Infrastructure/verdaccio
0
Fork 0
mirror of https://github.com/verdaccio/verdaccio.git synced 2024-12-30 22:34:10 -05:00
Code Issues Activity
3416 commits 17 branches 2231 tags 786 MiB
Commit graph

311 commits

Author SHA1 Message Date
Juan Picado @jotadeveloper
aac6709ac2
fix(deps): bump @verdaccio/ui-theme from 0.3.11 to 0.3.12 (#1657) (#1665) 
fixes: https://github.com/verdaccio/verdaccio/issues/1648
Co-Authored-By: Daniel Ruf <danielruf@users.noreply.github.com>

Co-authored-by: Daniel Ruf <827205+DanielRuf@users.noreply.github.com>
 2020-01-09 06:56:36 +01:00
dependabot-preview[bot]
9db91ee0e1 build(deps-dev): bump @octokit/rest from 16.28.9 to 16.36.0 (#1651) 
Bumps [@octokit/rest](https://github.com/octokit/rest.js) from 16.28.9 to 16.36.0.
- [Release notes](https://github.com/octokit/rest.js/releases)
- [Commits](https://github.com/octokit/rest.js/compare/v16.28.9...v16.36.0)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
 2020-01-09 06:16:50 +01:00
Juan Picado @jotadeveloper
7b67bea4b8
fix(deps): bump @verdaccio/local-storage from 8.5.0 to 9.0.0 
fix: converting circular structure to json (#1663)

Fixed at https://github.com/verdaccio/monorepo/pull/312

Fixes #1639

Co-Authored-By: Daniel Ruf <danielruf@users.noreply.github.com>

Co-authored-by: Daniel Ruf <827205+DanielRuf@users.noreply.github.com>
 2020-01-08 20:41:33 +01:00
dependabot-preview[bot]
9a2fd81626 fix(deps): bump @verdaccio/ui-theme from 0.3.10 to 0.3.11 (#1657) 
Bumps [@verdaccio/ui-theme](https://github.com/verdaccio/ui) from 0.3.10 to 0.3.11.
- [Release notes](https://github.com/verdaccio/ui/releases)
- [Changelog](https://github.com/verdaccio/ui/blob/master/CHANGELOG.md)
- [Commits](https://github.com/verdaccio/ui/compare/v0.3.10...v0.3.11)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
 2020-01-08 19:37:11 +01:00
dependabot-preview[bot]
6fb5bfca62 build(deps-dev): bump @verdaccio/types from 8.5.2 to 9.0.0 (#1650) 
Bumps [@verdaccio/types](https://github.com/verdaccio/monorepo/tree/HEAD/core/types) from 8.5.2 to 9.0.0.
- [Release notes](https://github.com/verdaccio/monorepo/releases)
- [Changelog](https://github.com/verdaccio/monorepo/blob/master/core/types/CHANGELOG.md)
- [Commits](https://github.com/verdaccio/monorepo/commits/v9.0.0/core/types)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
 2020-01-08 19:34:19 +01:00
dependabot-preview[bot]
431081908a build(deps-dev): bump @types/jest from 24.0.24 to 24.0.25 (#1649) 
Bumps [@types/jest](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/jest) from 24.0.24 to 24.0.25.
- [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases)
- [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/jest)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
 2020-01-08 19:33:48 +01:00
Juan Picado @jotadeveloper
fbc87fc26e
fix: warning due ui dependecy (#1638) 2019-12-30 23:11:26 +01:00
Juan Picado @jotadeveloper
c30412b6db refactor: update monorepo deps and types (#1631) 2019-12-25 14:46:14 +01:00
Juan Picado @jotadeveloper
7fe943f7bc build: update dependencies (#1630) 
* chore: update dependencies

* chore: update secrets
 2019-12-23 09:29:27 +01:00
Juan Picado @jotadeveloper
e1685d205b
chore: consume previous registry installed 2019-12-15 12:07:29 +01:00
Juan Picado @jotadeveloper
03d1244e51
chore: publish current build on local registry 2019-12-14 22:52:26 +01:00
Juan Picado @jotadeveloper
1b4a5dc31b
feat: update @verdaccio/ui-theme@0.3.9 (#1623) 
* feat: update @verdaccio/ui-theme

- new login screen

* test: update e2e

we need to keep in sync with ui repo, but this will be removed soon

* chore: restore yarn lock

* chore: update lock file
 2019-12-14 15:52:57 +01:00
dependabot-preview[bot]
0ff9bb774a build(deps): bump marked from 0.7.0 to 0.8.0 (#1614) 
Bumps [marked](https://github.com/markedjs/marked) from 0.7.0 to 0.8.0.
- [Release notes](https://github.com/markedjs/marked/releases)
- [Commits](https://github.com/markedjs/marked/compare/v0.7.0...v0.8.0)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
 2019-12-14 08:25:31 +01:00
dependabot-preview[bot]
52c6a8aa9f build(deps): bump envinfo from 7.4.0 to 7.5.0 (#1616) 
Bumps [envinfo](https://github.com/tabrindle/envinfo) from 7.4.0 to 7.5.0.
- [Release notes](https://github.com/tabrindle/envinfo/releases)
- [Commits](https://github.com/tabrindle/envinfo/compare/7.4.0...7.5.0)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
 2019-12-14 08:24:13 +01:00
dependabot-preview[bot]
8d9a7b32da build(deps-dev): bump @typescript-eslint/eslint-plugin (#1619) 
Bumps [@typescript-eslint/eslint-plugin](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/eslint-plugin) from 2.10.0 to 2.11.0.
- [Release notes](https://github.com/typescript-eslint/typescript-eslint/releases)
- [Changelog](https://github.com/typescript-eslint/typescript-eslint/blob/master/packages/eslint-plugin/CHANGELOG.md)
- [Commits](https://github.com/typescript-eslint/typescript-eslint/commits/v2.11.0/packages/eslint-plugin)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
 2019-12-14 08:23:38 +01:00
dependabot-preview[bot]
19281f86f9 build(deps-dev): bump codecov from 3.5.0 to 3.6.1 (#1571) 
Bumps [codecov](https://github.com/codecov/codecov-node) from 3.5.0 to 3.6.1.
- [Release notes](https://github.com/codecov/codecov-node/releases)
- [Commits](https://github.com/codecov/codecov-node/commits/v3.6.1)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
 2019-12-06 18:47:56 +01:00
dependabot-preview[bot]
12aab7e553 build(deps-dev): bump nock from 11.3.3 to 11.7.0 (#1572) 
Bumps [nock](https://github.com/nock/nock) from 11.3.3 to 11.7.0.
- [Release notes](https://github.com/nock/nock/releases)
- [Changelog](https://github.com/nock/nock/blob/master/CHANGELOG.md)
- [Commits](https://github.com/nock/nock/compare/v11.3.3...v11.7.0)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
 2019-12-06 18:47:28 +01:00
dependabot-preview[bot]
f6a9325d8e build(deps-dev): bump @types/http-errors from 1.6.2 to 1.6.3 (#1588) 
Bumps [@types/http-errors](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/http-errors) from 1.6.2 to 1.6.3.
- [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases)
- [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/http-errors)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
 2019-12-06 18:46:33 +01:00
dependabot-preview[bot]
6d12ddf4b3 build(deps): bump @verdaccio/readme from 8.2.0 to 8.4.2 (#1601) 
Bumps [@verdaccio/readme](https://github.com/verdaccio/monorepo/tree/HEAD/core/readme) from 8.2.0 to 8.4.2.
- [Release notes](https://github.com/verdaccio/monorepo/releases)
- [Changelog](https://github.com/verdaccio/monorepo/blob/master/core/readme/CHANGELOG.md)
- [Commits](https://github.com/verdaccio/monorepo/commits/v8.4.2/core/readme)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
 2019-12-06 18:45:58 +01:00
dependabot-preview[bot]
a160790036 build(deps): bump @verdaccio/local-storage from 8.2.0 to 8.4.2 (#1602) 
Bumps [@verdaccio/local-storage](https://github.com/verdaccio/monorepo/tree/HEAD/plugins/local-storage) from 8.2.0 to 8.4.2.
- [Release notes](https://github.com/verdaccio/monorepo/releases)
- [Changelog](https://github.com/verdaccio/monorepo/blob/master/plugins/local-storage/CHANGELOG.md)
- [Commits](https://github.com/verdaccio/monorepo/commits/v8.4.2/plugins/local-storage)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
 2019-12-06 18:31:55 +01:00
dependabot-preview[bot]
31c067ec6e build(deps-dev): bump @typescript-eslint/eslint-plugin (#1607) 
Bumps [@typescript-eslint/eslint-plugin](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/eslint-plugin) from 2.1.0 to 2.10.0.
- [Release notes](https://github.com/typescript-eslint/typescript-eslint/releases)
- [Changelog](https://github.com/typescript-eslint/typescript-eslint/blob/master/packages/eslint-plugin/CHANGELOG.md)
- [Commits](https://github.com/typescript-eslint/typescript-eslint/commits/v2.10.0/packages/eslint-plugin)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
 2019-12-06 18:30:46 +01:00
Juan Picado @jotadeveloper
4aeebd5be1
chore: update lock file 2019-11-21 17:02:57 +01:00
dependabot-preview[bot]
2d0d34c4f2 build(deps): [security] bump https-proxy-agent from 2.2.2 to 2.2.4 (#1582) 
Bumps [https-proxy-agent](https://github.com/TooTallNate/node-https-proxy-agent) from 2.2.2 to 2.2.4. **This update includes security fixes.**
- [Release notes](https://github.com/TooTallNate/node-https-proxy-agent/releases)
- [Commits](https://github.com/TooTallNate/node-https-proxy-agent/compare/2.2.2...2.2.4)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
 2019-11-19 06:03:01 +01:00
dependabot-preview[bot]
399421e609 build(deps-dev): bump @types/semver from 6.0.2 to 6.2.0 (#1574) 
Bumps [@types/semver](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/semver) from 6.0.2 to 6.2.0.
- [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases)
- [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/semver)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
 2019-11-17 11:55:48 +01:00
dependabot-preview[bot]
c416febbb6 build(deps-dev): bump @types/lodash from 4.14.141 to 4.14.148 (#1579) 
Bumps [@types/lodash](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/lodash) from 4.14.141 to 4.14.148.
- [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases)
- [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/lodash)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
 2019-11-17 07:03:01 +01:00
dependabot-preview[bot]
0106811061 build(deps-dev): bump cross-env from 5.2.1 to 6.0.3 (#1570) 
Bumps [cross-env](https://github.com/kentcdodds/cross-env) from 5.2.1 to 6.0.3.
- [Release notes](https://github.com/kentcdodds/cross-env/releases)
- [Changelog](https://github.com/kentcdodds/cross-env/blob/master/CHANGELOG.md)
- [Commits](https://github.com/kentcdodds/cross-env/compare/v5.2.1...v6.0.3)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
 2019-11-17 07:02:33 +01:00
dependabot-preview[bot]
f7c7d167b1 build(deps-dev): bump detect-secrets from 1.0.4 to 1.0.5 (#1575) 
Bumps [detect-secrets](https://github.com/lirantal/detect-secrets) from 1.0.4 to 1.0.5.
- [Release notes](https://github.com/lirantal/detect-secrets/releases)
- [Commits](https://github.com/lirantal/detect-secrets/compare/v1.0.4...v1.0.5)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
 2019-11-16 13:26:32 +01:00
dependabot-preview[bot]
4e5b6e8d3f build(deps-dev): bump @types/jest from 24.0.22 to 24.0.23 (#1576) 
Bumps [@types/jest](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/jest) from 24.0.22 to 24.0.23.
- [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases)
- [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/jest)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
 2019-11-16 13:22:30 +01:00
dependabot-preview[bot]
b7757f898b build(deps-dev): bump @types/async from 3.0.2 to 3.0.3 (#1561) 
Bumps [@types/async](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/async) from 3.0.2 to 3.0.3.
- [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases)
- [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/async)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
 2019-11-08 19:36:18 +01:00
dependabot-preview[bot]
a774d4e1c4 build(deps-dev): bump @types/jest from 24.0.18 to 24.0.22 (#1560) 
Bumps [@types/jest](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/jest) from 24.0.18 to 24.0.22.
- [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases)
- [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/jest)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
 2019-11-08 19:35:50 +01:00
dependabot-preview[bot]
e801d01a0c build(deps): bump dayjs from 1.8.16 to 1.8.17 (#1562) 
Bumps [dayjs](https://github.com/iamkun/dayjs) from 1.8.16 to 1.8.17.
- [Release notes](https://github.com/iamkun/dayjs/releases)
- [Changelog](https://github.com/iamkun/dayjs/blob/dev/CHANGELOG.md)
- [Commits](https://github.com/iamkun/dayjs/compare/v1.8.16...v1.8.17)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
 2019-11-08 19:35:24 +01:00
dependabot-preview[bot]
e982033013 build(deps-dev): bump verdaccio-auth-memory from 8.2.0 to 8.3.0 (#1559) 
Bumps [verdaccio-auth-memory](https://github.com/verdaccio/monorepo/tree/HEAD/plugins/auth-memory) from 8.2.0 to 8.3.0.
- [Release notes](https://github.com/verdaccio/monorepo/releases)
- [Changelog](https://github.com/verdaccio/monorepo/blob/master/plugins/auth-memory/CHANGELOG.md)
- [Commits](https://github.com/verdaccio/monorepo/commits/v8.3.0/plugins/auth-memory)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
 2019-11-08 08:48:04 +01:00
dependabot-preview[bot]
c6e80b58a7 build(deps-dev): bump jest-junit from 8.0.0 to 9.0.0 (#1556) 
Bumps [jest-junit](https://github.com/jest-community/jest-junit) from 8.0.0 to 9.0.0.
- [Release notes](https://github.com/jest-community/jest-junit/releases)
- [Commits](https://github.com/jest-community/jest-junit/compare/v8.0.0...v9.0.0)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
 2019-11-08 06:48:31 +01:00
dependabot-preview[bot]
4cd4a7155f build(deps): [security] bump eslint-utils from 1.4.0 to 1.4.3 (#1554) 
Bumps [eslint-utils](https://github.com/mysticatea/eslint-utils) from 1.4.0 to 1.4.3. **This update includes security fixes.**
- [Release notes](https://github.com/mysticatea/eslint-utils/releases)
- [Commits](https://github.com/mysticatea/eslint-utils/compare/v1.4.0...v1.4.3)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
 2019-11-07 18:38:36 +01:00
dependabot-preview[bot]
241b0e51f7 build(deps): bump @verdaccio/commons-api from 8.2.0 to 8.3.0 (#1555) 
Bumps [@verdaccio/commons-api](https://github.com/verdaccio/monorepo/tree/HEAD/core/commons-api) from 8.2.0 to 8.3.0.
- [Release notes](https://github.com/verdaccio/monorepo/releases)
- [Changelog](https://github.com/verdaccio/monorepo/blob/master/core/commons-api/CHANGELOG.md)
- [Commits](https://github.com/verdaccio/monorepo/commits/v8.3.0/core/commons-api)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
 2019-11-07 18:29:32 +01:00
Juan Picado @jotadeveloper
0aba1c36d9
chore: update Typescript 3.7.1-rc (#1536) 
* chore: update typescript@3.7.0-beta

* chore: update to typescript@3.7.1-rc
 2019-10-26 13:03:25 +02:00
Juan Picado @jotadeveloper
c70be6ec82
chore: update typescript@3.7.0-beta (#1507) 2019-10-26 12:48:35 +02:00
Juan Picado @jotadeveloper
2ac7770459
fix: security vulnerability at readme in dompurify dep (#1532) 
Fix Cross-site Scripting (XSS) in @verdaccio/readme
 2019-10-23 20:49:36 +02:00
Sergio Hg
1d1a6829db ci(circleci): store test results in junit format (#1497) 2019-10-05 16:29:49 +02:00
Sergio Hg
a1aefae0f4 chore(deps): update verdaccio-audit to fix express version (#1490) 2019-09-30 22:59:42 +02:00
Juan Picado @jotadeveloper
9d68816bde chore: update dependencies (#1485) 2019-09-30 20:54:10 +02:00
Juan Picado @jotadeveloper
b486a9df1a
chore: update dependencies (#1472) 2019-09-26 19:40:23 +02:00
Juan Picado @jotadeveloper
dbf20175dc
feat: npm token command support (#1427) 
* feat: support for npm token

This is an effor of:

This commit intent to provide npm token support.

https: //github.com/verdaccio/verdaccio/issues/541
https: //github.com/verdaccio/verdaccio/pull/1271
https: //github.com/verdaccio/local-storage/pull/168
Co-Authored-By: Manuel Spigolon <behemoth89@gmail.com>
Co-Authored-By: Juan Gabriel Jiménez <juangabreil@gmail.com>

* chore: update secrets baselines

Co-Authored-By: Liran Tal <liran.tal@gmail.com>

* chore: update lock file

* chore: add logger mock methods

* chore: update @verdaccio/types

* refactor: unit test was flacky

adapt the pkg access to the new configuration setup

* refactor: add plugin methods validation

* test: add test for aesEncrypt

* chore: update local-storage dependency

* chore: add support for experimetns

token will be part of the experiment lists

* chore: increase timeout

* chore: increase timeout threshold

* chore: update nock

* chore: update dependencies

* chore: update eslint config

* chore: update dependencies

* test: add unit test for npm token

* chore: update readme
 2019-09-07 15:46:50 -07:00
Juan Picado @jotadeveloper
d5303f407b
feat: browse web package version (#1457) 
* feat: allow endpoint to query by version

* chore: update @verdaccio/ui-theme

* test: add unit test for sidebar endpoint by version
 2019-09-05 12:12:10 -07:00
Juan Picado @jotadeveloper
37530ac0fd
build: update dependencies (#1452) 
* build: update dependencies

* chore: update dependencies

* chore: update dependencies

* chore: update dependencies

* chore: allow ts-ignore

we will remove this in the future, warn for now

* chore: eslint rules as warning

this is due the update, we will address this later
 2019-08-25 10:16:43 -07:00
Juan Picado @jotadeveloper
423371423a
fix: update @verdaccio/ui-theme@0.2.3 (#1451) 
https://github.com/verdaccio/ui/blob/master/CHANGELOG.md#023-2019-08-25

missing headers on search endpoint with token (#121) (ac58730)
refactoring version page / fix issue not found page #100 (#117) (97e8448)
remove ToReplaceByVerdaccio #108 (#122) (5a9bd60)
api: correctly handle responses with missing content-type header (2049022)
 2019-08-25 09:41:04 -07:00
Liran Tal
9b0b0bfac3 build: Lint the lockfile for security policies (#1444) 
* feat: lint lockfiles

* fix: update secrets baseline
 2019-08-25 09:37:25 -07:00
Juan Picado @jotadeveloper
c264f944fb
fix: unpublish and add or remove star colision (#1434) 
* fix: unpublish and add or remove star colision

The issue was the npm star use a similar payload, but we did not check properly the shape of the payload, this fix and allow unpublish correctly.

Improve unit testing for publishing and unpublishing
Add new code documentation for future changes.

* chore: update secrets baseline

* chore: add missing type

this will requires update types in the future
 2019-08-10 13:38:06 +02:00
Juan Picado @jotadeveloper
4fb20efe60
Merge pull request #1418 from jamesgeorge007/hotfix/remove-stub-definition 
fix(chore): remove stub type definition for handlebars
 2019-08-01 18:41:40 +02:00
jamesgeorge007
19b9af3401 update yarn.lock 2019-08-01 13:54:13 +05:30