0
Fork 0
mirror of https://github.com/verdaccio/verdaccio.git synced 2024-12-16 21:56:25 -05:00
Commit graph

3965 commits

Author SHA1 Message Date
dependabot[bot]
093490744e
build(deps-dev): bump @verdaccio/babel-preset from 9.6.1 to 9.7.1 (#1869)
Bumps [@verdaccio/babel-preset](https://github.com/verdaccio/monorepo/tree/HEAD/tools/babel-preset) from 9.6.1 to 9.7.1.
- [Release notes](https://github.com/verdaccio/monorepo/releases)
- [Changelog](https://github.com/verdaccio/monorepo/blob/9.x/tools/babel-preset/CHANGELOG.md)
- [Commits](https://github.com/verdaccio/monorepo/commits/v9.7.1/tools/babel-preset)

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2020-07-11 10:01:05 +02:00
dependabot[bot]
56981ff911
build(deps): bump actions/setup-node from v2.0.0 to v2.1.0 (#1865)
Bumps [actions/setup-node](https://github.com/actions/setup-node) from v2.0.0 to v2.1.0.
- [Release notes](https://github.com/actions/setup-node/releases)
- [Commits](https://github.com/actions/setup-node/compare/v2.0.0...1ae8f4b1fd89676f69b55d3dd6932b6df089ff7b)

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2020-07-07 07:20:48 +02:00
allcontributors[bot]
3b45350056
docs: add ddhp as a contributor (#1864)
* docs: update CONTRIBUTORS.md [skip ci]

* docs: update .all-contributorsrc [skip ci]

Co-authored-by: allcontributors[bot] <46447321+allcontributors[bot]@users.noreply.github.com>
2020-06-30 19:06:42 +02:00
Jian-Chen Chen (jesse)
912482a5ae
feat: ca certificate is optional for https configuration (#1853)
* setup https server

* typed handleHttps

* fix if condition

* generate certificate on the fly

* revert yarn.lock

Co-authored-by: Juan Picado <juanpicado19@gmail.com>
2020-06-30 19:05:29 +02:00
Juan Picado @jotadeveloper
dd9b3cff55
chore(release): 4.7.2 2020-06-26 11:45:42 +02:00
Juan Picado @jotadeveloper
9a1892f436
chore: update readme 2020-06-26 11:43:57 +02:00
Snyk bot
b559d75f70
fix: package.json & yarn.lock to reduce vulnerabilities (#1863)
The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JS-BUNYAN-573166

Co-authored-by: Juan Picado <juanpicado19@gmail.com>
2020-06-26 08:04:59 +02:00
dependabot[bot]
15025dca5f
build(deps): bump @verdaccio/readme from 9.6.1 to 9.7.0 (#1857)
Bumps [@verdaccio/readme](https://github.com/verdaccio/monorepo/tree/HEAD/core/readme) from 9.6.1 to 9.7.0.
- [Release notes](https://github.com/verdaccio/monorepo/releases)
- [Changelog](https://github.com/verdaccio/monorepo/blob/9.x/core/readme/CHANGELOG.md)
- [Commits](https://github.com/verdaccio/monorepo/commits/v9.7.0/core/readme)

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2020-06-25 08:06:42 +02:00
dependabot[bot]
a312111a59
build(deps-dev): bump @verdaccio/babel-preset from 8.5.0 to 9.6.1 (#1858)
Bumps [@verdaccio/babel-preset](https://github.com/verdaccio/monorepo/tree/HEAD/tools/babel-preset) from 8.5.0 to 9.6.1.
- [Release notes](https://github.com/verdaccio/monorepo/releases)
- [Changelog](https://github.com/verdaccio/monorepo/blob/9.x/tools/babel-preset/CHANGELOG.md)
- [Commits](https://github.com/verdaccio/monorepo/commits/v9.6.1/tools/babel-preset)

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2020-06-24 18:10:59 +02:00
dependabot[bot]
14b06d5cf2
build(deps): bump @verdaccio/local-storage from 9.6.1 to 9.7.0 (#1861)
Bumps [@verdaccio/local-storage](https://github.com/verdaccio/monorepo/tree/HEAD/plugins/local-storage) from 9.6.1 to 9.7.0.
- [Release notes](https://github.com/verdaccio/monorepo/releases)
- [Changelog](https://github.com/verdaccio/monorepo/blob/9.x/plugins/local-storage/CHANGELOG.md)
- [Commits](https://github.com/verdaccio/monorepo/commits/v9.7.0/plugins/local-storage)

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Juan Picado <juanpicado19@gmail.com>
2020-06-24 18:09:35 +02:00
dependabot[bot]
f5a7460cfc
build(deps): update actions/setup-node requirement to v2.0.0 (#1856)
Updates the requirements on [actions/setup-node](https://github.com/actions/setup-node) to permit the latest version.
- [Release notes](https://github.com/actions/setup-node/releases)
- [Commits](e434342e4e)

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2020-06-24 18:09:13 +02:00
dependabot[bot]
4de5d9f9b6
build(deps): update actions/checkout requirement to v2.3.1 (#1855)
Updates the requirements on [actions/checkout](https://github.com/actions/checkout) to permit the latest version.
- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/master/CHANGELOG.md)
- [Commits](28c7f3d2b5)

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2020-06-24 11:39:48 +02:00
Juan Picado
7523053274
build: create dependabot.yml (#1852)
* Create dependabot.yml

* Update dependabot.yml

* Update dependabot.yml
2020-06-24 10:19:17 +02:00
Juan Picado
a8d86091ec
chore: update readme 2020-06-24 09:50:35 +02:00
Juan Picado @jotadeveloper
092f62eec2
chore(release): 4.7.1 2020-06-22 13:54:15 +02:00
Juan Picado
0bfdeaa2e4
fix: move search v1 endpoint as experimental (#1850)
the current one has not auth implemented, to avoid the lack of fallback to the original one now is required to be used it by default until the v1 is on shape production ready.
2020-06-22 13:33:43 +02:00
Juan Picado @jotadeveloper
c0afcadce4
chore(release): 4.7.0 2020-06-20 07:31:57 +02:00
Juan Picado
4d01831842
feat: update ui add new languages (#1849) 2020-06-20 07:24:58 +02:00
Jian-Chen Chen (jesse)
80ade97801
feat: npm deprecation support (#1842)
* support deprecation

* test case for deprecation

* fix format

* testing for multiple packages deprecation

* update README

Co-authored-by: Juan Picado <juanpicado19@gmail.com>
2020-06-19 22:54:03 +02:00
Robert Sabirov
67c31b69ca
fix: move bodyParse to the upper level (#1841)
Co-authored-by: Juan Picado <juanpicado19@gmail.com>
2020-06-19 07:40:06 +02:00
Juan Picado
99dc8510fc
build: e2e acceptance tests (#1846)
* chore: test e2e

* chore: test

* chore: test

* chore: test

* chore: test

* chore: test

* chore: test

* chore: test

* chore: update name

* chore: test

* chore: test

* chore: test

* chore: test

* chore: test

* chore: test

* chore: test

* chore: test

* chore: test

* chore: test

* chore: test

* chore: test

* chore: test

* chore: test

* chore: test

* chore: test

* chore: test

* chore: test

* chore: test

* chore: test

* chore: test

* chore: test

* chore: test

* chore: test

* chore: test

* chore: test

* chore: this should fails

* chore: restore config
2020-06-18 23:01:57 +02:00
Juan Picado
b5028f2d8a
chore: update bug template 2020-06-14 09:43:20 +02:00
Juan Picado
03c7feb64d
feat: update verdaccio plugins and dependencies (#1838)
* chore: update dependencies

* chore: update dependencies

* chore: remove node v10 warning
2020-06-13 10:38:23 +02:00
Juan Picado @jotadeveloper
858bb36180
Merge branch 'master' of github.com:verdaccio/verdaccio 2020-06-13 09:16:59 +02:00
Juan Picado @jotadeveloper
a608aa489e
chore: update contributors 2020-06-13 09:14:07 +02:00
allcontributors[bot]
fec41d9b20
docs: add toolsofraj as a contributor (#1837)
* docs: update CONTRIBUTORS.md [skip ci]

* docs: update .all-contributorsrc [skip ci]

Co-authored-by: allcontributors[bot] <46447321+allcontributors[bot]@users.noreply.github.com>
2020-06-13 08:51:35 +02:00
Juan Picado @jotadeveloper
7694221175
Merge branch 'master' of github.com:verdaccio/verdaccio 2020-06-13 08:46:40 +02:00
Juan Picado @jotadeveloper
c7023b9bba
chore: update contributors 2020-06-13 08:45:20 +02:00
toolsofraj
aee69a9453
fix: updated nodejs version to fix vulnerability in 12.x https://nodejs.org/en/blog/vulnerability/june-2020-security-releases/ (#1836)
Co-authored-by: Raj Sharma <raj@screenmeet.com>
2020-06-13 08:21:41 +02:00
Juan Picado @jotadeveloper
b01469ff73
chore: add contributors 2020-06-13 08:15:33 +02:00
Daniel Ruf
1352246d80
chore: test code scanning (#1833)
Co-authored-by: Juan Picado <juanpicado19@gmail.com>
2020-06-07 18:29:52 +02:00
Juan Picado
e8e94182a4
chore: new issues report seetings (#1834) 2020-06-07 17:23:44 +02:00
dependabot-preview[bot]
530018895c
build(deps): bump mime from 2.4.4 to 2.4.6 (#1831)
Bumps [mime](https://github.com/broofa/mime) from 2.4.4 to 2.4.6.
- [Release notes](https://github.com/broofa/mime/releases)
- [Changelog](https://github.com/broofa/mime/blob/master/CHANGELOG.md)
- [Commits](https://github.com/broofa/mime/commits)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>

Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>
2020-06-06 07:43:44 +02:00
Juan Picado
56b677a35a
feat: restore Node 8 support (#1832)
This restore a support I removed in Verdaccio 4.5.0

This means nothing if you were not using Node v8, this support should be removed in a major release.
2020-06-03 22:35:31 +02:00
dependabot-preview[bot]
6b1553c257
build(deps-dev): bump codecov from 3.6.5 to 3.7.0 (#1829)
Bumps [codecov](https://github.com/codecov/codecov-node) from 3.6.5 to 3.7.0.
- [Release notes](https://github.com/codecov/codecov-node/releases)
- [Commits](https://github.com/codecov/codecov-node/compare/v3.6.5...v3.7.0)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>

Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>
2020-06-03 07:10:29 +02:00
Snyk bot
6e66cc6433
chore: [Snyk] Upgrade verdaccio-audit from 9.4.0 to 9.5.0 (#1821)
* fix: upgrade verdaccio-audit from 9.4.0 to 9.5.0

Snyk has created this PR to upgrade verdaccio-audit from 9.4.0 to 9.5.0.

See this package in NPM:
https://www.npmjs.com/package/verdaccio-audit

See this project in Snyk:
https://app.snyk.io/org/juanpicado/project/0c76bae8-cfcd-43f7-aff5-70f221855049?utm_source=github&utm_medium=upgrade-pr

* fix: upgrade verdaccio-audit from 9.4.0 to 9.5.0

Snyk has created this PR to upgrade verdaccio-audit from 9.4.0 to 9.5.0.

See this package in NPM:
https://www.npmjs.com/package/verdaccio-audit

See this project in Snyk:
https://app.snyk.io/org/juanpicado/project/0c76bae8-cfcd-43f7-aff5-70f221855049?utm_source=github&utm_medium=upgrade-pr

Co-authored-by: Juan Picado <juanpicado19@gmail.com>
2020-05-24 12:03:44 +02:00
Snyk bot
1e2159a345
fix: [Snyk] upgrade @verdaccio/streams from 9.4.0 to 9.5.0 (#1819)
* fix: upgrade @verdaccio/streams from 9.4.0 to 9.5.0

Snyk has created this PR to upgrade @verdaccio/streams from 9.4.0 to 9.5.0.

See this package in NPM:
https://www.npmjs.com/package/@verdaccio/streams

See this project in Snyk:
https://app.snyk.io/org/juanpicado/project/0c76bae8-cfcd-43f7-aff5-70f221855049?utm_source=github&utm_medium=upgrade-pr

* fix: upgrade @verdaccio/streams from 9.4.0 to 9.5.0

Snyk has created this PR to upgrade @verdaccio/streams from 9.4.0 to 9.5.0.

See this package in NPM:
https://www.npmjs.com/package/@verdaccio/streams

See this project in Snyk:
https://app.snyk.io/org/juanpicado/project/0c76bae8-cfcd-43f7-aff5-70f221855049?utm_source=github&utm_medium=upgrade-pr
2020-05-24 07:59:48 +02:00
Juan Picado
2d16675a66
chore: add browserstack oss sponsor on readme 2020-05-21 09:09:42 +02:00
dependabot-preview[bot]
f44adf096a
build(deps-dev): bump standard-version from 7.1.0 to 8.0.0 (#1804)
Bumps [standard-version](https://github.com/conventional-changelog/standard-version) from 7.1.0 to 8.0.0.
- [Release notes](https://github.com/conventional-changelog/standard-version/releases)
- [Changelog](https://github.com/conventional-changelog/standard-version/blob/master/CHANGELOG.md)
- [Commits](https://github.com/conventional-changelog/standard-version/compare/v7.1.0...v8.0.0)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>

Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>
2020-05-12 22:02:03 +02:00
dependabot-preview[bot]
21216b42fa
build(deps): bump semver from 7.2.1 to 7.3.2 (#1802)
Bumps [semver](https://github.com/npm/node-semver) from 7.2.1 to 7.3.2.
- [Release notes](https://github.com/npm/node-semver/releases)
- [Changelog](https://github.com/npm/node-semver/blob/master/CHANGELOG.md)
- [Commits](https://github.com/npm/node-semver/compare/v7.2.1...v7.3.2)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>

Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>
2020-05-12 21:06:43 +02:00
Juan Picado
882704f981
chore: add openjs world talk 2020-05-09 20:16:35 +02:00
dependabot-preview[bot]
2e693f15ce
build(deps-dev): bump @verdaccio/types from 9.3.0 to 9.5.0 (#1805)
Bumps [@verdaccio/types](https://github.com/verdaccio/monorepo/tree/HEAD/core/types) from 9.3.0 to 9.5.0.
- [Release notes](https://github.com/verdaccio/monorepo/releases)
- [Changelog](https://github.com/verdaccio/monorepo/blob/9.x/core/types/CHANGELOG.md)
- [Commits](https://github.com/verdaccio/monorepo/commits/v9.5.0/core/types)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>

Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>
2020-05-09 07:50:24 +02:00
dependabot-preview[bot]
1fa75e8215
build(deps): [security] bump acorn from 6.4.0 to 6.4.1 (#1800)
Bumps [acorn](https://github.com/acornjs/acorn) from 6.4.0 to 6.4.1. **This update includes security fixes.**
- [Release notes](https://github.com/acornjs/acorn/releases)
- [Commits](https://github.com/acornjs/acorn/compare/6.4.0...6.4.1)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>

Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>
2020-05-07 17:16:11 +02:00
Snyk bot
50f6c71a37
fix: upgrade mkdirp from 1.0.3 to 1.0.4 (#1782)
* fix: upgrade mkdirp from 1.0.3 to 1.0.4

Snyk has created this PR to upgrade mkdirp from 1.0.3 to 1.0.4.

See this package in NPM:
https://www.npmjs.com/package/mkdirp

See this project in Snyk:
https://app.snyk.io/org/juanpicado/project/0c76bae8-cfcd-43f7-aff5-70f221855049?utm_source=github&utm_medium=upgrade-pr

* fix: upgrade mkdirp from 1.0.3 to 1.0.4

Snyk has created this PR to upgrade mkdirp from 1.0.3 to 1.0.4.

See this package in NPM:
https://www.npmjs.com/package/mkdirp

See this project in Snyk:
https://app.snyk.io/org/juanpicado/project/0c76bae8-cfcd-43f7-aff5-70f221855049?utm_source=github&utm_medium=upgrade-pr

Co-authored-by: Juan Picado <juanpicado19@gmail.com>
2020-05-01 12:42:58 +02:00
Juan Picado @jotadeveloper
07f1232f65
chore(release): 4.6.2 2020-05-01 11:15:10 +02:00
Juan Picado
c2e0e1e0bf
fix: avoid access to sidebar without login (#1794) 2020-05-01 11:09:44 +02:00
Juan Picado
f9e7f8671b
fix: update core dependencies (#1790)
- @verdaccio/ui-theme@1.7.1 add language switch and fix bug translations powered by @priscilawebdev
- verdaccio-htpasswd@9.4.1 generate non-constant legacy 2 byte salt by @michaellotz-iart
- update dayjs and envinfo
2020-04-30 20:39:46 +02:00
Juan Picado @jotadeveloper
fa72de2521
chore: pin dependencies 2020-04-30 07:46:48 +02:00
Juan Picado
87b5822646
chore: update security policy
3.x is no longer supported
2020-04-27 07:51:28 +02:00
Juan Picado @jotadeveloper
afb31b8baf
chore(release): 4.6.1 2020-04-27 07:42:33 +02:00