: false;
- The
self_path
property from the config file is being removed in favor ofconfig_file
full path. - Refactor
config
module, better types and utilities
- The
-
da1ee9c8
: - Replace signature handler for legacy tokens by removing deprecated crypto.createDecipher by createCipheriv- Introduce environment variables for legacy tokens
Code Improvements
- Add debug library for improve developer experience
Breaking change
- The new signature invalidates all previous tokens generated by Verdaccio 4 or previous versions.
- The secret key must have 32 characters long.
New environment variables
VERDACCIO_LEGACY_ALGORITHM
: Allows to define the specific algorithm for the token signature which by default isaes-256-ctr
VERDACCIO_LEGACY_ENCRYPTION_KEY
: By default, the token stores in the database, but using this variable allows to get it from memory
Minor Changes
-
26b494cb
: feat: add typescript project references settingsReading https://ebaytech.berlin/optimizing-multi-package-apps-with-typescript-project-references-d5c57a3b4440 I realized I can use project references to solve the issue to pre-compile modules on develop mode.
It allows to navigate (IDE) trough the packages without need compile the packages.
Add two
tsconfig
, one using the previous existing configuration that is able to produce declaration files (tsconfig.build
) and a new onetsconfig
which is enables projects references.
Patch Changes
-
b57b4338
: Enable prerelease mode with changesets -
42dfed78
: testing changesets -
31af0164
: ESLint Warnings FixedRelated to issue #1461
- max-len: most of the sensible max-len errors are fixed
- no-unused-vars: most of these types of errors are fixed by deleting not needed declarations
- @typescript-eslint/no-unused-vars: same as above
-
Updated dependencies [
d87fa026
] -
Updated dependencies [
42024c34
] -
Updated dependencies [
da1ee9c8
] -
Updated dependencies [
ae52ba35
] -
Updated dependencies [
26b494cb
] -
Updated dependencies [
b57b4338
] -
Updated dependencies [
add778d5
] -
Updated dependencies [
31af0164
]- @verdaccio/auth@5.0.0-alpha.1
- @verdaccio/config@5.0.0-alpha.1
- @verdaccio/commons-api@10.0.0-alpha.1
- @verdaccio/hooks@5.0.0-alpha.1
- @verdaccio/logger@5.0.0-alpha.1
- @verdaccio/middleware@5.0.0-alpha.1
- @verdaccio/store@5.0.0-alpha.1
- @verdaccio/utils@5.0.0-alpha.1
5.0.0-alpha.1
Major Changes
-
d87fa0268
: feat!: experiments config renamed to flags- The
experiments
configuration is renamed toflags
. The functionality is exactly the same.
flags: token: false; search: false;
- The
self_path
property from the config file is being removed in favor ofconfig_file
full path. - Refactor
config
module, better types and utilities
- The
-
da1ee9c82
: - Replace signature handler for legacy tokens by removing deprecated crypto.createDecipher by createCipheriv- Introduce environment variables for legacy tokens
Code Improvements
- Add debug library for improve developer experience
Breaking change
- The new signature invalidates all previous tokens generated by Verdaccio 4 or previous versions.
- The secret key must have 32 characters long.
New environment variables
VERDACCIO_LEGACY_ALGORITHM
: Allows to define the specific algorithm for the token signature which by default isaes-256-ctr
VERDACCIO_LEGACY_ENCRYPTION_KEY
: By default, the token stores in the database, but using this variable allows to get it from memory
Minor Changes
-
26b494cbd
: feat: add typescript project references settingsReading https://ebaytech.berlin/optimizing-multi-package-apps-with-typescript-project-references-d5c57a3b4440 I realized I can use project references to solve the issue to pre-compile modules on develop mode.
It allows to navigate (IDE) trough the packages without need compile the packages.
Add two
tsconfig
, one using the previous existing configuration that is able to produce declaration files (tsconfig.build
) and a new onetsconfig
which is enables projects references.
Patch Changes
-
b57b43388
: Enable prerelease mode with changesets -
42dfed785
: testing changesets -
31af01641
: ESLint Warnings FixedRelated to issue #1461
- max-len: most of the sensible max-len errors are fixed
- no-unused-vars: most of these types of errors are fixed by deleting not needed declarations
- @typescript-eslint/no-unused-vars: same as above
-
Updated dependencies [
d87fa0268
] -
Updated dependencies [
42024c346
] -
Updated dependencies [
da1ee9c82
] -
Updated dependencies [
ae52ba352
] -
Updated dependencies [
26b494cbd
] -
Updated dependencies [
b57b43388
] -
Updated dependencies [
add778d55
] -
Updated dependencies [
31af01641
]- @verdaccio/auth@5.0.0-alpha.1
- @verdaccio/config@5.0.0-alpha.1
- @verdaccio/commons-api@10.0.0-alpha.0
- @verdaccio/hooks@5.0.0-alpha.1
- @verdaccio/logger@5.0.0-alpha.1
- @verdaccio/middleware@5.0.0-alpha.1
- @verdaccio/store@5.0.0-alpha.1
- @verdaccio/utils@5.0.0-alpha.1