chore(release): 3.13.0

feat: update core dependencies
feat: bump Node.js v10.16.3
2019-09-29 17:57:56 +02:00 · 2019-09-29 17:24:53 +02:00 · 2019-09-29 17:16:01 +02:00 · 2019-08-01 20:04:02 +02:00 · 2019-08-01 20:03:05 +02:00 · 2019-08-01 19:56:03 +02:00
2645 changed files with 74578 additions and 419407 deletions
--- a/.babelrc
+++ b/.babelrc
@@ -1,18 +1,77 @@
 {
-  "presets": [
-    [
-      "@babel/env",
-      {
+  "env": {
+    "ui": {
+      "presets": [
+        "react",
+        ["env",{
+          "targets": {
+            "browsers": [
+              "last 5 versions",
+              "FireFox >= 44",
+              "Safari >= 7",
+              "Explorer 11",
+              "last 4 Edge versions"
+            ],
+            "loose": true
+          }
+        }],
+        "stage-2",
+        "stage-3"
+      ],
+      "plugins": [
+        "react-hot-loader/babel",
+        "transform-runtime",
+        "transform-object-rest-spread",
+        "transform-decorators-legacy",
+        "syntax-dynamic-import"
+      ]
+    },
+    "test": {
+      "presets": [["env", {
        "targets": {
-          "node": 12
+          "node": "6.10"
        }
-      }
-    ],
-    "@babel/typescript"
-  ],
-  "ignore": ["**/*.d.ts"],
-  "plugins": [
-    "@babel/plugin-proposal-optional-chaining",
-    "@babel/plugin-proposal-nullish-coalescing-operator"
-  ]
+      }], "flow", "react"],
+      "plugins": [
+        "transform-class-properties",
+        "transform-object-rest-spread",
+        "babel-plugin-dynamic-import-node"
+      ]
+    },
+    "testOldEnv": {
+      "presets": [ "es2015-node4", "flow"],
+      "plugins": [
+        "transform-class-properties",
+        "transform-object-rest-spread"
+      ]
+    },
+    "registry": {
+      "presets": [
+        ["env", {
+          "targets": {
+            "node": "6.10"
+          }
+        }], "stage-3", "flow"],
+      "plugins": [
+        "transform-object-rest-spread",
+        "transform-class-properties"
+      ]
+    },
+    "registry-docker": {
+      "presets": [
+        ["env", {
+          "targets": {
+            "node": "10"
+          }
+        }], "flow"],
+      "plugins": [
+        "transform-object-rest-spread",
+        "transform-class-properties"
+      ]
+    },
+    "development": {
+      "presets": ["flow"],
+      "plugins": ["flow-runtime"]
+    }
+  }
 }
--- a/.changeset/README.md
+++ b/.changeset/README.md
@@ -1,8 +0,0 @@
-# Changesets
-
-Hello and welcome! This folder has been automatically generated by `@changesets/cli`, a build tool that works
-with multi-package repos, or single-package repos to help you version and publish your code. You can
-find the full documentation for it [in our repository](https://github.com/changesets/changesets)
-
-We have a quick list of common questions to get you started engaging with this project in
-[our documentation](https://github.com/changesets/changesets/blob/master/docs/common-questions.md)
--- a/.changeset/angry-trees-tie.md
+++ b/.changeset/angry-trees-tie.md
@@ -1,6 +0,0 @@
---
-'@verdaccio/ui-components': patch
-'@verdaccio/ui-theme': patch
---
-
- fixed login state when token is expired (@ku3mi41 in #3980)
--- a/.changeset/breezy-mayflies-pull.md
+++ b/.changeset/breezy-mayflies-pull.md
@@ -1,44 +0,0 @@
---
-'@verdaccio/api': major
-'@verdaccio/auth': major
-'@verdaccio/cli': major
-'@verdaccio/config': major
-'@verdaccio/core': major
-'@verdaccio/file-locking': major
-'@verdaccio/tarball': major
-'@verdaccio/types': major
-'@verdaccio/url': major
-'@verdaccio/hooks': major
-'@verdaccio/loaders': major
-'@verdaccio/logger': major
-'@verdaccio/logger-7': major
-'@verdaccio/logger-commons': major
-'@verdaccio/logger-prettify': major
-'@verdaccio/middleware': major
-'@verdaccio/node-api': major
-'verdaccio-audit': major
-'verdaccio-auth-memory': major
-'verdaccio-htpasswd': major
-'@verdaccio/local-storage': major
-'verdaccio-memory': major
-'@verdaccio/ui-theme': major
-'@verdaccio/proxy': major
-'@verdaccio/search': major
-'@verdaccio/server': major
-'@verdaccio/server-fastify': major
-'@verdaccio/signature': major
-'@verdaccio/cli-standalone': major
-'@verdaccio/store': major
-'docusaurus-plugin-contributors': major
-'@verdaccio/eslint-config': major
-'@verdaccio/test-helper': major
-'customprefix-auth': major
-'@verdaccio/ui-components': major
-'@verdaccio/utils': major
-'verdaccio': major
-'@verdaccio/web': major
-'@verdaccio/website': major
-'@verdaccio/local-publish': patch
---
-
-feat!: bump to v7
--- a/.changeset/chilled-carrots-guess.md
+++ b/.changeset/chilled-carrots-guess.md
@@ -1,6 +0,0 @@
---
-'@verdaccio/ui-theme': patch
---
-
- added `onClick` prop to `Link` component in @verdaccio/ui-components. (@moglerdev in #3989)
- resolved issue in the `Package` component where the download button was incorrectly opening a new tab to the homepage. (@moglerdev in #3989)
--- a/.changeset/config.json
+++ b/.changeset/config.json
@@ -1,18 +0,0 @@
-{
-  "$schema": "https://unpkg.com/@changesets/config@1.3.0/schema.json",
-  "changelog": "@changesets/cli/changelog",
-  "commit": false,
-  "fixed": [
-    [
-      "verdaccio",
-      "@verdaccio/cli",
-      "@verdaccio/core",
-      "@verdaccio/config",
-      "@verdaccio/node-api",
-      "@verdaccio/ui-theme"
-    ]
-  ],
-  "access": "public",
-  "baseBranch": "master",
-  "updateInternalDependencies": "patch"
-}
--- a/.changeset/eight-squids-judge.md
+++ b/.changeset/eight-squids-judge.md
@@ -1,6 +0,0 @@
---
-'@verdaccio/ui-theme': patch
-'@verdaccio/ui-components': patch
---
-
-fix: display labels for engine versions
--- a/.changeset/long-jars-collect.md
+++ b/.changeset/long-jars-collect.md
@@ -1,15 +0,0 @@
---
-'@verdaccio/ui-theme': minor
-'@verdaccio/ui-components': minor
---
-
-feat: ui improvements
-
-Some UI improvements
-
- download progress indicator: https://github.com/verdaccio/verdaccio/discussions/4068
- fix dark mode and readme css support https://github.com/verdaccio/verdaccio/discussions/3942 https://github.com/verdaccio/verdaccio/discussions/3467
- fix global for yarn packages and add version to the packages on copy
- feat: hide deprecated versions option
- fix: improve deprecated package style
- feat: display deprecated versions
--- a/.changeset/old-turkeys-heal.md
+++ b/.changeset/old-turkeys-heal.md
@@ -1,18 +0,0 @@
---
-'@verdaccio/config': minor
-'@verdaccio/core': minor
-'@verdaccio/file-locking': minor
-'@verdaccio/tarball': minor
-'@verdaccio/url': minor
-'@verdaccio/logger-7': minor
-'@verdaccio/logger-commons': minor
-'@verdaccio/logger-prettify': minor
-'@verdaccio/middleware': minor
-'verdaccio-audit': minor
-'verdaccio-htpasswd': minor
-'@verdaccio/search': minor
-'@verdaccio/signature': minor
-'@verdaccio/utils': minor
---
-
-restore legacy support
--- a/.changeset/perfect-chairs-act.md
+++ b/.changeset/perfect-chairs-act.md
@@ -1,36 +0,0 @@
---
-'@verdaccio/api': major
-'@verdaccio/auth': major
-'@verdaccio/cli': major
-'@verdaccio/config': major
-'@verdaccio/core': major
-'@verdaccio/file-locking': major
-'@verdaccio/tarball': major
-'@verdaccio/types': major
-'@verdaccio/url': major
-'@verdaccio/hooks': major
-'@verdaccio/loaders': major
-'@verdaccio/logger': major
-'@verdaccio/logger-commons': major
-'@verdaccio/logger-prettify': major
-'@verdaccio/middleware': major
-'@verdaccio/node-api': major
-'verdaccio-audit': major
-'verdaccio-auth-memory': major
-'verdaccio-htpasswd': major
-'@verdaccio/local-storage': major
-'verdaccio-memory': major
-'@verdaccio/ui-theme': major
-'@verdaccio/proxy': major
-'@verdaccio/search': major
-'@verdaccio/server': major
-'@verdaccio/server-fastify': major
-'@verdaccio/signature': major
-'@verdaccio/store': major
-'@verdaccio/ui-components': major
-'@verdaccio/utils': major
-'verdaccio': major
-'@verdaccio/web': major
---
-
-update major dependencies, remove old nodejs support
--- a/.changeset/pre.json
+++ b/.changeset/pre.json
@@ -1,72 +0,0 @@
-{
-  "mode": "pre",
-  "tag": "next",
-  "initialVersions": {
-    "@verdaccio/test-cli-commons": "1.1.0",
-    "@verdaccio/e2e-cli-npm6": "1.0.1",
-    "@verdaccio/e2e-cli-npm7": "1.0.1",
-    "@verdaccio/e2e-cli-npm8": "1.0.1",
-    "@verdaccio/e2e-cli-npm9": "1.0.1",
-    "@verdaccio/e2e-cli-pnpm6": "1.0.1",
-    "@verdaccio/e2e-cli-pnpm7": "1.0.1",
-    "@verdaccio/e2e-cli-pnpm8": "1.0.1",
-    "@verdaccio/e2e-cli-yarn1": "1.0.1",
-    "@verdaccio/e2e-cli-yarn2": "1.0.1",
-    "@verdaccio/e2e-cli-yarn3": "1.0.1",
-    "@verdaccio/e2e-cli-yarn4": "1.0.1",
-    "@verdaccio/e2e-ui": "2.0.0",
-    "@verdaccio/api": "6.0.0",
-    "@verdaccio/auth": "6.0.0",
-    "@verdaccio/cli": "6.0.0",
-    "@verdaccio/config": "6.0.0",
-    "@verdaccio/core": "6.0.0",
-    "@verdaccio/file-locking": "11.0.0",
-    "@verdaccio/tarball": "11.0.0",
-    "@verdaccio/types": "11.0.0",
-    "@verdaccio/url": "11.0.0",
-    "@verdaccio/hooks": "6.0.0",
-    "@verdaccio/loaders": "6.0.0",
-    "@verdaccio/logger": "6.0.0",
-    "@verdaccio/logger-7": "6.0.0",
-    "@verdaccio/logger-commons": "6.0.0",
-    "@verdaccio/logger-prettify": "6.0.0",
-    "@verdaccio/middleware": "6.0.0",
-    "@verdaccio/node-api": "6.0.0",
-    "verdaccio-audit": "11.0.0",
-    "verdaccio-auth-memory": "11.0.0",
-    "verdaccio-htpasswd": "11.0.0",
-    "@verdaccio/local-storage": "11.0.0",
-    "verdaccio-memory": "11.0.0",
-    "@verdaccio/ui-theme": "6.0.0",
-    "@verdaccio/proxy": "6.0.0",
-    "@verdaccio/search": "6.0.0",
-    "@verdaccio/server": "6.0.0",
-    "@verdaccio/server-fastify": "6.0.0",
-    "@verdaccio/signature": "6.0.0",
-    "@verdaccio/cli-standalone": "6.0.0",
-    "@verdaccio/store": "6.0.0",
-    "docusaurus-plugin-contributors": "1.0.1",
-    "@verdaccio/eslint-config": "2.0.0",
-    "@verdaccio/test-helper": "2.0.0",
-    "@verdaccio/crowdin-translations": "1.0.0",
-    "customprefix-auth": "1.0.0",
-    "@verdaccio/ui-components": "2.0.0",
-    "@verdaccio/utils": "6.0.0",
-    "verdaccio": "6.0.0",
-    "@verdaccio/web": "6.0.0",
-    "@verdaccio/website": "5.20.2",
-    "@verdaccio/local-publish": "0.0.1"
-  },
-  "changesets": [
-    "angry-trees-tie",
-    "breezy-mayflies-pull",
-    "chilled-carrots-guess",
-    "eight-squids-judge",
-    "long-jars-collect",
-    "old-turkeys-heal",
-    "perfect-chairs-act",
-    "shiny-worms-retire",
-    "shy-garlics-cry",
-    "weak-fans-explain"
-  ]
-}
--- a/.changeset/shiny-worms-retire.md
+++ b/.changeset/shiny-worms-retire.md
@@ -1,5 +0,0 @@
---
-'@verdaccio/search': patch
---
-
-fix: keyword undefined errors
--- a/.changeset/shy-garlics-cry.md
+++ b/.changeset/shy-garlics-cry.md
@@ -1,5 +0,0 @@
---
-'@verdaccio/signature': patch
---
-
-chore: export signature options type
--- a/.changeset/weak-fans-explain.md
+++ b/.changeset/weak-fans-explain.md
@@ -1,5 +0,0 @@
---
-'@verdaccio/server': patch
---
-
-fix: Avoid 404 error when getting favicon from root
--- a/.circleci/config.yml
+++ b/.circleci/config.yml
@@ -0,0 +1,232 @@
+version: 2
+
+aliases:
+  - &defaults
+    working_directory: ~/verdaccio
+  - &node12_executor
+    docker:
+      - image: circleci/node:12
+  - &node8_executor
+    docker:
+      - image: circleci/node:8
+  - &node9_executor
+    docker:
+      - image: circleci/node:9
+  - &node9_browser_executor
+    docker:
+      - image: circleci/node:9-browsers
+  - &node10_executor
+    docker:
+      - image: circleci/node:10
+  - &default_executor
+    <<: *node9_executor
+  - &repo_key
+    repo-{{ .Branch }}-{{ .Revision }}
+  - &coverage_key
+    coverage-{{ .Branch }}-{{ .Revision }}
+  - &base_config_key
+    base-config-{{ .Branch }}-{{ .Revision }}
+  - &yarn_cache_key
+    yarn-sha-{{ checksum "yarn.lock" }}
+  - &restore_repo
+    attach_workspace:
+      at: ~/verdaccio
+  - &ignore_non_dev_branches
+    filters:
+      tags:
+        only: /.*/
+      branches:
+        ignore:
+          - gh-pages
+          - l10n_master
+          - /release\/.*/
+  - &execute_on_release
+    filters:
+      tags:
+        only: /v?[0-9]+(\.[0-9]+)+([-+\.][0-9a-zA-Z]+)*/
+      branches:
+        ignore:
+          - /.*/
+
+jobs:
+  prepare:
+    <<: *defaults
+    <<: *default_executor
+    steps:
+      - checkout
+      - restore_cache:
+          key: *base_config_key
+      - run:
+          name: 'Base environment setup'
+          command: |
+            git config --global user.email "verdacciobot@users.noreply.github.com"
+            git config --global user.name "Verdaccio bot for Deployments"
+            echo "//registry.npmjs.org/:_authToken=${NPM_TOKEN}" > ~/.npmrc
+            echo "machine github.com login verdacciobot password $GITHUB_TOKEN" > ~/.netrc
+      - save_cache:
+          key: *base_config_key
+          paths:
+            - ~/.npmrc
+            - ~/.gitconfig
+            - ~/.netrc
+      - restore_cache:
+          key: *yarn_cache_key
+      - run:
+          name: Install Js dependencies
+          command: yarn install --no-progress
+      - run:
+          name: Prepare CI
+          command:  yarn run pre:ci
+      - run:
+          name: Build project
+          command: yarn run code:build
+      - save_cache:
+          key: *yarn_cache_key
+          paths:
+            - ~/.yarn
+            - ~/.cache/yarn
+            - node_modules
+      - persist_to_workspace:
+          root: ~/verdaccio
+          paths:
+            - ./*
+
+  test_node12:
+    <<: *defaults
+    <<: *node12_executor
+    steps:
+      - *restore_repo
+      - run:
+          name: Test with Node 6
+          command: yarn run test
+
+  test_node8:
+    <<: *defaults
+    <<: *node8_executor
+    steps:
+      - *restore_repo
+      - run:
+          name: Test with Node 8
+          command: |
+            yarn test
+            yarn test:functional
+
+  test_node9:
+    <<: *defaults
+    <<: *default_executor
+    steps:
+      - *restore_repo
+      - run:
+          name: Test with Node 9
+          command: |
+            yarn test
+            yarn test:functional
+      - save_cache:
+          key: *coverage_key
+          paths:
+            - coverage
+
+  test_node10:
+    <<: *defaults
+    <<: *node10_executor
+    steps:
+      - *restore_repo
+      - run:
+          name: Test with Node 10
+          command: |
+            yarn run test
+            yarn test:functional
+
+  test_e2e:
+    <<: *defaults
+    <<: *node9_browser_executor
+    steps:
+      - *restore_repo
+      - run:
+          name: Test End-to-End
+          command: yarn run test:e2e
+
+  test_size:
+    <<: *defaults
+    <<: *default_executor
+    steps:
+      - *restore_repo
+      - restore_cache:
+          key: *base_config_key
+      - run:
+          name: Test size
+          command: yarn test:size
+
+  coverage:
+    <<: *defaults
+    <<: *default_executor
+    steps:
+      - *restore_repo
+      - restore_cache:
+          key: *coverage_key
+      - run:
+          name: Publish coverage
+          command: yarn run coverage:publish
+      - store_artifacts:
+          path: coverage/clover.xml
+          prefix: tests
+      - store_artifacts:
+          path: coverage
+          prefix: coverage
+      - store_test_results:
+          path: coverage/clover.xml
+
+  publish_package:
+    <<: *defaults
+    <<: *default_executor
+    steps:
+      - *restore_repo
+      - restore_cache:
+          key: *base_config_key
+      - run:
+          name: Publish
+          command: scripts/publish.sh
+
+workflows:
+  version: 2
+  workflow:
+    jobs:
+      - prepare:
+          <<: *ignore_non_dev_branches
+      - test_node12:
+          requires:
+            - prepare
+          <<: *ignore_non_dev_branches
+      - test_node8:
+          requires:
+            - prepare
+          <<: *ignore_non_dev_branches
+      - test_node9:
+          requires:
+            - prepare
+          <<: *ignore_non_dev_branches
+      - test_node10:
+          requires:
+            - prepare
+          <<: *ignore_non_dev_branches
+      - test_e2e:
+          requires:
+            - prepare
+          <<: *ignore_non_dev_branches
+      - test_size:
+          requires:
+            - prepare
+          <<: *ignore_non_dev_branches
+      - coverage:
+          requires:
+            - test_node12
+            - test_node8
+            - test_node9
+            - test_node10
+            - test_e2e
+            - test_size
+          <<: *ignore_non_dev_branches
+      - publish_package:
+          requires:
+            - coverage
+          <<: *execute_on_release
--- a/.dockerignore
+++ b/.dockerignore
@@ -1,6 +1,6 @@
-# we try to avoid adding files to the docker images that change often
+# we try to aoid adding files to the docker images that change often
 # or that are not needed for running the docker image
-# this greatly reduces the amount of times we need to rerun `npm install` when building image locally
+# tis greatly reduces the amount of times we need to rerun `npm install` when building image locally
 # https://codefresh.io/blog/not-ignore-dockerignore/
 # https://docs.docker.com/engine/reference/builder/#dockerignore-file

@@ -10,20 +10,14 @@
 # e.g.
 !.babelrc
 !.eslintrc
-!.prettierrc.json
-!.prettierignore
 !.eslintignore
 !.stylelintrc
+!.flowconfig
+!.jest.config.js
+!.jestEnvironment.js

-# do not copy over node_modules we will run `pnpm install` anyway
+# do not copy over node_modules we will run `npm install` anyway
 node_modules
-website
-jest
-docs
-contrib
-docker-examples
-website
-systemd

 # output from test runs and similar things
 *.log
@@ -34,6 +28,6 @@ coverage/
 jsconfig.json
 *.iml

-# let's not get too recursive ;)
+# let's not get to recursive ;)
 Dockerfile*
 docker-compose*.yaml
--- a/.editorconfig
+++ b/.editorconfig
@@ -7,7 +7,6 @@ end_of_line = lf
 insert_final_newline = true

 # 2 space indentation
-[{.,}*.{ts,tsx,js,jsx,yml,yaml}]
+[{.,}*.{js,jsx,yml,yaml}]
 indent_style = space
 indent_size = 2
-quote_type = single
--- a/.eslintignore
+++ b/.eslintignore
@@ -1,20 +1,7 @@
-**/fixtures/**
-**/mock/store/**
-**/partials/**
-**/types/custom.d.ts
-build/
+node_modules
 coverage/
-node_modules/
-static/
-website/
 wiki/
-dist/
-docs/
-test/functional/store/*
-docker-examples/**/lib/**/*.js
-test/cli/e2e-yarn4/bin/yarn-4.0.0-rc.14.cjs
-yarn.js
-# storybook
-packages/ui-components/storybook-static
-dist.js
-bundle.js
+static/
+flow-typed/
+website/
+build/
--- a/.eslintrc
+++ b/.eslintrc
@@ -0,0 +1,48 @@
+{
+  "plugins": [
+    "react",
+    "flowtype",
+    "jest"
+  ],
+  "extends": [
+    "eslint:recommended",
+    "google",
+    "plugin:react/recommended",
+    "plugin:flowtype/recommended",
+    "plugin:jest/recommended"
+  ],
+  "parser": "babel-eslint",
+  "parserOptions": {
+    "sourceType": "module",
+    "ecmaVersion": 7,
+    "ecmaFeatures": {
+      "impliedStrict": true,
+      "jsx": true
+    }
+  },
+  "env": {
+    "browser": true,
+    "node": true,
+    "es6": true,
+    "jest": true
+  },
+  "globals": {
+    "__APP_VERSION__": true
+  },
+  "rules": {
+    "no-useless-escape": 2,
+    "react/no-deprecated": 1,
+    "react/jsx-no-target-blank": 1,
+    "handle-callback-err": 2,
+    "no-fallthrough": 2,
+    "no-new-require": 2,
+    "max-len": [2, 160],
+    "camelcase": 0,
+    "require-jsdoc": 0,
+    "valid-jsdoc": 0,
+    "prefer-spread": 1,
+    "prefer-rest-params": 1,
+    "linebreak-style": 0,
+    "quote-props":["error", "as-needed"]
+  }
+}
--- a/.eslintrc.js
+++ b/.eslintrc.js
@@ -1,3 +0,0 @@
-module.exports = {
-  extends: ['@verdaccio/eslint-config'],
-};
--- a/.flowconfig
+++ b/.flowconfig
@@ -0,0 +1,25 @@
+[ignore]
+.*/node_modules/.*
+.*/test/**/*.json
+.*/static/.*
+.*/test/unit/partials/.*
+.*/.nyc_output/.*
+.*/coverage/.*
+.*/.vscode/.*
+.*/build/.*
+.*/docs/.*
+.*/scripts/.*
+.*/assets/.*
+.*/bin/.*
+.*/systemd/.*
+.*/website/.*
+.*/wiki/.*
+.*/docs/.*
+.*/tools/.*
+
+[libs]
+node_modules/@verdaccio/types/lib/
+
+[options]
+suppress_comment= \\(.\\|\n\\)*\\$FlowFixMe
+module.ignore_non_literal_requires=true
--- a/.gitattributes
+++ b/.gitattributes
@@ -1,199 +0,0 @@
-## GITATTRIBUTES FOR WEB PROJECTS
-#
-# These settings are for any web project.
-#
-# Details per file setting:
-#   text    These files should be normalized (i.e. convert CRLF to LF).
-#   binary  These files are binary and should be left untouched.
-#
-# Note that binary is a macro for -text -diff.
-######################################################################
-
-# Auto detect
-##   Handle line endings automatically for files detected as
-##   text and leave all files detected as binary untouched.
-##   This will handle all files NOT defined below.
-*                 text=lf
-
-# Source code
-*.bash            text eol=lf
-*.bat             text eol=crlf
-*.cmd             text eol=crlf
-*.coffee          text eol=lf
-*.css             text eol=lf
-*.htm             text diff=html
-*.html            text diff=html
-*.inc             text eol=lf
-*.ini             text eol=lf
-*.js              text eol=lf
-*.json            text eol=lf
-*.jsx             text eol=lf
-*.less            text eol=lf
-*.ls              text eol=lf
-*.map             text -diff
-*.od              text eol=lf
-*.onlydata        text eol=lf
-*.php             text diff=php
-*.pl              text eol=lf
-*.ps1             text eol=crlf
-*.py              text diff=python
-*.rb              text diff=ruby
-*.sass            text eol=lf
-*.scm             text eol=lf
-*.scss            text diff=css
-*.sh              text eol=lf
-*.sql             text eol=lf
-*.styl            text eol=lf
-*.tag             text eol=lf
-*.ts              text eol=lf
-*.tsx             text eol=lf
-*.xml             text eol=lf
-*.xhtml           text diff=html
-
-# Docker
-Dockerfile        text eol=lf
-
-# Documentation
-*.ipynb           text eol=lf
-*.markdown        text eol=lf
-*.md              text eol=lf
-*.mdwn            text eol=lf
-*.mdown           text eol=lf
-*.mkd             text eol=lf
-*.mkdn            text eol=lf
-*.mdtxt           text eol=lf
-*.mdtext          text eol=lf
-*.txt             text eol=lf
-AUTHORS           text eol=lf
-CHANGELOG         text eol=lf
-CHANGES           text eol=lf
-CONTRIBUTING      text eol=lf
-COPYING           text eol=lf
-copyright         text eol=lf
-*COPYRIGHT*       text eol=lf
-INSTALL           text eol=lf
-license           text eol=lf
-LICENSE           text eol=lf
-NEWS              text eol=lf
-readme            text eol=lf
-*README*          text eol=lf
-TODO              text eol=lf
-
-# Templates
-*.dot             text eol=lf
-*.ejs             text eol=lf
-*.haml            text eol=lf
-*.handlebars      text eol=lf
-*.hbs             text eol=lf
-*.hbt             text eol=lf
-*.jade            text eol=lf
-*.latte           text eol=lf
-*.mustache        text eol=lf
-*.njk             text eol=lf
-*.phtml           text eol=lf
-*.tmpl            text eol=lf
-*.tpl             text eol=lf
-*.twig            text eol=lf
-*.vue             text eol=lf
-
-# Configs
-*.cnf             text eol=lf
-*.conf            text eol=lf
-*.config          text eol=lf
-.editorconfig     text eol=lf
-.env              text eol=lf
-.gitattributes    text eol=lf
-.gitconfig        text eol=lf
-.htaccess         text eol=lf
-*.lock            text -diff
-package-lock.json text -diff
-*.toml            text eol=lf
-*.yaml            text eol=lf
-*.yml             text eol=lf
-browserslist      text eol=lf
-Makefile          text eol=lf
-makefile          text eol=lf
-
-# Heroku
-Procfile          text eol=lf
-
-# Graphics
-*.ai              binary
-*.bmp             binary
-*.eps             binary
-*.gif             binary
-*.gifv            binary
-*.ico             binary
-*.jng             binary
-*.jp2             binary
-*.jpg             binary
-*.jpeg            binary
-*.jpx             binary
-*.jxr             binary
-*.pdf             binary
-*.png             binary
-*.psb             binary
-*.psd             binary
-# SVG treated as an asset (binary) by default.
-*.svg             text eol=lf
-# If you want to treat it as binary,
-# use the following line instead.
-# *.svg           binary
-*.svgz            binary
-*.tif             binary
-*.tiff            binary
-*.wbmp            binary
-*.webp            binary
-
-# Audio
-*.kar             binary
-*.m4a             binary
-*.mid             binary
-*.midi            binary
-*.mp3             binary
-*.ogg             binary
-*.ra              binary
-
-# Video
-*.3gpp            binary
-*.3gp             binary
-*.as              binary
-*.asf             binary
-*.asx             binary
-*.fla             binary
-*.flv             binary
-*.m4v             binary
-*.mng             binary
-*.mov             binary
-*.mp4             binary
-*.mpeg            binary
-*.mpg             binary
-*.ogv             binary
-*.swc             binary
-*.swf             binary
-*.webm            binary
-
-# Archives
-*.7z              binary
-*.gz              binary
-*.jar             binary
-*.rar             binary
-*.tar             binary
-*.zip             binary
-
-# Fonts
-*.ttf             binary
-*.eot             binary
-*.otf             binary
-*.woff            binary
-*.woff2           binary
-
-# Executables
-*.exe             binary
-*.pyc             binary
-
-# RC files (like .babelrc or .eslintrc)
-*.*rc             text eol=lf
-
-# Ignore files (like .npmignore or .gitignore)
-*.*ignore         text eol=lf
--- a/.github/FUNDING.yml
+++ b/.github/FUNDING.yml
@@ -1,2 +0,0 @@
-open_collective: verdaccio
-github: verdaccio
--- a/.github/ISSUE_TEMPLATE/Bug_report.md
+++ b/.github/ISSUE_TEMPLATE/Bug_report.md
@@ -0,0 +1,37 @@
+---
+name: Bug report
+about: Create a report to help us improve
+
+---
+
+**Describe the bug**
+A clear and concise description of what the bug is.
+
+**To Reproduce**
+Steps to reproduce the behavior:
+1. Go to '...'
+2. Click on '....'
+3. Scroll down to '....'
+4. See error
+
+**Expected behavior**
+A clear and concise description of what you expected to happen.
+
+**Screenshots**
+If applicable, add screenshots to help explain your problem.
+
+**Docker || Kubernetes (please complete the following information):**
+ - Docker verdaccio tag: [e.g. verdaccio:beta]
+ - Docker commands [e.g. docker pull ...]
+ - Docker Version [e.g. v18.05.0-ce-rc1]
+
+**Configuration File (cat ~/.config/verdaccio/config.yaml)** 
+
+**Debugging output**
+ - `$ NODE_DEBUG=request verdaccio` display request calls (verdaccio <--> uplinks)
+ - `$ DEBUG=express:* verdaccio` enable extreme verdaccio debug mode (verdaccio api)
+ - `$ npm -ddd` prints:
+ - `$ npm config get registry` prints:
+
+**Additional context**
+Add any other context about the problem here.
--- a/.github/ISSUE_TEMPLATE/Feature_request.md
+++ b/.github/ISSUE_TEMPLATE/Feature_request.md
@@ -0,0 +1,17 @@
+---
+name: Feature request
+about: Suggest an idea for this project
+
+---
+
+**Is your feature request related to a problem? Please describe.**
+A clear and concise description of what the problem is. Ex. I'm always frustrated when [...]
+
+**Describe the solution you'd like**
+A clear and concise description of what you want to happen.
+
+**Describe alternatives you've considered**
+A clear and concise description of any alternative solutions or features you've considered.
+
+**Additional context**
+Add any other context or screenshots about the feature request here.
--- a/.github/ISSUE_TEMPLATE/bug_report.md
+++ b/.github/ISSUE_TEMPLATE/bug_report.md
@@ -1,71 +0,0 @@
---
-name: Bug report 🐛
-about: A feature is not working as is expected, I want to report a bug
-labels: 'issue: needs triage'
-title: ''
-assignees: ''
---
-
-<!-- PLEASE READ THIS:  
- - If you are not sure is a bug, OPEN a DISCUSSION, if is a legitimate bug, is easy to create a bug from a discussion.
- - Empty reports won't be considered and eventually be closed by a bot.
- - Include debugging notes will help to fix it faster, HOW TO: https://github.com/verdaccio/verdaccio/wiki/Debugging-Verdaccio 
- - If you remove this template, ticket will be closed immediately.
- - No English perfect is required, use public translators if is need it, we will do our best to help you.
- - Extra bonus: The most complete this report is delivered, the faster you will get a response.
- - Extra bonus: include screenshots, logs (remove sensitive data).
- - If you are willing to fix it, there is a checkbox at the bottom.
-->
-
-**Your Environment**
-  <!-- bug below the version 5.x will be closed, see SECURITY.md for more details -->
- * **verdaccio version**: 5.x.x
- * **node version** [12.x.x, 14.x.x]:
- * **package manager**: [npm@7, pnpm@6, yarn@2]
- * **os**: [mac, windows@10, linux]
- * **platform**: [npm, docker, helm, other]
-
-**Describe the bug**
-
-<!-- A clear and concise description of what the bug is. -->
-
-**To Reproduce**
-
-<!-- IMPORTANT:
- - How to reproduce the issue
- - Steps to reproduce the issue
-
-Be aware, the lack of reproducible steps the issue might cause your ticket to be closed.
-->
-
-**Expected behavior**
-
-<!-- A clear and concise description of what you expected to happen. -->
-
-**Screenshots, server logs, package manager log**
-
-<!-- If applicable, add screenshots to help explain your problem.  -->
-
-**Configuration File (cat ~/.config/verdaccio/config.yaml)**
-
-<!-- Please be careful do not leak any sensitive information, remove tokens -->
-
-**Environment information**
-
-<!-- Please paste the results of running `verdaccio --info` -->
-
-**Debugging output**
-
- `$ NODE_DEBUG=request verdaccio` display request calls (verdaccio <--> uplinks)
- `$ DEBUG=verdaccio* verdaccio` enable extreme verdaccio debug mode (verdaccio api)
- `$ npm -ddd` prints:
- `$ npm config get registry` prints:
-
-**Contribute to Verdaccio**
-
- [ ] I'm willing to fix this bug 🥇 
-
-<!--
-
-IMPORTANT: please do not attach external files, all content should be visible from any device.
-->
--- a/.github/ISSUE_TEMPLATE/config.yml
+++ b/.github/ISSUE_TEMPLATE/config.yml
@@ -1,11 +0,0 @@
-blank_issues_enabled: false
-contact_links:
-  - name: Question 🤷🏻‍♂️
-    url: https://github.com/verdaccio/verdaccio/discussions/new?category=q-a
-    about: 🆕 Open a new Q&A discussion 🙏
-  - name: Security Report 🛡
-    url: https://github.com/verdaccio/verdaccio/security/policy
-    about: I want to report a security vulnerability
-  - name: Chat 🏘
-    url: https://discord.gg/7qWJxBf
-    about: Quick question? Try out Discord chat, you can get faster feedback
--- a/.github/ISSUE_TEMPLATE/feature.md
+++ b/.github/ISSUE_TEMPLATE/feature.md
@@ -1,36 +0,0 @@
---
-name: 'Feature Request 🔮'
-about: You want a feature request.
-title: ''
-labels: 'topic: feature request'
-assignees: ''
---
-
-<!--
-IMPORTANT: If you don't have an action plan, please consider create a DISCUSSION (idea) instead for an open a feature request issue.
-
-https://github.com/verdaccio/verdaccio/discussions/new
-
-Verdaccio is a project addressed for voluntaries, if you appreciate this project consider to donate.
-1$/5$ or custom amount single contribution
-
-or monthly
-1$/month - minimal contribution
-5$/month - nice contribution
-
-https://github.com/sponsors/verdaccio
-
-As reminder, the Open Source must be sustainable.
-->
-
-**Is your feature request related to a problem?**
-Please describe a clear and concise description of what the problem is. E.g. I'm always frustrated when [...]
-
-**Describe the solution you'd like**
-A clear and concise description of what you want to happen.
-
-**Describe alternatives you've considered**
-A clear and concise description of any alternative solutions or features you've considered.
-
-**Additional context**
-Add any other context or screenshots about the feature request here.
--- a/.github/dependabot.yml
+++ b/.github/dependabot.yml
@@ -1,25 +0,0 @@
-# To get started with Dependabot version updates, you'll need to specify which
-# package ecosystems to update and where the package manifests are located.
-# Please see the documentation for all configuration options:
-# https://help.github.com/github/administering-a-repository/configuration-options-for-dependency-updates
-
-version: 2
-updates:
-  # Maintain dependencies for GitHub Actions
-  - package-ecosystem: 'github-actions'
-    directory: '/'
-    schedule:
-      interval: 'weekly'
-
-  # Maintain dependencies for npm
-  - package-ecosystem: 'npm'
-    directory: '/'
-    schedule:
-      interval: 'daily'
-    allow:
-      - dependency-name: '@verdaccio/*'
-      - dependency-name: 'verdaccio-*'
-    assignees:
-      - 'verdacciobot'
-    labels:
-      - 'bot: dependencies'
--- a/.github/disabled/docker-plugins-e2e.yml
+++ b/.github/disabled/docker-plugins-e2e.yml
@@ -1,39 +0,0 @@
-name: E2E Docker Proxy Plugins Test
-
-on:
-  workflow_dispatch:
-  push:
-    branches:
-      - 'master'
-  schedule:
-    # run every sunday
-    - cron: '0 0 * * 0'
-jobs:
-  docker:
-    timeout-minutes: 10
-    runs-on: ubuntu-latest
-
-    steps:
-    - name: Checkout
-      uses: actions/checkout@ac593985615ec2ede58e132d2e21d2b1cbd6127c # v3
-      
-    - name: Start containers
-      run: docker-compose -f "./e2e/docker/docker-build-install-plugin/docker-compose.yaml" up -d --build
-
-    - name: Install node
-      uses: actions/setup-node@64ed1c7eab4cce3362f8c340dee64e5eaeef8f7c # v3
-      with:
-        node-version: 18
-
-    - name: verdaccio cli
-      run: npm install -g verdaccio --registry=http://localhost:4873
-    - name: gastby cli 
-      run:  npm install -g gatsby-cli --registry http://localhost:4873
-    - name: netlify cli 
-      run:  npm install -g netlify-cli --registry http://localhost:4873
-    - name: angular cli 
-      run:  npm install -g @angular/cli --registry http://localhost:4873
-
-    - name: Stop containers
-      if: always()
-      run: docker-compose -f "./e2e/docker/docker-build-install-plugin/docker-compose.yaml" down
--- a/.github/disabled/e2e-angular-cli-workflow.yml
+++ b/.github/disabled/e2e-angular-cli-workflow.yml
@@ -1,131 +0,0 @@
-on:
-  schedule:
-    - cron: '0 3 * * 5'
-  pull_request:
-    branches:
-      - '**'
-
-name: 'E2E Angular CLI with verdaccio'
-jobs:
-  # todo: fix yarn global issue, cannot find ng
-  #  yarn:
-  #    strategy:
-  #      fail-fast: false
-  #      matrix:
-  #        os: [ubuntu-latest, windows-latest]
-  #
-  #    name: '${{ matrix.os }} / yarn:angular example'
-  #    runs-on: ${{ matrix.os }}
-  #
-  #    steps:
-  #      - uses: actions/checkout@v2.3.1
-  #
-  #      - name: 'Use Node.js 10.x'
-  #        uses: actions/setup-node@v2.1.1
-  #        with:
-  #          node-version: 10.x
-  #      - name: Install Dependencies
-  #        run: yarn install --pure-lockfile
-  #      - name: 'Run verdaccio in the background'
-  #        run: |
-  #          nohup node ./scripts/run-verdaccio.js &
-  #      - name: 'Ping to verdaccio'
-  #        run: |
-  #          npm ping --registry http://localhost:4873
-  #      - name: 'Running the integration test'
-  #        run: |
-  #          source scripts/e2e-setup-ci.sh
-  #          yarn init --yes
-  #
-  #          yarn global add @angular/cli
-  #          which nodemon
-  #          ng new verdaccio-angular --interactive=false
-  #
-  #          cd verdaccio-angular
-  #          echo "registry=http://localhost:4873" > ~/.npmrc
-  #          yarn add @angular-devkit/core@next @babel/preset-env @babel/core -D
-  #
-  #          ng build --aot
-  npm:
-    strategy:
-      fail-fast: false
-      matrix:
-        os: [ubuntu-latest, windows-latest]
-
-    name: '${{ matrix.os }} / npm:angular example'
-    runs-on: ${{ matrix.os }}
-
-    steps:
-      - uses: actions/checkout@v2.3.1
-
-      - name: 'Use Node.js 10.x'
-        uses: actions/setup-node@v2.1.1
-        with:
-          node-version: 10.x
-      - name: 'install latest npm'
-        run: npm i -g npm
-      - name: Install Dependencies
-        run: yarn install --pure-lockfile
-      - name: 'Run verdaccio in the background'
-        run: |
-          nohup node ./scripts/run-verdaccio.js &
-      - name: 'Ping to verdaccio'
-        run: |
-          npm ping --registry http://localhost:4873
-      - name: 'Running the integration test'
-        run: |
-          source scripts/e2e-setup-ci.sh
-          echo "registry=http://localhost:4873" > ~/.npmrc
-          npm config set loglevel="http"
-          npm config set fetch-retries="5"
-          npm config set fetch-retry-factor="50"
-          npm config set fetch-retry-mintimeout="20000"
-          npm config set fetch-retry-maxtimeout="80000"
-          npm install -g @angular/cli
-          ng new verdaccio-angular --interactive=false
-
-          cd verdaccio-angular
-          npm install @angular-devkit/core@next @babel/preset-env @babel/core -D
-
-          npm run ng build --aot
-
-#  pnpm throws errors worth to check why
-#  pnpm:
-#    strategy:
-#      fail-fast: false
-#      matrix:
-#        os: [ubuntu-latest, windows-latest]
-#
-#    name: '${{ matrix.os }} / pnpm:angular example'
-#    runs-on: ${{ matrix.os }}
-#
-#    steps:
-#      - uses: actions/checkout@v2.3.1
-#
-#      - name: 'Use Node.js 10.x'
-#        uses: actions/setup-node@v2.1.1
-#        with:
-#          node-version: 10.x
-#      - name: 'install latest pnpm'
-#        run: npm i -g pnpm
-#      - name: Install Dependencies
-#        run: yarn install --pure-lockfile
-#      - name: 'Run verdaccio in the background'
-#        run: |
-#          nohup node ./scripts/run-verdaccio.js &
-#      - name: 'Ping to verdaccio'
-#        run: |
-#          pnpm ping --registry http://localhost:4873
-#      - name: 'Running the integration test'
-#        run: |
-#          source scripts/e2e-setup-ci.sh
-#          pnpm init --force
-#
-#          pnpm install -g @angular/cli
-#          ng new verdaccio-angular --interactive=false
-#
-#          cd verdaccio-angular
-#          echo "registry=http://localhost:4873" > ~/.npmrc
-#          pnpm install @angular-devkit/core@next @babel/preset-env @babel/core -D
-#
-#          pnpm run ng build --aot
--- a/.github/disabled/e2e-gatsbyjs-cli-workflow.yml
+++ b/.github/disabled/e2e-gatsbyjs-cli-workflow.yml
@@ -1,49 +0,0 @@
-on:
-  schedule:
-    - cron: '0 3 * * 5'
-  pull_request:
-    branches:
-      - '**'
-
-name: 'E2E Gatsby.js CLI with verdaccio'
-jobs:
-  npm:
-    strategy:
-      fail-fast: false
-      matrix:
-        os: [ubuntu-latest, windows-latest]
-
-    name: '${{ matrix.os }} / npm:gatsby example'
-    runs-on: ${{ matrix.os }}
-
-    steps:
-      - uses: actions/checkout@v2.3.3
-
-      - name: 'Use Node.js 14.x'
-        uses: actions/setup-node@v2.1.5
-        with:
-          node-version: 14.x
-      - name: 'install latest npm'
-        run: npm i -g npm@latest-6
-      - name: Install Dependencies
-        run: yarn install
-      - name: 'Run verdaccio in the background'
-        run: |
-          nohup node ./scripts/run-verdaccio.js --config ./scripts/e2e-config.yaml &
-      - name: 'Ping to verdaccio'
-        run: |
-          npm ping --registry http://localhost:4873
-      - name: 'Running the integration test'
-        run: |
-          source scripts/e2e-setup-ci.sh
-          echo "registry=http://localhost:4873
-          loglevel="silent"
-          fetch-retries=10
-          fetch-retry-factor=2
-          fetch-retry-mintimeout=10000
-          fetch-retry-maxtimeout=80000" > ~/.npmrc
-          npm config list
-          npm i -g gatsby
-          gatsby new my-gatsby
-          cd my-gatsby
-          npm run build
--- a/.github/disabled/e2e-jest-workflow.yml
+++ b/.github/disabled/e2e-jest-workflow.yml
@@ -1,121 +0,0 @@
-on:
-  schedule:
-    - cron: '0 3 * * 5'
-  pull_request:
-    branches:
-      - '**'
-
-name: 'E2E Jest with verdaccio'
-jobs:
-  yarn:
-    strategy:
-      fail-fast: false
-      matrix:
-        os: [ubuntu-latest, windows-latest]
-
-    name: '${{ matrix.os }} / yarn:jest example'
-    runs-on: ${{ matrix.os }}
-
-    steps:
-      - uses: actions/checkout@v2.3.1
-
-      - name: 'Use Node.js 10.x'
-        uses: actions/setup-node@v2.1.1
-        with:
-          node-version: 10.x
-      - name: Install Dependencies
-        run: yarn install --pure-lockfile
-      - name: 'Run verdaccio in the background'
-        run: |
-          nohup node ./scripts/run-verdaccio.js &
-      - name: 'Ping to verdaccio'
-        run: |
-          npm ping --registry http://localhost:4873
-      - name: 'Running the integration test'
-        run: |
-          source scripts/e2e-setup-ci.sh
-          yarn init --yes
-          yarn add jest --registry http://localhost:4873
-
-          echo "it('should pass', () => { expect(true).toBeTruthy(); });" | tee pass.test.js
-          yarn jest pass.test.js
-
-          yarn add left-pad --registry http://localhost:4873 --verbose
-          echo "const leftPad = require('left-pad'); it('should resolve a module', () => { expect(typeof leftPad).toBe('function');});" | tee module.test.js
-          yarn jest module.test.js
-  npm:
-    strategy:
-      fail-fast: false
-      matrix:
-        os: [ubuntu-latest, windows-latest]
-
-    name: '${{ matrix.os }} / npm:jest example'
-    runs-on: ${{ matrix.os }}
-
-    steps:
-      - uses: actions/checkout@v2.3.1
-
-      - name: 'Use Node.js 10.x'
-        uses: actions/setup-node@v2.1.1
-        with:
-          node-version: 10.x
-      - name: 'install latest npm'
-        run: npm i -g npm
-      - name: Install Dependencies
-        run: yarn install --pure-lockfile
-      - name: 'Run verdaccio in the background'
-        run: |
-          nohup node ./scripts/run-verdaccio.js &
-      - name: 'Ping to verdaccio'
-        run: |
-          npm ping --registry http://localhost:4873
-      - name: 'Running the integration test'
-        run: |
-          source scripts/e2e-setup-ci.sh
-          npm init --force
-          npm install jest --registry http://localhost:4873
-
-          echo "it('should pass', () => { expect(true).toBeTruthy(); });" | tee pass.test.js
-          yarn jest pass.test.js
-
-          yarn add left-pad --registry http://localhost:4873 --verbose
-          echo "const leftPad = require('left-pad'); it('should resolve a module', () => { expect(typeof leftPad).toBe('function');});" | tee module.test.js
-          yarn jest module.test.js
-  pnpm:
-    strategy:
-      fail-fast: false
-      matrix:
-        os: [ubuntu-latest, windows-latest]
-
-    name: '${{ matrix.os }} / pnpm:jest example'
-    runs-on: ${{ matrix.os }}
-
-    steps:
-      - uses: actions/checkout@v2.3.1
-
-      - name: 'Use Node.js 10.x'
-        uses: actions/setup-node@v2.1.1
-        with:
-          node-version: 10.x
-      - name: 'install latest pnpm'
-        run: npm i -g pnpm
-      - name: Install Dependencies
-        run: yarn install --pure-lockfile
-      - name: 'Run verdaccio in the background'
-        run: |
-          nohup node ./scripts/run-verdaccio.js &
-      - name: 'Ping to verdaccio'
-        run: |
-          pnpm ping --registry http://localhost:4873
-      - name: 'Running the integration test'
-        run: |
-          source scripts/e2e-setup-ci.sh
-          pnpm init --force
-          pnpm install jest --registry http://localhost:4873
-
-          echo "it('should pass', () => { expect(true).toBeTruthy(); });" | tee pass.test.js
-          yarn jest pass.test.js
-
-          yarn add left-pad --registry http://localhost:4873 --verbose
-          echo "const leftPad = require('left-pad'); it('should resolve a module', () => { expect(typeof leftPad).toBe('function');});" | tee module.test.js
-          yarn jest module.test.js
--- a/.github/disabled/registry.yml
+++ b/.github/disabled/registry.yml
@@ -1,13 +0,0 @@
-name: Test local registry for js vulnerabilities
-
-on:
-  schedule:
-    - cron: '0 4 * * 4'
-jobs:
-  security:
-    runs-on: ubuntu-latest
-    steps:
-      - name: Test for public javascript library vulnerabilities
-        uses: lirantal/is-website-vulnerable@1.15.10
-        with:
-          scan-url: 'https://registry.verdaccio.org'
--- a/.github/disabled/release-canary.yml
+++ b/.github/disabled/release-canary.yml
@@ -1,35 +0,0 @@
-name: Canary Release to Verdaccio
-
-on:
-  pull_request:
-    paths:
-      - .github/workflows/release-canary.yml
-      - 'packages/**'
-      - 'package.json'
-      - 'lerna.json'
-
-jobs:
-  release:
-    name: Release
-    runs-on: ubuntu-latest
-    steps:
-      - uses: actions/checkout@v1
-      - name: Use Node (latest)
-        uses: actions/setup-node@v1
-        with:
-          node_version: 13
-      - name: Install
-        run: yarn --frozen-lockfile
-      - name: Clean
-        run: yarn clean
-      - name: Lint
-        run: yarn lint
-      - name: Build
-        run: yarn build
-      - name: Test
-        run: yarn test
-      - name: Publish
-        run: |
-          echo "//registry.verdaccio.org/:_authToken=${{ secrets.VERDACCIO_TOKEN }}" > .npmrc
-          git update-index --assume-unchanged .npmrc
-          yarn publish:canary
--- a/.github/issue_template.md
+++ b/.github/issue_template.md
@@ -0,0 +1,32 @@
+<!--
+First of all, please read this section
+
+https://github.com/verdaccio/verdaccio/blob/master/CONTRIBUTING.md#reporting-a-bug
+
+Some advices before file an issue
+  * Give a brief explanation of the issue, suggestion or feature to request.
+  * If the issue is a question, provide as much information you have available.
+  * How can I do in order to reproduce it? What environment?
+  * Define which version the issue happens and whether previous version the behaviour is correct.
+  * Provide your config file is really helpful. Please be aware to hide sensisive data (passwords, server IP, etc) before post.
+-->
+
+#### My reason:
+#### Steps to reproduce:
+#### App Version:
+#### Config file:
+#### Additional information:
+
+ - `$ NODE_DEBUG=request verdaccio` display request calls (verdaccio <--> uplinks)
+ - `$ DEBUG=express:* verdaccio` enable extreme verdaccio debug mode (verdaccio api)
+ - `$ npm -ddd` prints:
+ - `$ npm config get registry` prints:
+ - Verdaccio terminal output
+ - Which (Windows, OS X/macOS, or Linux) environment are you running verdaccio?:
+ - Verdaccio configuration file, eg: `cat ~/.config/verdaccio/config.yaml`
+  - Container Options:
+   - Docker?:
+   - Kubernetes?:
+
+#### Additional verbose log:
+
--- a/.github/lock.yml
+++ b/.github/lock.yml
@@ -1,7 +1,7 @@
 # Configuration for lock-threads - https://github.com/dessant/lock-threads

 # Number of days of inactivity before a closed issue or pull request is locked
-daysUntilLock: 90
+daysUntilLock: 200

 # Issues and pull requests with these labels will not be locked. Set to `[]` to disable
 exemptLabels: []
@@ -11,25 +11,18 @@ lockLabel: false

 # Comment to post before locking. Set to `false` to disable
 lockComment: >
-  🤖This thread has been automatically locked 🔒 since there has not been
-  any recent activity after it was closed. 
-
-  We lock tickets after 90 days with the idea to encourage you to open a ticket with new fresh data 
-  and to provide you better feedback 🤝and better visibility 👀. 
-
-  If you consider, you can attach this ticket 📨 to the new one as a reference for better context.
-
-  Thanks for being a part of the Verdaccio community! 💘
+  This thread has been automatically locked since there has not been
+  any recent activity after it was closed. Please open a new issue for
+  related bugs.

 # Limit to only `issues` or `pulls`
 # only: issues

 # Optionally, specify configuration settings just for `issues` or `pulls`
 issues:
-  exemptLabels:
-    - help-wanted
-  lockLabel: outdated
+ exemptLabels:
+   - help-wanted
+ lockLabel: outdated

 pulls:
-  daysUntilLock: 90
-  lockLabel: outdated
+ daysUntilLock: 90
--- a/.github/main.workflow
+++ b/.github/main.workflow
@@ -0,0 +1,18 @@
+workflow "New workflow" {
+  resolves = [
+    "Docker build health check",
+    "Test Publish Verdaccio",
+  ]
+  on = "push"
+}
+
+action "Docker build health check" {
+  uses = "actions/docker/cli@8cdf801b322af5f369e00d85e9cf3a7122f49108"
+  args = "build ."
+}
+
+action "Test Publish Verdaccio" {
+  uses = "verdaccio/github-actions/publish@v0.1.0"
+  needs = ["Docker build health check"]
+  args = "-d"
+}
--- a/.github/pull_request_template.md
+++ b/.github/pull_request_template.md
@@ -0,0 +1,27 @@
+<!--
+
+Before Pull Request check whether your commits follow this convention
+
+https://github.com/verdaccio/verdaccio/blob/master/CONTRIBUTING.md#git-commit-guidelines
+
+  * If your PR fix an issue don't forget to update the unit test and documentation in /docs folder
+  * If your PR delivers a new feature, please, provide examples and why such feature should be considered.
+  * Document your changes /docs
+  * Add unit test
+  * Follow the commit guidelines in order to get a quick approval
+
+Pick one/multiple type, if none apply please suggest one, we might be included it by default
+
+eg: bug / feature / documentation / unit test / build
+
+-->
+**Type:**
+
+The following has been addressed in the PR:
+
+*  There is a related issue?
+*  Unit or Functional tests are included in the PR
+
+**Description:**
+
+<!-- Resolves #??? -->
--- a/.github/stale.yml
+++ b/.github/stale.yml
@@ -1,26 +1,20 @@
 # Number of days of inactivity before an issue becomes stale
-daysUntilStale: 365
+daysUntilStale: 30
 # Number of days of inactivity before a stale issue is closed
-daysUntilClose: 500
+daysUntilClose: 5
 # Issues with these labels will never be considered stale
 exemptLabels:
-  - dev: high priority
-  - topic: feature request
-  - issue: need verification
-  - issue: bug
-  - dev: discuss
+  - High Priority
+  - Feature Request
+  - need verification
+  - bug
+  - discuss
 # Label to use when marking an issue as stale
-staleLabel: 'issue: wontfix'
+staleLabel: wontfix
 # Comment to post when marking an issue as stale. Set to `false` to disable
 markComment: >
-  Hi pal 👋🏼!
-
-  This issue has gone quiet 😶.
-
-   We get a lot of issues, so we currently close issues after 180 days of inactivity. It’s been at least 90c days since the last update here.
-   If we missed this issue or if you want to keep it open, please reply here. You can also add/suggest the label "discuss" to keep this issue open!
-   As a friendly reminder: the best way to see this issue, or any other, fixed is to open a Pull Request. Check out [https://github.com/verdaccio/contributing](https://github.com/verdaccio/contributing) for more information about opening PRs, triaging issues, and contributing!
-
-   Thanks for being a part of the Verdaccio community! 💘
+  This issue has been automatically marked as stale because it has not had
+  recent activity. It will be closed if no further activity occurs. Thank you
+  for your contributions.
 # Comment to post when closing a stale issue. Set to `false` to disable
 closeComment: false
--- a/.github/workflows/changesets.yml
+++ b/.github/workflows/changesets.yml
@@ -1,69 +0,0 @@
-name: Changesets
-
-on:
-  schedule:
-    - cron: '0 0 * * *'
-
-  push:
-    branches:
-      - master
-
-env:
-  CI: true
-  PNPM_CACHE_FOLDER: .pnpm-store
-
-jobs:
-  # Update package versions from changesets.
-  version:
-    timeout-minutes: 14
-    runs-on: ubuntu-latest
-    if: github.ref == 'refs/heads/master' && github.repository == 'verdaccio/verdaccio'
-    steps:
-      - name: checkout code repository
-        uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3
-        with:
-          fetch-depth: 0
-
-      - name: setup node.js
-        uses: actions/setup-node@5e21ff4d9bc1a8cf6de233a3057d20ec6b3fb69d # tag=v3
-        with:
-          node-version-file: '.nvmrc'
-        env:
-          NODE_AUTH_TOKEN: ${{ secrets.REGISTRY_AUTH_TOKEN }}
-
-      - name: install pnpm
-        run: npm i pnpm@8.9.0 -g
-        env:
-          NODE_AUTH_TOKEN: ${{ secrets.REGISTRY_AUTH_TOKEN }}
-
-      - name: setup pnpm config
-        run: pnpm config set store-dir $PNPM_CACHE_FOLDER
-      - name: setup pnpm config registry
-        run: pnpm config set registry https://registry.npmjs.org
-
-      - name: install dependencies
-        run: pnpm install
-        env:
-          NODE_AUTH_TOKEN: ${{ secrets.REGISTRY_AUTH_TOKEN }}
-      - name: crowdin download
-        env:          
-          CROWDIN_VERDACCIO_API_KEY: ${{ secrets.CROWDIN_VERDACCIO_API_KEY }}
-          CONTEXT: production
-        run: pnpm crowdin:download       
-      - name: build
-        run: pnpm build
-
-      - name: create versions
-        uses: changesets/action@master
-        with:
-          version: pnpm ci:version
-          commit: 'chore: update versions'
-          title: 'chore: update versions'
-          publish: pnpm ci:publish
-          createGithubReleases: false
-          setupGitUser: false
-        env:
-          GITHUB_TOKEN: ${{ secrets.CHANGESET_RELEASE_TOKEN }}
-          NPM_TOKEN: ${{ secrets.REGISTRY_AUTH_TOKEN }}
-          NODE_AUTH_TOKEN: ${{ secrets.REGISTRY_AUTH_TOKEN }}
-          NPM_CONFIG_REGISTRY: https://registry.npmjs.org
--- a/.github/workflows/ci-windows.yml
+++ b/.github/workflows/ci-windows.yml
@@ -1,150 +0,0 @@
-name: CI windows
-
-on:
-  workflow_dispatch:
-  schedule:
-    - cron: '5 0 * * SUN' 
-permissions:
-  contents: read
-jobs:
-  prepare:
-    runs-on: ubuntu-latest
-    name: setup verdaccio
-    services:
-      verdaccio:
-        image: verdaccio/verdaccio:nightly-master
-        ports:
-          - 4873:4873
-        env:
-          NODE_ENV: production          
-    steps:
-    - uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3
-    - name: Node
-      uses: actions/setup-node@5e21ff4d9bc1a8cf6de233a3057d20ec6b3fb69d # tag=v3
-      with:
-        node-version-file: '.nvmrc'
-    - name: Install pnpm
-      run: npm i pnpm@latest-8 -g
-    - name: set store
-      run: |
-        mkdir ~/.pnpm-store
-        pnpm config set store-dir ~/.pnpm-store
-    - name: set store
-      run: |
-        mkdir ~/.pnpm-store
-        pnpm config set store-dir ~/.pnpm-store            
-    - name: Install
-      run: pnpm install --registry http://localhost:4873
-    - name: Cache .pnpm-store
-      uses: actions/cache@88522ab9f39a2ea568f7027eddc7d8d8bc9d59c8 # v3
-      with:
-        path: ~/.pnpm-store
-        key: pnpm-${{ hashFiles('pnpm-lock.yaml') }}
-        restore-keys: |
-          pnpm-
-  lint:
-    runs-on: windows-latest
-    name: Lint
-    needs: prepare
-    steps:
-      - uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3
-      - name: Node
-        uses: actions/setup-node@5e21ff4d9bc1a8cf6de233a3057d20ec6b3fb69d # tag=v3
-        with:
-          node-version-file: '.nvmrc'
-      - name: Install pnpm
-        run: npm i pnpm@latest-8 -g
-      - uses: actions/cache@88522ab9f39a2ea568f7027eddc7d8d8bc9d59c8 # v3
-        with:
-          path: ~/.pnpm-store
-          key: pnpm-${{ hashFiles('pnpm-lock.yaml') }}
-      - name: set store
-        run: |
-          mkdir ~/.pnpm-store
-          pnpm config set store-dir ~/.pnpm-store              
-      - name: Install
-        run: pnpm install --offline --reporter=silence --ignore-scripts
-      - name: Lint
-        run: pnpm lint
-  format:
-    runs-on: windows-latest
-    name: Format
-    needs: prepare
-    steps:
-      - uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3
-      - name: Use Node
-        uses: actions/setup-node@5e21ff4d9bc1a8cf6de233a3057d20ec6b3fb69d # tag=v3
-        with:
-          node-version-file: '.nvmrc'
-      - name: Install pnpm
-        run: npm i pnpm@latest-8 -g
-      - uses: actions/cache@88522ab9f39a2ea568f7027eddc7d8d8bc9d59c8 # v3
-        with:
-          path: ~/.pnpm-store
-          key: pnpm-${{ hashFiles('pnpm-lock.yaml') }}
-      - name: set store
-        run: |
-          mkdir ~/.pnpm-store
-          pnpm config set store-dir ~/.pnpm-store          
-      - name: Install
-        run: pnpm install --offline --reporter=silence --ignore-scripts
-      - name: Lint
-        run: pnpm format:check
-  build:
-    needs: [format, lint]
-    strategy:
-      fail-fast: true
-      matrix:
-        os: [windows-latest]
-        node_version: [18]
-    name: ${{ matrix.os }} / Node ${{ matrix.node_version }}
-    runs-on: ${{ matrix.os }}
-    steps:
-      - uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3
-      - name: Use Node ${{ matrix.node_version }}
-        uses: actions/setup-node@5e21ff4d9bc1a8cf6de233a3057d20ec6b3fb69d # tag=v3
-        with:
-          node-version: ${{ matrix.node_version }}
-      - name: Install pnpm
-        run: npm i pnpm@latest-8 -g
-      - uses: actions/cache@88522ab9f39a2ea568f7027eddc7d8d8bc9d59c8 # v3
-        with:
-          path: ~/.pnpm-store
-          key: pnpm-${{ hashFiles('pnpm-lock.yaml') }}
-      - name: set store
-        run: |
-          mkdir ~/.pnpm-store
-          pnpm config set store-dir ~/.pnpm-store          
-      - name: Install
-        run: pnpm install --offline --reporter=silence --ignore-scripts --registry http://localhost:4873
-      - name: build
-        run: pnpm build
-      - name: Test
-        run: pnpm test
-  ci-e2e-ui:
-    needs: [format, lint]
-    runs-on: windows-latest
-    name: UI Test E2E
-    steps:
-      - uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3
-      - uses: actions/setup-node@5e21ff4d9bc1a8cf6de233a3057d20ec6b3fb69d # tag=v3
-        with:
-          node-version-file: '.nvmrc'
-      - name: Install pnpm
-        run: npm i pnpm@latest-8 -g
-      - uses: actions/cache@88522ab9f39a2ea568f7027eddc7d8d8bc9d59c8 # v3
-        with:
-          path: ~/.pnpm-store
-          key: pnpm-${{ hashFiles('pnpm-lock.yaml') }}
-      - name: set store
-        run: |
-          mkdir ~/.pnpm-store
-          pnpm config set store-dir ~/.pnpm-store              
-      - name: Install
-        run: pnpm install --offline --reporter=silence --registry http://localhost:4873
-      - name: build
-        run: pnpm build
-      - name: Test UI
-        run: pnpm test:e2e:ui
-        # env:
-        #  DEBUG: verdaccio:e2e*
--- a/.github/workflows/ci.yml
+++ b/.github/workflows/ci.yml
@@ -1,166 +0,0 @@
-name: CI
-
-on:
-  push:
-  pull_request:
-    paths:
-      - .changeset/**
-      - .github/workflows/ci.yml
-      - 'packages/**'
-      - 'test/**'
-      - 'docker-examples/**'
-      - 'jest/**'
-      - 'package.json'
-      - 'pnpm-workspace.yaml'
-permissions:
-  contents: read
-
-jobs:
-  prepare:
-    runs-on: ubuntu-latest
-    name: setup verdaccio
-    services:
-      verdaccio:
-        image: verdaccio/verdaccio:5
-        ports:
-          - 4873:4873
-        env:
-          NODE_ENV: production
-    steps:
-      - uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3
-      - name: Node
-        uses: actions/setup-node@5e21ff4d9bc1a8cf6de233a3057d20ec6b3fb69d # tag=v3
-        with:
-          node-version-file: '.nvmrc'
-      - name: Install pnpm
-        run: |
-          corepack enable
-          corepack install
-      - name: set store
-        run: |
-          mkdir ~/.pnpm-store
-          pnpm config set store-dir ~/.pnpm-store
-      - name: Install
-        run: pnpm install  --registry http://localhost:4873
-      - name: Cache .pnpm-store
-        uses: actions/cache@88522ab9f39a2ea568f7027eddc7d8d8bc9d59c8 # v3
-        with:
-          path: ~/.pnpm-store
-          key: pnpm-${{ hashFiles('pnpm-lock.yaml') }}
-          restore-keys: |
-            pnpm-
-  lint:
-    runs-on: ubuntu-latest
-    name: Lint
-    needs: prepare
-    steps:
-      - uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3
-      - name: Node
-        uses: actions/setup-node@5e21ff4d9bc1a8cf6de233a3057d20ec6b3fb69d # tag=v3
-        with:
-          node-version-file: '.nvmrc'
-      - name: Install pnpm
-        run: |
-          corepack enable
-          corepack install
-      - uses: actions/cache@88522ab9f39a2ea568f7027eddc7d8d8bc9d59c8 # v3
-        with:
-          path: ~/.pnpm-store
-          key: pnpm-${{ hashFiles('pnpm-lock.yaml') }}
-      - name: set store
-        run: |
-          pnpm config set store-dir ~/.pnpm-store
-      - name: Install
-        run: pnpm install --ignore-scripts
-      - name: Lint
-        run: pnpm lint
-  format:
-    runs-on: ubuntu-latest
-    name: Format
-    needs: prepare
-    steps:
-      - uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3
-      - name: Use Node
-        uses: actions/setup-node@5e21ff4d9bc1a8cf6de233a3057d20ec6b3fb69d # tag=v3
-        with:
-          node-version-file: '.nvmrc'
-      - name: Install pnpm
-        run: |
-          corepack enable
-          corepack install
-      - uses: actions/cache@88522ab9f39a2ea568f7027eddc7d8d8bc9d59c8 # v3
-        with:
-          path: ~/.pnpm-store
-          key: pnpm-${{ hashFiles('pnpm-lock.yaml') }}
-      - name: set store
-        run: |
-          pnpm config set store-dir ~/.pnpm-store
-      - name: Install
-        run: pnpm install --ignore-scripts
-      - name: Lint
-        run: pnpm format:check
-  test:
-    needs: [format, lint]
-    strategy:
-      fail-fast: true
-      matrix:
-        os: [ubuntu-latest]
-        node_version: [18, 20]
-    name: ${{ matrix.os }} / Node ${{ matrix.node_version }}
-    runs-on: ${{ matrix.os }}
-    steps:
-      - uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3
-      - name: Use Node ${{ matrix.node_version }}
-        uses: actions/setup-node@5e21ff4d9bc1a8cf6de233a3057d20ec6b3fb69d # tag=v3
-        with:
-          node-version: ${{ matrix.node_version }}
-      - name: Install pnpm
-        run: |
-          corepack enable
-          corepack prepare --activate pnpm@8.9.0
-      - uses: actions/cache@88522ab9f39a2ea568f7027eddc7d8d8bc9d59c8 # v3
-        with:
-          path: ~/.pnpm-store
-          key: pnpm-${{ hashFiles('pnpm-lock.yaml') }}
-      - name: set store
-        run: |
-          pnpm config set store-dir ~/.pnpm-store
-      - name: Install
-        run: pnpm install --ignore-scripts --registry http://localhost:4873
-      - name: build
-        run: pnpm build
-      - name: Test
-        run: pnpm test
-  sync-translations:
-    needs: [test]
-    runs-on: ubuntu-latest
-    name: synchronize translations
-    if: (github.event_name == 'push' && github.ref == 'refs/heads/master') || github.event_name == 'workflow_dispatch'
-    steps:
-      - uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3
-      - uses: actions/setup-node@5e21ff4d9bc1a8cf6de233a3057d20ec6b3fb69d # tag=v3
-        with:
-          node-version-file: '.nvmrc'
-      - name: Install pnpm
-        run: |
-          corepack enable
-          corepack install
-      - uses: actions/cache@88522ab9f39a2ea568f7027eddc7d8d8bc9d59c8 # v3
-        with:
-          path: ~/.pnpm-store
-          key: pnpm-${{ hashFiles('pnpm-lock.yaml') }}
-      - name: set store
-        run: |
-          pnpm config set store-dir ~/.pnpm-store
-      - name: Install
-        ## we need scripts, pupetter downloads aditional content
-        run: pnpm install --registry http://localhost:4873
-      - name: build
-        run: pnpm build
-      - name: generate website translations
-        run: pnpm --filter ...@verdaccio/website write-translations
-      - name: sync
-        env:
-          CROWDIN_VERDACCIO_API_KEY: ${{ secrets.CROWDIN_VERDACCIO_API_KEY }}
-          CONTEXT: production
-        run: pnpm crowdin:sync
--- a/.github/workflows/codeql-analysis.yml
+++ b/.github/workflows/codeql-analysis.yml
@@ -1,59 +0,0 @@
-name: 'Code scanning - action'
-
-on:
-  pull_request:
-    paths:
-      - .github/workflows/codeql-analysis.yml
-      - 'packages/**'
-  schedule:
-    - cron: '0 2 * * 4'
-
-permissions:
-  contents: read
-
-jobs:
-  CodeQL-Build:
-    permissions:
-      actions: read  # for github/codeql-action/init to get workflow details
-      contents: read  # for actions/checkout to fetch code
-      security-events: write  # for github/codeql-action/autobuild to send a status report
-    runs-on: ubuntu-latest
-
-    steps:
-      - name: Checkout repository
-        uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3
-        with:
-          # We must fetch at least the immediate parents so that if this is
-          # a pull request then we can checkout the head.
-          fetch-depth: 2
-
-      # If this run was triggered by a pull request event, then checkout
-      # the head of the pull request instead of the merge commit.
-      - run: git checkout HEAD^2
-        if: ${{ github.event_name == 'pull_request' }}
-
-      # Initializes the CodeQL tools for scanning.
-      - name: Initialize CodeQL
-        uses: github/codeql-action/init@74483a38d39275f33fcff5f35b679b5ca4a26a99 # v2
-
-      # Override language selection by uncommenting this and choosing your languages
-      # with:
-      #   languages: go, javascript, csharp, python, cpp, java
-      # Autobuild attempts to build any compiled languages  (C/C++, C#, or Java).
-      # If this step fails, then you should remove it and run the build manually (see below)
-      - name: Autobuild
-        uses: github/codeql-action/autobuild@74483a38d39275f33fcff5f35b679b5ca4a26a99 # v2
-
-      # ℹ️ Command-line programs to run using the OS shell.
-      # 📚 https://git.io/JvXDl
-
-      # ✏️ If the Autobuild fails above, remove it and uncomment the following three lines
-      #    and modify them (or add more) to build your code if your project
-      #    uses a compiled language
-
-      #- run: |
-      #   make bootstrap
-      #   make release
-
-      - name: Perform CodeQL Analysis
-        uses: github/codeql-action/analyze@74483a38d39275f33fcff5f35b679b5ca4a26a99 # v2
--- a/.github/workflows/docker-proxy-apache-e2e.yml
+++ b/.github/workflows/docker-proxy-apache-e2e.yml
@@ -1,38 +0,0 @@
-name: E2E Docker Proxy Apache Test
-
-on:
-  workflow_dispatch:
-  push:
-    branches:
-      - 'master'
-  schedule:
-    # run every sunday
-    - cron: '0 0 * * 0'
-jobs:
-  docker:
-    timeout-minutes: 10
-    runs-on: ubuntu-latest
-
-    steps:
-    - name: Checkout
-      uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3
-      
-    - name: Start containers
-      run: docker-compose -f "./e2e/docker/apache-verdaccio/docker-compose.yaml" up -d --build
-
-    - name: Install node
-      uses: actions/setup-node@5e21ff4d9bc1a8cf6de233a3057d20ec6b3fb69d # v3
-      with:
-        node-version: 18
-    - name: verdaccio cli
-      run: npm install -g verdaccio --registry http://localhost
-    - name: gastby cli 
-      run:  npm install -g gatsby-cli --registry http://localhost
-    - name: netlify cli 
-      run:  npm install -g netlify-cli --registry http://localhost
-    - name: angular cli 
-      run:  npm install -g @angular/cli --registry http://localhost
-
-    - name: Stop containers
-      if: always()
-      run: docker-compose -f "./e2e/docker/apache-verdaccio/docker-compose.yaml" down
--- a/.github/workflows/docker-proxy-nginx-e2e.yml
+++ b/.github/workflows/docker-proxy-nginx-e2e.yml
@@ -1,41 +0,0 @@
-name: E2E Docker Proxy Nginx Test
-
-on:
-  workflow_dispatch:
-  push:
-    branches:
-      - 'master'
-jobs:
-  docker:
-    timeout-minutes: 10
-    runs-on: ubuntu-latest
-
-    steps:
-    - name: Checkout
-      uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3
-      
-    - name: Start containers
-      run: docker-compose -f "./e2e/docker/proxy-nginx/docker-compose.yaml" up -d --build
-
-    - name: Install node
-      uses: actions/setup-node@5e21ff4d9bc1a8cf6de233a3057d20ec6b3fb69d # v3
-      with:
-        node-version: 18
-    - name: npm setup
-      run: |
-        npm config set fetch-retries="5"
-        npm config set fetch-retry-factor="50"
-        npm config set fetch-retry-mintimeout="20000"
-        npm config set fetch-retry-maxtimeout="80000"      
-    - name: verdaccio cli
-      run: npm install -g verdaccio --registry http://localhost
-    - name: gastby cli 
-      run:  npm install -g gatsby-cli --registry http://localhost
-    - name: netlify cli 
-      run:  npm install -g netlify-cli --registry http://localhost
-    - name: angular cli 
-      run:  npm install -g @angular/cli --registry http://localhost
-
-    - name: Stop containers
-      if: always()
-      run: docker-compose -f "./e2e/docker/proxy-nginx/docker-compose.yaml" down
--- a/.github/workflows/docker-publish.yml
+++ b/.github/workflows/docker-publish.yml
@@ -1,55 +0,0 @@
-name: Docker publish to docker.io
-
-on:
-  push:
-    paths:
-      - .github/workflows/docker-publish.yml
-      - .github/workflows/docker-publish.yml
-      - 'packages/**'
-      - 'docker-bin/**'
-      - 'package.json'
-      - 'pnpm-*.yaml'
-      - 'Dockerfile'
-      - '.dockerignore'
-    branches:
-      - 'master'
-    tags:
-      - 'v*'
-
-permissions:
-  contents: read  #  to fetch code (actions/checkout)
-
-jobs:
-  docker:
-    runs-on: ubuntu-latest
-    steps:
-      - uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3
-      - uses: docker/setup-qemu-action@68827325e0b33c7199eb31dd4e31fbe9023e06e3 # tag=v1
-      - uses: docker/setup-buildx-action@v1
-        with:
-          driver-opts: network=host
-      - uses: docker/login-action@v1
-        name: Login Docker Hub
-        with:
-          username: ${{ secrets.DOCKER_USERNAME }}
-          password: ${{ secrets.DOCKER_PASSWORD }}
-      - name: Prepare docker image tags
-        id: docker_meta
-        uses: crazy-max/ghaction-docker-meta@v1
-        with:
-          images: ${{ github.repository }}
-          tag-custom: nightly-master
-          tag-custom-only: ${{ github.ref == 'refs/heads/master' }}
-          tag-semver: |
-            {{version}}
-            {{major}}
-            {{major}}.{{minor}}
-      - name: Build & Push
-        uses: docker/build-push-action@v4
-        with:
-          context: .
-          file: ./Dockerfile
-          platforms: linux/amd64,linux/arm64
-          push: ${{ github.event_name != 'pull_request' }}
-          tags: ${{ steps.docker_meta.outputs.tags }}
-          labels: ${{ steps.docker_meta.outputs.labels }}
--- a/.github/workflows/e2e-ci.yml
+++ b/.github/workflows/e2e-ci.yml
@@ -1,132 +0,0 @@
-name: E2E CLI
-
-on: [pull_request]
-permissions:
-  contents: read
-jobs:
-  prepare:
-    runs-on: ubuntu-latest
-    name: setup e2e verdaccio
-    services:
-      verdaccio:
-        image: verdaccio/verdaccio:nightly-master
-        ports:
-          - 4873:4873
-        env:
-          NODE_ENV: production
-    steps:
-      - uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3
-      - name: Use Node
-        uses: actions/setup-node@5e21ff4d9bc1a8cf6de233a3057d20ec6b3fb69d # tag=v3
-        with:
-          node-version-file: '.nvmrc'
-      - name: Install pnpm
-        run: |
-          corepack enable
-          corepack prepare --activate pnpm@8.9.0
-      - name: set store
-        run: |
-          mkdir ~/.pnpm-store
-          pnpm config set store-dir ~/.pnpm-store
-      - name: Install
-        run: pnpm install --reporter=silence --ignore-scripts --registry http://localhost:4873
-      - name: Cache .pnpm-store
-        uses: actions/cache@88522ab9f39a2ea568f7027eddc7d8d8bc9d59c8 # v3
-        with:
-          path: ~/.pnpm-store
-          key: pnpm-${{ hashFiles('pnpm-lock.yaml') }}-${{ github.run_id }}-${{ github.sha }}
-          restore-keys: |
-            pnpm-
-  build:
-    needs: [prepare]
-    runs-on: ubuntu-latest
-    steps:
-      - uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3
-      - name: Use Node 16
-        uses: actions/setup-node@5e21ff4d9bc1a8cf6de233a3057d20ec6b3fb69d # tag=v3
-        with:
-          node-version-file: '.nvmrc'
-      - name: Install pnpm
-        run: |
-          corepack enable
-          corepack prepare --activate pnpm@8.9.0
-      - uses: actions/cache@88522ab9f39a2ea568f7027eddc7d8d8bc9d59c8 # v3
-        with:
-          path: ~/.pnpm-store
-          key: pnpm-${{ hashFiles('pnpm-lock.yaml') }}-${{ github.run_id }}-${{ github.sha }}
-      - name: set store
-        run: |
-          pnpm config set store-dir ~/.pnpm-store
-      - name: Install
-        run: pnpm recursive install --reporter=silence --registry http://localhost:4873
-      - name: build
-        run: pnpm build
-      - name: Cache packages
-        uses: actions/cache@88522ab9f39a2ea568f7027eddc7d8d8bc9d59c8 # v3
-        id: cache-packages
-        with:
-          path: ./packages/
-          key: pkg-${{ hashFiles('pnpm-lock.yaml') }}-${{ github.run_id }}-${{ github.sha }}
-          restore-keys: |
-            packages-
-      # - name: Cache test
-      #   uses: actions/cache@9b0c1fce7a93df8e3bb8926b0d6e9d89e92f20a7 # tag=v3
-      #   id: cache-test
-      #   with:
-      #     path: ./e2e/
-      #     key: test-${{ hashFiles('pnpm-lock.yaml') }}-${{ github.run_id }}-${{ github.sha }}
-      #     restore-keys: |
-      #       test-
-  e2e-cli:
-    needs: [prepare, build]
-    strategy:
-      fail-fast: false
-      matrix:
-        pkg:
-          [
-            npm6,
-            npm7,
-            npm8,
-            npm9,
-            npm10,
-            pnpm6,
-            pnpm7,
-            pnpm8,
-            yarn1,
-            yarn2,
-            yarn3,
-            yarn4,
-          ]
-        node: [16, 18, 19]
-    name: ${{ matrix.pkg }}/ ubuntu-latest / ${{ matrix.node }}
-    runs-on: ubuntu-latest
-    steps:
-      - uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3
-      - uses: actions/setup-node@5e21ff4d9bc1a8cf6de233a3057d20ec6b3fb69d # tag=v3
-        with:
-          node-version: ${{ matrix.node }}
-      - name: Install pnpm
-        run: |
-          corepack enable
-          corepack prepare --activate pnpm@8.9.0
-      - uses: actions/cache@88522ab9f39a2ea568f7027eddc7d8d8bc9d59c8 # v3
-        with:
-          path: ~/.pnpm-store
-          key: pnpm-${{ hashFiles('pnpm-lock.yaml') }}-${{ github.run_id }}-${{ github.sha }}
-      - name: set store
-        run: |
-          pnpm config set store-dir ~/.pnpm-store
-      - name: Install
-        run: pnpm install --offline --reporter=silence --ignore-scripts --registry http://localhost:4873
-      - uses: actions/cache@88522ab9f39a2ea568f7027eddc7d8d8bc9d59c8 # v3
-        with:
-          path: ./packages/
-          key: pkg-${{ hashFiles('pnpm-lock.yaml') }}-${{ github.run_id }}-${{ github.sha }}
-      # - uses: actions/cache@9b0c1fce7a93df8e3bb8926b0d6e9d89e92f20a7 # tag=v3
-      #   with:
-      #     path: ./e2e/
-      #     key: test-${{ hashFiles('pnpm-lock.yaml') }}-${{ github.run_id }}-${{ github.sha }}
-      - name: build e2e
-        run: pnpm --filter @verdaccio/test-cli-commons build
-      - name: Test CLI
-        run: NODE_ENV=production pnpm test --filter ...@verdaccio/e2e-cli-${{matrix.pkg}}
--- a/.github/workflows/e2e-ui.yml
+++ b/.github/workflows/e2e-ui.yml
@@ -1,36 +0,0 @@
-name: E2E UI
-
-on: [pull_request]
-permissions:
-  contents: read
-jobs:
-  test:
-    runs-on: ubuntu-latest
-    name: UI Test E2E
-    services:
-      verdaccio:
-        image: verdaccio/verdaccio:5
-        ports:
-          - 4873:4873
-        env:
-          NODE_ENV: production
-    steps:
-      - uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3
-      - name: Use Node
-        uses: actions/setup-node@5e21ff4d9bc1a8cf6de233a3057d20ec6b3fb69d # tag=v3
-        with:
-          node-version-file: '.nvmrc'
-      - name: Install pnpm
-        run: |
-          corepack enable
-          corepack install
-      - name: Install
-        run: pnpm install --reporter=silence --registry http://localhost:4873
-      - name: build
-        run: pnpm build
-      - name: Test UI
-        run: pnpm test:e2e:ui
-      - uses: actions/upload-artifact@a8a3f3ad30e3422c9c7b888a15615d19a852ae32 # v3
-        with:
-          name: videos
-          path: /home/runner/work/verdaccio/verdaccio/e2e/ui/cypress/videos
--- a/.github/workflows/static-data.yml
+++ b/.github/workflows/static-data.yml
@@ -1,54 +0,0 @@
---
-name: static data
-
-on:
-  workflow_dispatch:
-  schedule:
-    # twice peer week
-    - cron: '0 0 * * 1,4'
-  # for now, scheduled, we can enable on push master but not make much sense now
-  # push:
-  #   branches:
-  #     - master
-
-permissions:
-  contents: read  #  to fetch code (actions/checkout)
-
-jobs:
-  prepare:
-    name: Run script
-    runs-on: ubuntu-latest
-    steps:
-      - uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3
-        with:
-          persist-credentials: false
-          fetch-depth: 0
-      - uses: actions/setup-node@5e21ff4d9bc1a8cf6de233a3057d20ec6b3fb69d # tag=v3
-        with:
-          node-version: 18.x
-      - name: install pnpm
-        run: sudo npm i pnpm@latest-8 -g
-      - name: install dependencies
-        run: pnpm install
-      - name: Build Translations percentage
-        run: pnpm --filter @verdaccio/crowdin-translations build
-      - name: update contributors
-        run: pnpm run contributors
-        env:
-          TOKEN: ${{ secrets.GITHUB_TOKEN }}
-      - name: update addson data
-        run: pnpm script:addson
-      - name: update translations
-        run: pnpm run translations
-        env:
-          TOKEN: ${{ secrets.CROWDIN_VERDACCIO_API_KEY }}          
-      - name: format
-        run: pnpm format
-      - name: Commit & Push changes
-        uses: actions-js/push@156f2b10c3aa000c44dbe75ea7018f32ae999772 # tag=v1.4
-        with:
-          github_token: ${{ secrets.TOKEN_VERDACCIOBOT_GITHUB }}
-          message: "chore: updated static data"
-          branch: master
-          author_email: verdaccio.npm@gmail.com
-          author_name: verdacciobot
--- a/.github/workflows/ui-components.yml
+++ b/.github/workflows/ui-components.yml
@@ -1,78 +0,0 @@
-name: UI Components
-
-on: 
-  workflow_dispatch:
-  pull_request:
-    paths:
-    - .github/workflows/ui-components.yml
-    - 'packages/ui-components/**'
-    - 'package.json'
-    - 'pnpm-workspace.yaml'
-    - 'pnpm-lock.yaml'
-
-permissions:
-  contents: read  #  to fetch code (actions/checkout)
-
-env:
-  DEBUG: verdaccio*
-
-jobs:
-  deploy:
-    permissions:
-      contents: read  #  to fetch code (actions/checkout)
-      deployments: write
-      pull-requests: write  #  to comment on pull-requests
-
-    runs-on: ubuntu-latest
-    env:
-      NODE_OPTIONS: --max_old_space_size=4096
-    steps:
-      - uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3
-
-      - name: Use Node
-        uses: actions/setup-node@5e21ff4d9bc1a8cf6de233a3057d20ec6b3fb69d # tag=v3
-        with:
-          node-version-file: '.nvmrc'
-
-      - name: Cache pnpm modules
-        uses: actions/cache@88522ab9f39a2ea568f7027eddc7d8d8bc9d59c8 # v3
-        env:
-          cache-name: cache-pnpm-modules
-        with:
-          path: ~/.pnpm-store
-          key: ${{ runner.os }}-build-${{ env.cache-name }}-${{ matrix.node-version }}-${{ hashFiles('**/pnpm-lock.yaml') }}
-          restore-keys: |
-            ${{ runner.os }}-build-${{ env.cache-name }}-${{ matrix.node-version }}-
-
-      - name: Install pnpm
-        run: |
-          corepack enable
-            corepack prepare --activate pnpm@8.9.0
-      - name: Install
-        run: pnpm install  
-      - name: Build storybook
-        run: pnpm ui:storybook:build
-      - name: Copy public content
-        # the msw.js worker is need it at the storybook-static folder in production
-        run: cp -R packages/ui-components/public/* packages/ui-components/storybook-static
-      - name: 🔥 Deploy Production UI Netlify
-        if: (github.event_name == 'push' && github.ref == 'refs/heads/master') || github.event_name == 'workflow_dispatch'
-        uses: verdaccio/action-netlify-deploy@1c086d59169edeec9254672c7de17d2ceac3928f # v2.0.0
-        with:
-          github-token: ${{ secrets.GITHUB_TOKEN }}
-          netlify-auth-token: ${{ secrets.NETLIFY_AUTH_TOKEN }}
-          netlify-site-id: ${{ secrets.NETLIFY_UI_SITE_ID }}
-          build-dir: './packages/ui-components/storybook-static'          
-      - name: 🤖 Deploy Preview UI Components Netlify
-        if: github.repository == 'verdaccio/verdaccio'
-        uses: semoal/action-netlify-deploy@1a53f098745bf78555d11b436f5ee3af87e6b566
-        id: netlify_preview_ui
-        with:
-          draft: true
-          comment-on-pull-request: true
-          github-deployment-is-production: false
-          github-deployment-is-transient: true
-          github-token: ${{ secrets.GITHUB_TOKEN }}
-          netlify-auth-token: ${{ secrets.NETLIFY_AUTH_TOKEN }}
-          netlify-site-id: ${{ secrets.NETLIFY_UI_SITE_ID }}
-          build-dir: './packages/ui-components/storybook-static'
--- a/.github/workflows/website.yml
+++ b/.github/workflows/website.yml
@@ -1,144 +0,0 @@
-name: Verdaccio Website CI
-
-on:
-  workflow_dispatch:
-  pull_request:
-    paths:
-        - 'website/**'
-        - './.github/workflows/website.yml'
-  schedule:
-    - cron: '0 0 * * *' 
-
-permissions:
-  contents: read  #  to fetch code (actions/checkout)
-
-jobs:
-  build:
-    permissions:
-      contents: read  #  to fetch code (actions/checkout)
-      deployments: write
-      pull-requests: write  #  to comment on pull-requests
-
-    runs-on: ubuntu-latest
-    env:
-      NODE_OPTIONS: --max_old_space_size=4096
-    steps:
-      - uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3
-
-      - name: Use Node 16
-        uses: actions/setup-node@5e21ff4d9bc1a8cf6de233a3057d20ec6b3fb69d # tag=v3
-        with:
-          node-version: 16
-
-      - name: Cache pnpm modules
-        uses: actions/cache@88522ab9f39a2ea568f7027eddc7d8d8bc9d59c8 # v3
-        env:
-          cache-name: cache-pnpm-modules
-        with:
-          path: ~/.pnpm-store
-          key: ${{ runner.os }}-build-${{ env.cache-name }}-${{ matrix.node-version }}-${{ hashFiles('**/pnpm-lock.yaml') }}
-          restore-keys: |
-            ${{ runner.os }}-build-${{ env.cache-name }}-${{ matrix.node-version }}-
-
-      - uses: pnpm/action-setup@d882d12c64e032187b2edb46d3a0d003b7a43598 # tag=v2.4.0
-        with:
-          version: latest-8
-          run_install: |
-            - recursive: true
-              args: [--frozen-lockfile]
-      - name: Build 
-        run: pnpm build
-      - name: Build Translations percentage
-        run: pnpm --filter @verdaccio/crowdin-translations build
-      - name: Cache Docusaurus Build
-        uses: actions/cache@88522ab9f39a2ea568f7027eddc7d8d8bc9d59c8 # v3
-        with:
-          path: website/node_modules/.cache/webpack
-          key: cache/webpack-${{github.ref}}-${{ hashFiles('**/pnpm-lock.yaml') }}
-          restore-keys: cache/webpack-${{github.ref}}
-
-      # Will deploy to production on:
-        # 1st: When a push occurs on master branch
-        # 2nd: When we force the worflow dispatch through the UI
-      - name: Build Production
-        if: (github.event_name == 'push' && github.ref == 'refs/heads/master') || github.event_name == 'workflow_dispatch'
-        env:
-          CROWDIN_VERDACCIO_API_KEY: ${{ secrets.CROWDIN_VERDACCIO_API_KEY }}
-          SENTRY_KEY: ${{ secrets.SENTRY_KEY }}
-          CONTEXT: production
-        run: pnpm --filter @verdaccio/website netlify:build:production
-
-      - name: 🔥 Deploy Production Netlify
-        if: (github.event_name == 'push' && github.ref == 'refs/heads/master') || github.event_name == 'workflow_dispatch'
-        uses: semoal/action-netlify-deploy@1a53f098745bf78555d11b436f5ee3af87e6b566
-        with:
-          github-token: ${{ secrets.GITHUB_TOKEN }}
-          netlify-auth-token: ${{ secrets.NETLIFY_AUTH_TOKEN }}
-          netlify-site-id: ${{ secrets.NETLIFY_SITE_ID }}
-          build-dir: './website/build'
-
-      # Will deploy to Preview URL, only when a pull request is open with changes on the website
-      - name: Build Deployment Preview
-        env:
-          CONTEXT: deploy-preview
-        run: pnpm --filter ...@verdaccio/website netlify:build:deployPreview
-
-      - name: 🤖 Deploy Preview Netlify
-        if: github.repository == 'verdaccio/verdaccio'
-        uses: semoal/action-netlify-deploy@1a53f098745bf78555d11b436f5ee3af87e6b566
-        id: netlify_preview
-        with:
-          draft: true
-          comment-on-pull-request: true
-          github-deployment-is-production: false
-          github-deployment-is-transient: true
-          github-token: ${{ secrets.GITHUB_TOKEN }}
-          netlify-auth-token: ${{ secrets.NETLIFY_AUTH_TOKEN }}
-          netlify-site-id: ${{ secrets.NETLIFY_SITE_ID }}
-          build-dir: './website/build'
-
-      - name: Audit preview URL with Lighthouse
-        if: github.repository == 'verdaccio/verdaccio'
-        id: lighthouse_audit
-        uses: treosh/lighthouse-ci-action@03becbfc543944dd6e7534f7ff768abb8a296826 # tag=10.1.0
-        with:
-          urls: |
-            ${{ steps.netlify_preview.outputs.preview-url }}
-          uploadArtifacts: true
-          temporaryPublicStorage: true
-
-      - name: Format lighthouse score
-        id: format_lighthouse_score
-        uses: actions/github-script@d7906e4ad0b1822421a7e6a35d5ca353c962f410 # tag=v6
-        with:
-          github-token: ${{secrets.GITHUB_TOKEN}}
-          script: |
-            const result = ${{ steps.lighthouse_audit.outputs.manifest }}[0].summary
-            const links = ${{ steps.lighthouse_audit.outputs.links }}
-            const formatResult = (res) => Math.round((res * 100))
-            Object.keys(result).forEach(key => result[key] = formatResult(result[key]))
-            const score = res => res >= 90 ? '🟢' : res >= 50 ? '🟠' : '🔴'
-            const comment = [
-                `⚡️ [Lighthouse report](${Object.values(links)[0]}) for the changes in this PR:`,
-                '| Category | Score |',
-                '| --- | --- |',
-                `| ${score(result.performance)} Performance | ${result.performance} |`,
-                `| ${score(result.accessibility)} Accessibility | ${result.accessibility} |`,
-                `| ${score(result['best-practices'])} Best practices | ${result['best-practices']} |`,
-                `| ${score(result.seo)} SEO | ${result.seo} |`,
-                ' ',
-                `*Lighthouse ran on [${Object.keys(links)[0]}](${Object.keys(links)[0]})*`
-            ].join('\n')
-             core.setOutput("comment", comment);
-
-      - name: Add comment to PR
-        if: github.repository == 'verdaccio/verdaccio'
-        id: comment_to_pr
-        uses: marocchino/sticky-pull-request-comment@efaaab3fd41a9c3de579aba759d2552635e590fd # v2
-        with:
-          GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
-          number: ${{ github.event.issue.number }}
-          delete: true
-          header: lighthouse
-          message: |
-            ${{ steps.format_lighthouse_score.outputs.comment }}
--- a/.gitignore
+++ b/.gitignore
@@ -1,55 +1,32 @@
-*.log*
+npm-debug.log
 verdaccio-*.tgz
 .DS_Store
 build/
-dist/
-.eslintcache
-node_modules

-### database
-.verdaccio-db.json
-.sinopia-db.json
-
-### test
+###
+!bin/verdaccio
 test-storage*
+access-storage*
 .verdaccio_test_env
+node_modules
+package-lock.json
+build/
+npm_test-fails-add-tarball*
+yarn-error.log

-# docker examples
-docker-examples/v5/reverse_proxy/nginx/relative_path/storage/*
-docker-examples/v5/**/storage/*

-# jest
-reports/
+# Istanbul
 coverage/
+.nyc*

-## IDE
 .idea/

+
+# React
+bundle.js
+bundle.js.map
+__tests__
+
 # Compiled script
-packages/partials
-tsconfig.tsbuildinfo
+static/*

-## bundle files
-packages/standalone/dist/
-
-## ui
-packages/plugins/ui-theme/static
-/packages/plugins/ui-theme/src/i18n/download_translations/
-!/packages/plugins/ui-theme/src/i18n/crowdin/ui.json
-
-
-# CI Pnpm cache
-.pnpm-store/
-
-#docs 
-website/docs/api/**/*.md
-website/docs/api/**/*.yml
-!website/docs/api/index.md
-packages/**/docs
-
-# cypress
-e2e/ui/cypress/videos/**/*
-e2e/ui/cypress/screenshots/**/*
-
-# storybook
-packages/ui-components/storybook-static
--- a/.husky/pre-commit
+++ b/.husky/pre-commit
@@ -1,5 +0,0 @@
-#!/bin/sh
-. "$(dirname "$0")/_/husky.sh"
-
-#./node_modules/.bin/lint-staged
-npm run husky:pre-commit
--- a/.netlify/netlify-plugin-pnpm/index.js
+++ b/.netlify/netlify-plugin-pnpm/index.js
@@ -1,10 +0,0 @@
-module.exports = {
-  onPreBuild: async ({ utils: { build, run } }) => {
-    try {
-      await run.command("npm install -g pnpm")
-      await run.command("pnpm install --ignore-scripts --frozen-lockfile")
-    } catch (error) {
-      return build.failBuild(error)
-    }
-  }
-}
--- a/.netlify/netlify-plugin-pnpm/manifest.yml
+++ b/.netlify/netlify-plugin-pnpm/manifest.yml
@@ -1,2 +0,0 @@
-name: netlify-plugin-pnpm
-inputs: []
--- a/.npmignore
+++ b/.npmignore
@@ -1,9 +1,13 @@
+
 ## npm
 npm-debug.log
 yarn-error.log
 node_modules
 verdaccio-*.tgz
+
+renovate.json
 docker-compose.yaml
+Dockerfile.rpi
 Dockerfile
 crowdin.yaml
 scripts/
@@ -12,16 +16,20 @@ src/
 .vscode/
 .circleci/
 debug/
-docker-examples/
-reports/
+
+# build ui
+tools/
+
 ## assets and website
 assets/
+website/

 ## docs
 docs/
 wiki/

 ## flow
+flow-typed/
 types/

 # jest
@@ -32,9 +40,6 @@ __mocks__/
 jestEnvironment.js
 test/jest.e2e.config.js
 test/jest.config.functional.js
-jest.config.js
+jest.config.unit.js
+

-# misc
-contrib/
-storage_default_storage/
-docker-bin/
--- a/.npmrc
+++ b/.npmrc
@@ -1,3 +0,0 @@
-always-auth = true
-loglevel=info
-fetch-retries="10"
--- a/.nvmrc
+++ b/.nvmrc
@@ -1 +0,0 @@
-20
--- a/.prettierignore
+++ b/.prettierignore
@@ -1,39 +0,0 @@
-.cache/
-**/corrupted-package/package.json
-**/corrupted.json
-**/invalid.js
-**/invalid.json
-**/pnpm-lock.yaml
-**/verdaccio-corrupted.db.json
-**/wrong.package.json
-crowdin.yaml
-/docs/website
-/website/translated_docs/
-CHANGELOG.md
-CONTRIBUTORS.md
-node_modules/
-**/coverage/**
-**/static/*.js
-**/dist/*.js
-website/.docusaurus/**/*
-website/i18n/**/*
-**/build/*.js
-packages/core/local-storage/_storage/**
-packages/partials/storage_default_storage/
-packages/standalone/dist/bundle.js
-packages/verdaccio/dist/bundle.js
-docker-examples/v5/reverse_proxy/nginx/relative_path/storage/*
-build/
-.vscode/
-.github/
-.netlify/
-packages/**/docs/**
-packages/mock/mock-store/**
-api/**
-packages/core/local-storage/tests/__fixtures__/test-storage/
-packages/plugins/ui-theme/static/
-.verdaccio-db.json
-test/cli/e2e-yarn4/bin/yarn-4.0.0-rc.14.cjs
-yarn.js
-website/docs/api/*
-packages/ui-components/storybook-static/*
--- a/.project
+++ b/.project
@@ -1,22 +0,0 @@
-<?xml version="1.0" encoding="UTF-8"?>
-<projectDescription>
-	<name>verdaccio-dev</name>
-	<comment></comment>
-	<projects>
-	</projects>
-	<buildSpec>
-	</buildSpec>
-	<natures>
-	</natures>
-	<filteredResources>
-		<filter>
-			<id>1630305579538</id>
-			<name></name>
-			<type>26</type>
-			<matcher>
-				<id>org.eclipse.ui.ide.multiFilter</id>
-				<arguments>1.0-name-matches-true-false-node_modules</arguments>
-			</matcher>
-		</filter>
-	</filteredResources>
-</projectDescription>
--- a/.secrets-baseline
+++ b/.secrets-baseline
--- a/.stylelintrc
+++ b/.stylelintrc
@@ -0,0 +1,8 @@
+{
+  "extends": "stylelint-config-recommended-scss",
+  "rules": {
+    "selector-pseudo-class-no-unknown": [true, {
+        "ignorePseudoClasses": ["/global/"]
+    }]
+  }
+}
--- a/.vscode/launch.json
+++ b/.vscode/launch.json
@@ -1,15 +1,79 @@
 {
-  // Use IntelliSense to learn about possible Node.js debug attributes.
-  // Hover to view descriptions of existing attributes.
-  // For more information, visit: https://go.microsoft.com/fwlink/?linkid=830387
-  "version": "0.2.0",
-  "configurations": [
-    {
-      "name": "Attach",
-      "port": 9229,
-      "request": "attach",
-      "skipFiles": ["<node_internals>/**"],
-      "type": "pwa-node"
-    }
-  ]
+	// Use IntelliSense to learn about possible Node.js debug attributes.
+	// Hover to view descriptions of existing attributes.
+	// For more information, visit: https://go.microsoft.com/fwlink/?linkid=830387
+	"version": "0.2.0",
+	"configurations": [
+		{
+			"type": "node",
+			"request": "launch",
+			"name": "CLI Babel Registry",
+			"stopOnEntry": false,
+			"program": "${workspaceFolder}/debug/bootstrap.js",
+			"args": ["-l", "0.0.0.0:4873"],
+			"env": {
+				"BABEL_ENV": "registry"
+			},
+			"preLaunchTask": "npm: build:webui",
+			"console": "integratedTerminal"
+		},
+		{
+			"name": "Unit Tests",
+			"type": "node",
+			"request": "launch",
+			"program": "${workspaceRoot}/node_modules/jest-cli/bin/jest.js",
+			"stopOnEntry": false,
+			"args": [
+				"--debug=true" ],
+			"cwd": "${workspaceRoot}",
+			"preLaunchTask": "pre-test",
+			"runtimeExecutable": null,
+			"runtimeArgs": [
+				"--nolazy"
+			],
+			"env": {
+				"NODE_ENV": "test",
+				"TZ": "UTC"
+			},
+			"console": "integratedTerminal"
+		},
+		{
+			"name": "Functional Tests",
+			"type": "node",
+			"request": "launch",
+			"program": "${workspaceRoot}/node_modules/.bin/jest",
+			"stopOnEntry": false,
+			"args": [
+				"--config",
+				"./test/jest.config.functional.js",
+				"--testPathPattern",
+				"./test/functional/index*",
+				"--debug=false",
+				"--verbose",
+				"--useStderr",
+				"--detectOpenHandles"],
+			"cwd": "${workspaceRoot}",
+			"env": {
+				"BABEL_ENV": "testOldEnv",
+				"VERDACCIO_DEBUG": "true",
+				"VERDACCIO_DEBUG_INJECT": "true",
+				"NODE_DEBUG": "TO_DEBUG_REQUEST_REMOVE_THIS_request"
+			},
+			"preLaunchTask": "pre-test",
+			"console": "integratedTerminal",
+			"runtimeExecutable": null,
+			"runtimeArgs": [
+				"--nolazy"
+			],
+		},
+		{
+			"type": "node",
+			"request": "launch",
+			"name": "Verdaccio Compiled",
+			"preLaunchTask": "npm: code:build",
+			"program": "${workspaceRoot}/bin/verdaccio",
+			"args": ["-l", "0.0.0.0:4873"],
+			"console": "integratedTerminal"
+		}
+	]
 }
--- a/.vscode/settings.json
+++ b/.vscode/settings.json
@@ -1,13 +1,9 @@
 // Place your settings in this file to overwrite default and user settings.
 {
-  "files.exclude": {
-    "**/.nyc_output": true,
-    "**/build": false,
-    "**/coverage": true,
-    ".idea": true,
-    "storage_default_storage": true,
-    ".yarn": true
-  },
-  "editor.formatOnSave": true,
-  "typescript.tsdk": "node_modules/typescript/lib"
-}
+	"files.exclude": {
+		"**/.idea": false,
+		"**/.nyc_output": true,
+		"**/build": true,
+		"**/coverage": true
+	}
+}
--- a/.vscode/tasks.json
+++ b/.vscode/tasks.json
@@ -0,0 +1,24 @@
+{
+	// See https://go.microsoft.com/fwlink/?LinkId=733558
+	// for the documentation about the tasks.json format
+	"version": "2.0.0",
+	"tasks": [
+		{
+			"type": "npm",
+			"script": "build:webui",
+			"problemMatcher": []
+		},
+		{
+			"type": "npm",
+			"script": "code:build",
+			"problemMatcher": []
+		},
+		{
+			"label": "pre-test",
+			"dependsOn": [
+					"npm: code:build",
+					"npm: test:clean"
+			]
+	}
+	]
+}
--- a/.yarnrc
+++ b/.yarnrc
@@ -0,0 +1,2 @@
+save-prefix ""
+registry "http://registry.npmjs.org/"
--- a/141
+++ b/141
@@ -0,0 +1,141 @@
+030 <chocolatey030@gmail.com>
+Aaron Lozier <aaron@potenzainnovations.com>
+Adam Szmyd <szmydadam@gmail.com>
+Alex Kocharin <alex@kocharin.ru>
+Alex Kocharin <rlidwka@kocharin.ru>
+Alex Vernacchia <avernacchia@exacttarget.com>
+Alexander Makarenko <estliberitas@gmail.com>
+Alexander Remishevsky <aremishevsky@chegg.com>
+Alexandre-io <Alexandre-io@users.noreply.github.com>
+Amir Mohsen Abdolrazaghi <amirmohsen@users.noreply.github.com>
+Anmol <anmol@i0157.local>
+Aram Drevekenin <grimsniffer@gmail.com>
+Ayush Sharma <ayush.sharma@innovaccer.com>
+Bart Dubois <dubcio@o2.pl>
+Barthélemy Vessemont <bvessemont@gmail.com>
+Bo Chen <bochen2014@yahoo.com>
+Bogdan Alexandru Marginean <bogdanmarginean@ymail.com>
+Brandon Nicholls <brandon.nicholls@gmail.com>
+Bren Norris <bnorris@enterrasolutions.com>
+Breno <breno@inspr.com>
+Breno Rodrigues <brenorodrigues@me.com>
+Brett Trotter <brett.trotter@webfilings.com>
+Brian Muenzenmeyer <brian.muenzenmeyer@gmail.com>
+Brian Peacock <bpeacock@fastfig.com>
+Carlos Galarza <carloslfu@gmail.com>
+Cedric Darne <cdarne@hibernum.com>
+Chad Killingsworth <chad.killingsworth@banno.com>
+Chomba Ng'ang'a <choeringa@gmail.com>
+Chris Breneman <crispy@cluenet.org>
+Christian Bewernitz <coder@karfau.de>
+Christoph Rohrer <crohrer@users.noreply.github.com>
+Christopher Kelley <000@cranlabs.io>
+Cody Droz <cody-geest@uiowa.edu>
+Conor Hastings <hastings.conorm@gmail.com>
+Corey Jewett <coreyjewett@users.noreply.github.com>
+Daniel Rodríguez Rivero <rdanielo@gmail.com>
+David Broadhurst <david@union25.com>
+David Rubin <davidrub@gmail.com>
+Denis Babineau <denis.babineau@gmail.com>
+Emmanuel Narh <narhe@advisory.com>
+Etienne Tremel <etienne.tremel@container-solutions.com>
+Fabio Poloni <fabio@APP-roved.com>
+Facundo Chambó <fchambo@despegar.com>
+Geoffroy Empain <empaingeo@hotmail.com>
+Guilherme Bernal <dev@lbguilherme.com>
+Gustavo Cruz <gecruz.dev@gmail.com>
+Håkan Canberger <hakan.canberger@thomascook.se>
+Idan Gozlan <idangozlan@gmail.com>
+J. Russell Smyth <jrussell.smyth@gmail.com>
+Jakub Jirutka <jakub@jirutka.cz>
+James Newell <j.newell@nib.com.au>
+Jan <king-jan1999@hotmail.de>
+Jan Vansteenkiste <jan@vstone.eu>
+Jannis Achstetter <jannis.achstetter@schneider-electric.com>
+Jeff Mixon <jeff@altdroid.com>
+Jeremy Moritz <jeremy@jeremymoritz.com>
+Jess <jessachandler@gmail.com>
+John Case <john.case@ge.com>
+John Gozde <johng@pandell.com>
+Jon de la Motte <jondlm@gmail.com>
+Joseph Gentle <me@josephg.com>
+José De Paz <josedepaz@users.noreply.github.com>
+Juan Carlos Picado <juan@encuestame.org>
+Juan Carlos Picado <juanpicado19@gmail.com>
+Juan Picado <juanpicado19@gmail.com>
+Juan Picado @jotadeveloper <juanpicado19@gmail.com>
+Jérôme Tamarelle <jerome@tamarelle.net>
+Kalman Speier <kalman.speier@gmail.com>
+Karl Wiggisser <karl@onebytezero.com>
+Keyvan Fatehi <keyvanfatehi@gmail.com>
+Kody J. Peterson <kodypeterson@users.noreply.github.com>
+Konstantin Baierer <unixprog@gmail.com>
+Lucius Gaitán <lucius@luciusgaitan.com>
+Madison Grubb <madison.grubb@itential.com>
+Manuel de Brito Fontes <aledbf@gmail.com>
+Mark Doeswijk <mark.doeswijk@marviq.com>
+Mathieu Savy <mathieu.savy@gmail.com>
+Meeeeow <Meeeeow@users.noreply.github.com>
+Meeeeow <i@aka.mn>
+Meeeeow <me@async.sh>
+Metaa <metaa@users.noreply.github.com>
+Michael Arnel <michael.arnel@gmail.com>
+Michael Crowe <michael@developrise.com>
+Miguel Mejias <miguelangelmejias@dorna.com>
+Mikhail T <Mikhail.Teterin@Refinery29.com>
+Miroslav Bajtoš <miroslav@strongloop.com>
+Miroslav Pokorný <m.pokorny@gmc.net>
+Nate Ziarek <natez@OSX12-L-NATEZ.local>
+Nicholas Farley <ohcrap524@gmail.com>
+Nick <nick.edelenbos@trimm.nl>
+Nicolas Bazille <oltodo@msn.com>
+Noah Prail <nprail@filiosoft.com>
+Oleg Korobenko <oleg.korobenko@gmail.com>
+Oliver Maskery <omaskery@googlemail.com>
+Patrik Votocek <patrik@votocek.cz>
+Piotr Synowiec <psynowiec@gmail.com>
+Rafael Cesar <rafa.cesar@gmail.com>
+Rafael Pinheiro <moriarty.pinheiro@gmail.com>
+Ramon Henrique Ornelas <ramon.ornela@gmail.com>
+Renovate Bot <bot@renovateapp.com>
+Robert Ewald <r3wald@gmail.com>
+Robert Groh <robert.groh@medesso.de>
+Robin Persson <rprssn@gmail.com>
+RodrigoBalest <r.balest@gmail.com>
+Roger Meier <roger@bufferoverflow.ch>
+Romain Lai-King <romain.laiking@opentrust.com>
+Ryan Graham <r.m.graham@gmail.com>
+Ryan Graham <ryan@codingintrigue.co.uk>
+Sam Day <sday@atlassian.com>
+Tarun Garg <tarun1793@users.noreply.github.com>
+Thomas Cort <thomasc@ssimicro.com>
+Tom McKenzie <tom@chillidonut.com>
+Tom Vincent <git@tlvince.com>
+Trent Earl <trent@trentearl.com>
+Waldemar Reusch <lordvlad@users.noreply.github.com>
+Wilfredo Porta <wporta@gmail.com>
+Willi Pasternak <willi.pasternak@gmail.com>
+Yannick Croissant <yannick.croissant@gmail.com>
+Yannick Galatol <ygalatol@teads.tv>
+Yuuki Tada <yuuki.tada@jp.fujitsu.com>
+cklein <trancesilken@gmail.com>
+danielo515 <rdanielo@gmail.com>
+firegrind <firegrind@gmail.com>
+jharris4 <harris.jb@gmail.com>
+jjaakola <jjaakola@users.noreply.github.com>
+jmwilkinson <j.wilkinson@f5.com>
+jotadeveloper <juanpicado19@gmail.com>
+jotadeveloper <juanpicado@users.noreply.github.com>
+karl wiggisser <karl.wiggisser@dachenstein.at>
+karl wiggisser <karl@dachenstein.at>
+markpeterfejes <fejes.mark@gmail.com>
+maxlaverse <max@laverse.net>
+osher <osher.filter@gmail.com>
+renovate[bot] <renovate[bot]@users.noreply.github.com>
+robi-wan <robi-wan@users.noreply.github.com>
+saheba <saheba@users.noreply.github.com>
+snyk-bot <snyk-bot@snyk.io>
+steve-p-com <github@steve-p.com>
+trent.earl <trent.earl@malauzai.com>
+verdacciobot <35213902+verdacciobot@users.noreply.github.com>
+丸子 <princeb4d@gmail.com>
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
--- a/CODE_OF_CONDUCT.md
+++ b/CODE_OF_CONDUCT.md
@@ -8,19 +8,19 @@ In the interest of fostering an open and welcoming environment, we as contributo

 Examples of behavior that contributes to creating a positive environment include:

- Using welcoming and inclusive language
- Being respectful of differing viewpoints and experiences
- Gracefully accepting constructive criticism
- Focusing on what is best for the community
- Showing empathy towards other community members
+* Using welcoming and inclusive language
+* Being respectful of differing viewpoints and experiences
+* Gracefully accepting constructive criticism
+* Focusing on what is best for the community
+* Showing empathy towards other community members

 Examples of unacceptable behavior by participants include:

- The use of sexualized language or imagery and unwelcome sexual attention or advances
- Trolling, insulting/derogatory comments, and personal or political attacks
- Public or private harassment
- Publishing others' private information, such as a physical or electronic address, without explicit permission
- Other conduct which could reasonably be considered inappropriate in a professional setting
+* The use of sexualized language or imagery and unwelcome sexual attention or advances
+* Trolling, insulting/derogatory comments, and personal or political attacks
+* Public or private harassment
+* Publishing others' private information, such as a physical or electronic address, without explicit permission
+* Other conduct which could reasonably be considered inappropriate in a professional setting

 ## Our Responsibilities

--- a/CONTRIBUTING.md
+++ b/CONTRIBUTING.md
@@ -1,253 +1,98 @@
-# Contributing
+# Contributing to Verdaccio

-> This guidelines refers to the main (`master`) that host the v6.x, if you want to contribute to `5.x` please read the following [link](https://github.com/verdaccio/verdaccio/blob/5.x/CONTRIBUTING.md).
+We are happy that you wish to contribute to this project. For that reason, we
+present you with this guide.

-We're happy that you're considering contributing!
+Additional information is available on the
+[wiki](https://github.com/verdaccio/verdaccio/wiki).

-To help you getting started we've prepared these guidelines for you, any change matter, just do it:
+## Contents
+
+- [Contents](#contents)
+- [How Do I Contribute?](#how-do-i-contribute)
+- [Development](#development)
+- [Reporting Bugs](#reporting-bugs)
+    - [Issue Search](#issue-search)
+    - [Check Website For Solution](#check-website-for-solution)
+    - [Chat](#chat)
+    - [Check If It's Been Fixed](#check-if-its-been-fixed)
+- [Request Features](#request-features)
+    - [Submitting a Pull Request](#submitting-a-pull-request)
+    - [Make Changes and Commit](#make-changes-and-commit)
+- [Update Tests](#update-tests)
+- [Develop Plugins](#develop-plugins)

 ## How Do I Contribute?

-There are many ways to contribute:
+There are different ways to contribute, each with a different level
+of involvement and technical knowledge required, such as:

- [Report a bug](#reporting-bugs)
- [Request a feature you think would be great for Verdaccio](#feature-request)
- [Fixing bugs](https://github.com/verdaccio/verdaccio/issues?q=is%3Aopen+is%3Aissue+label%3A%22issue%3A+bug%22)
- [Test and triage bugs reported by others](https://github.com/verdaccio/verdaccio/issues?q=is%3Aopen+is%3Aissue+label%3Aissue_needs_triage)
- [Working on requested/approved features](https://github.com/verdaccio/verdaccio/issues?q=is%3Aopen+is%3Aissue+label%3A%22topic%3A+feature+request%22+)
- [Improve the codebase (linting, naming, comments, test descriptions, etc...)](https://github.com/verdaccio/verdaccio/discussions/1461)
- Improve code coverage for unit testing for every module, [end to end](https://github.com/verdaccio/verdaccio/tree/master/e2e/cli) or [UI test](https://github.com/verdaccio/verdaccio/tree/master/e2e/ui) (with cypress).
+* [Reporting Bugs](#reporting-bugs)
+* [Request Features](#request-features)
+* [Develop Plugins](#develop-plugins)
+* [Improve Documentation](http://www.verdaccio.org/docs/en/installation.html)

-The Verdaccio project is split into several areas, the first three hosted in the main repository:
+**Please read this document carefully. It will help maintainers and readers
+in solving your issue(s), evaluating your feature request, etc.**

- **Core**: The [core](https://github.com/verdaccio/verdaccio) is the main repository, built with **Node.js**.
- **Website**: we use [**Docusaurus**](https://docusaurus.io/) for the **website** and if you are familiar with this technology, you might become the official webmaster.
- **User Interface**: The [user Interface](https://github.com/verdaccio/ui) is based in **react** and **material-ui** and looking for front-end contributors.
- **Kubernetes and Helm**: Ts the official repository for the [**Helm chart**](https://github.com/verdaccio/charts).
+## Development

-> There are other areas to contribute, like [documentation](https://github.com/verdaccio/verdaccio/tree/master/website/docs) or [translations](#translations}).
+Development guides can be found on the [wiki](https://github.com/verdaccio/verdaccio/wiki):

-## Prepare local setup {#local-setup}
+* [Building the project](https://github.com/verdaccio/verdaccio/wiki/Build-Source-Code)
+* [Running, debugging, and testing](https://github.com/verdaccio/verdaccio/wiki/Running-and-Debugging-tests)

-Verdaccio uses [pnpm](https://pnpm.io) as the package manager for development in this repository.
+## Reporting Bugs

-If you are using pnpm for the first time the [pnpm configuration documentation](https://pnpm.io/configuring) may be useful to avoid any potential problems with the following steps.
-
-**Note**: pnpm uses npm's configuration formats so check that your global `.npmrc` file does not inadvertently disable package locks. In other words, your `.npmrc` file **should not** contain
-
-```
-package-lock=false
-```
-
-This setting would cause the `pnpm install` command to install incorrect versions of package dependencies and the subsequent `pnpm build` step would likely fail.
-
-We use [corepack](https://github.com/nodejs/corepack) to install and use a specific (latest) version of pnpm. Please run the following commands which is use a specific version on Node.js and configure it to use a specific version of pnpm. The version of pnpm is specified in the `package.json` file in `packageManager` field.
-
-```shell
-nvm install
-corepack enable
-corepack install
-```
-
-`pnpm` version will be updated mainly by the maintainers but if you would like to set it to a specific version, you can do so by running the following command:
-
-```shell
-corepack use pnpm@8.9.1
-```
-
-It will update the `package.json` file with the new version of pnpm in the `packageManager` field.
-
-With pnpm installed, the first step is installing all dependencies:
-
-```shell
-pnpm install
-```
-
-### Building the project
-
-Each package is independent, dependencies must be build first, run:
-
-```shell
-pnpm build
-```
-
-### Running test
-
-```shell
-pnpm test
-```
-
-Verdaccio is a mono repository. To run the tests for for a specific package:
-
-```shell
-cd packages/store
-pnpm test
-```
-
-or an specific test in that package:
-
-```shell
-pnpm test test/merge.dist.tags.spec.ts
-```
-
-or a single test unit:
-
-```shell
-pnpm test test/merge.dist.tags.spec.ts -- -t 'simple'
-```
-
-Coverage reporting is enabled by default, but you can turn it off to speed up
-test runs:
-
-```shell
-pnpm test test/merge.dist.tags.spec.ts -- -t 'simple' --coverage=false
-```
-
-You can enable increased [`debug`](https://www.npmjs.com/package/debug) output:
-
-```shell
-DEBUG=verdaccio:* pnpm test
-```
-
-More details in the debug section
-
-### Running and debugging
-
-> Check the debugging guidelines [here](https://github.com/verdaccio/verdaccio/wiki/Debugging-Verdaccio)
-
-We use [`debug`](https://www.npmjs.com/package/debug) to add helpful debugging
-output to the code. Each package has it owns namespace.
-
-#### Developing with local server
-
-To run the application from the source code, ensure the project has been built with `pnpm build`, once this is done, there are few commands that helps to run server:
-
-The command `pnpm start` runs web server on port `8000` and user interface (webpack-server) on port `4873`. This is particularly useful if you want to contribute to the UI, since it runs with hot reload. The request to the server are proxy through webpack proxy support through the port `4873`.
-
-The user interface is split in two packages, the `/packages/plugins/ui-theme` and the `/packages/ui-components`. The `ui-components` package uses _storybook_ in order to develop component, but if you need to reload ui components with `ui-theme` do the following.
-
-Go to `/packages/ui-component` and run `pnpm watch` to enable _babel_ in watch mode, every change on the components will be hot reloaded in combination with the `pnpm start` command.
-
-Any change on the server packages, must be build independently (server do not has hot reload, `pnpm start` should be triggered again).
-
-Any interaction with the server should be done through the port `8000` eg: `npm login --registry http://localhost:8000` .
-
-#### Useful commands
-
- `pnpm debug`: Run the server in debug mode `--inspect`. UI runs too but without hot reload. For automatic break use `pnpm debug:break`.
- `pnpm debug:fastify`: To contribute on the [fastify migration](https://github.com/verdaccio/verdaccio/discussions/2155) this is a temporary command for such purpose.
- `pnpm website`: Build the website, for more commands to run the _website_, run `cd website` and then `pnpm serve`, website will run on port `3000`.
- `pnpm docker`: Build the docker image. Requires `docker` command available in your system.
-
-#### Debugging compiled code {#debugging-compiled-code}
-
-Currently you can only run pre-compiled packages in debug mode. To enable debug
-while running add the `verdaccio` namespace using the `DEBUG` environment
-variable, like this:
-
-```shell
-DEBUG=verdaccio:* node packages/verdaccio/debug/bootstrap.js
-```
-
-You can filter this output to just the packages you're interested in using
-namespaces:
-
-```shell
-DEBUG=verdaccio:plugin:* node packages/verdaccio/debug/bootstrap.js
-```
-
-The debug code is intended to analyze what is happening under the hood and none
-of the output is sent to the logger module.
-
-> [See the full guide how to debug with Verdaccio](https://github.com/verdaccio/verdaccio/wiki/Debugging-Verdaccio)
-
-#### Testing your changes in a local registry {#testing-local-registry}
-
-Once you have perform your changes in the code base, the build and tests passes you can publish a local version:
-
- Ensure you have built all modules by running `pnpm build` (or the one you have modified)
- Run `pnpm local:publish:release` to launch a local registry and publish all packages into it. This command will be alive until server is killed (Control Key + C)
-
-```shell
-pnpm build
-pnpm local:publish:release
-```
-
-The last step consist on install globally the package from the local registry which runs on the default port (4873).
-
-```shell
-npm i -g verdaccio --registry=http://localhost:4873
-verdaccio
-```
-
-If you perform more changes in the source code, repeat this process, there is not _hot reloading_ support.
-
-## Feature Request {#feature-request}
-
-New feature requests are welcome. Analyse whether the idea fits within scope of the project. Adding in context and the use-case will really help!
-
-**Please provide:**
-
- Create a [discussion](https://github.com/verdaccio/verdaccio/discussions/new).
- A detailed description the advantages of your request.
- Whether or not it's compatible with `npm`, `pnpm` and [_yarn classic_
-  ](https://github.com/yarnpkg/yarn) or [_yarn modern_
-  ](https://github.com/yarnpkg/berry).
- A potential implementation or design
- Whatever else is on your mind! 🤓
-
-## Reporting Bugs {#reporting-bugs}
+We welcome clear, detailed bug reports.

 **Bugs are considered features that are not working as described in
 documentation.**

-If you've found a bug in Verdaccio **that isn't a security risk**, please file
-a report in our [issue tracker](https://github.com/verdaccio/verdaccio/issues), if you think a potential vulnerability please read the [security policy](https://verdaccio.org/community/security) .
+If you've found a bug in Verdaccio **that isn't a security risk**, please file 
+a report in our [issue tracker](https://github.com/verdaccio/verdaccio/issues).

-> **NOTE: Verdaccio still does not support all npm commands. Some were not
-> considered important and others have not been requested yet.**
+**NOTE: Verdaccio still does not support all npm commands. Some were not
+considered important and others have not been requested yet.**

-### What's is not considered a bug?
+### Issue Search

- _Third party integrations_: proxies integrations, external plugins
- _Package managers_: If a package manager does not support a specific command
-  or cannot be reproduced with another package manager
- _Features clearly flagged as not supported_
- _Node.js issues installation in any platform_: If you cannot install the
-  global package (this is considered external issue)
- Any ticket which has been flagged as an [external issue
-  ](https://github.com/verdaccio/verdaccio/labels/external-issue)
+Search to see if it has already been reported via
+the issue search.

-If you intend to report a **security** issue, please follow our [Security policy
-guidelines](https://github.com/verdaccio/verdaccio/security/policy).
+Additionally, we have labelled questions for easy follow-up as [questions](https://github.com/verdaccio/verdaccio/labels/question).

-### Issues {#issues}
+If so, up-vote it (using GitHub reactions) or add additional helpful details to
+the existing issue to show that it's affecting multiple people.
+ 
+### Check Website For Solution

-Before reporting a bug please:
+Some of the most popular topics can be found in our website(http://www.verdaccio.org/docs/en/installation.html)

- Search for existing issues to see if it has already been reported
- Look for the **question** label: we have labelled questions for easy follow-up
-  as [questions](https://github.com/verdaccio/verdaccio/labels/question)
+### Chat

-In case any of those match with your search, up-vote it (using GitHub reactions)
-or add additional helpful details to the existing issue to show that it's
-affecting multiple people.
+Questions can be asked via [Discord](http://chat.verdaccio.org/)

-### Contributing support
+**Please use the `#questions#` and `#development` channels.**

-Questions can be asked via [Discord](https://discord.gg/7qWJxBf)
+### Check If It's Been Fixed

-**Please use the `#contribute` channel.**
+Check if the issue has been fixed — try to reproduce it using the latest
+`master` or development branch in the repository.

-## Development Guidelines {#development-guidelines}
+## Request Features

-It's recommended use a UNIX system for local development, Windows dev local support is not being tested and might not work. To ensure a fast code review and merge, please follow the next guidelines:
+New feature requests are welcome. Analyse whether the idea fits within scope of
+the project. Then, detail your request, ensuring context and use case is provided.

-Any contribution gives you the right to be part of this organization as _collaborator_ and your avatar will be automatically added to the [contributors page](https://verdaccio.org/contributors).
+**Please provide:**

-## Pull Request {#pull-request}
+* A detailed description the advantages of your request
+* Whether or not it's compatible with `npm` and `yarn`
+* A potential implementation or design
+* Whatever else you have in your mind 🤓

-### Submitting a Pull Request {#submit-pull-request}
+### Submitting a Pull Request

 The following are the steps you should follow when creating a pull request.
 Subsequent pull requests only need to follow step 3 and beyond.
@@ -269,145 +114,80 @@ information on [rebasing](https://git-scm.com/book/en/v2/Git-Branching-Rebasing)

 ### Make Changes and Commit

-#### Caveats
+#### Before Commit

-Feel free to commit as much times you want in your branch, but keep on mind on
-this repository we `git squash` on merge by default, as we like to maintain a
-clean git history.
+Before committing, **you must ensure there are no linting errors and
+all tests pass.**

-#### Before Push {#before-push}
-
-Before committing or push, **you must ensure there are no linting errors and
-all tests passes**. To do verify, run these commands before creating the PR:
+To do this, run all tests (including e2e):

 ```bash
-pnpm lint
-pnpm format
-pnpm build
-pnpm test
+yarn test:all
 ```

-> note: eslint and formatting are run separately, keep code formatting
-> before push.
+Then, and only then, you can create your pull request.

-All good? Perfect! You should create the pull request.
+#### Commit Guidelines

-#### Commit Guidelines {#commits}
+We follow the [conventional commit messages](https://conventionalcommits.org/)
+convention in order to automate CHANGELOG generation and to automate
+semantic versioning.

-On a pull request, commit messages are not important, please focus on document properly the pull request content. The commit message will be taken from the pull request title, it is recommended to use lowercase format.
+For example:

-### Adding a changeset {#changeset}
+* `feat: A new feature`
+* `fix: A bug fix`

-We use [changesets](https://github.com/atlassian/changesets) in order to
-generate a detailed Changelog as possible.
+A commit of the type feat introduces a new feature to the codebase
+(this correlates with MINOR in semantic versioning).

-Adding a changeset with your Pull Request is essential if you want your
-contribution to get merged (unless it does not affect functionality or
-user-facing content, eg: docs, readme, adding test or typo/lint fixes). To
-create a changeset please run:
-
-```shell
-pnpm changeset
-```
-
-Then select the packages you want to include in your changeset navigating
-through them and press the spacebar to check it, on finish press enter to move
-to the next step.
+e.g.:

 ```
-🦋  Which packages would you like to include? …
-✔ changed packages
- changed packages
-  ✔ @verdaccio/api
-  ✔ @verdaccio/auth
-  ✔ @verdaccio/cli
-  ✔ @verdaccio/config
-  ✔ @verdaccio/commons-api
+feat: xxxxxxxxxx
 ```

-The next question would be if you want a _major bump_. This is not the usual
-scenario, most likely you want a patch, and in that case press enter 2 times
-(to skip minor)
+A commit of the type fix patches a bug in your codebase (this correlates with PATCH in semantic versioning).
+
+e.g.:

 ```
-🦋  Which packages should have a major bump? …
-✔ all packages
-  ✔ @verdaccio/config@5.0.0-alpha.0
+fix: xxxxxxxxxx
 ```

-Once you have the desired bump you need, the CLI will ask for a summary. Here
-you have full freedom on what to include:
+Commits types such as as `docs:`,`style:`,`refactor:`,`perf:`,`test:`
+and `chore:` are valid but have no effect on versioning. **It would be great
+if you use them.**

-```
-🦋  Which packages would you like to include? · @verdaccio/config
-🦋  Which packages should have a major bump? · No items were selected
-🦋  Which packages should have a minor bump? · No items were selected
-🦋  The following packages will be patch bumped:
-🦋  @verdaccio/config@5.0.0-alpha.0
-🦋  Please enter a summary for this change (this will be in the changelogs). Submit empty line to open external editor
-🦋  Summary ›
-```
-
-The last step is to confirm your changeset or abort the operation:
-
-```
-🦋  Is this your desired changeset? (Y/n) · true
-🦋  Changeset added! - you can now commit it
-🦋
-🦋  If you want to modify or expand on the changeset summary, you can find it here
-🦋  info /Users/user/verdaccio.clone/.changeset/light-scissors-smell.md
-```
-
-Once the changeset is added (all will have an unique name) you can freely edit
-using markdown, adding additional information, code snippets or whatever else
-you consider to be relevant.
-
-All that information will be part of the **changelog**. Be concise but
-informative! It's recommended to add your nickname and GitHub link to your
-profile.
+Use `npm run commitmsg` to check your commit message format.

 **PRs that do not follow the commit message guidelines will not be merged.**

-### Update Tests
+## Update Tests

 **Any change in source code must include test updates**.

-If you need help with how testing works, please [refer to the following guide
-](https://github.com/verdaccio/verdaccio/wiki/Running-and-Debugging-tests).
+If you need help with how testing works, please [refer to the following guide](https://github.com/verdaccio/verdaccio/wiki/Running-and-Debugging-tests).

 **If you are introducing new features, you MUST include new tests. PRs for
 features without tests will not be merged.**

-## Translations {#translations}
+Things excluded from tests:
+* Documentation
+* Website
+* Build
+* Deployment
+* Assets
+* Flow types

-All translations are provided by the **[crowdin](http://crowdin.com)** platform,
-[https://translate.verdaccio.org/](https://translate.verdaccio.org/)
-
-If you want to contribute by adding translations, create an account (GitHub could be used as fast alternative), in the platform you can contribute to two areas, the website or improve User Interface translations.
-
-> Languages with less the 40% of translations available are excluded by the build system.
-
-If a language is not listed, ask for it in the [Discord](https://discord.gg/7qWJxBf) channel #contribute channel.
-
-For adding a new **language** on the UI follow these steps:
-
-1. Ensure the **language** has been enabled, must be visible in the `crowdin` platform.
-2. Find in the explorer the file `en.US.json` in the path `packages/plugins/ui-theme/src/i18n/crowdin/ui.json` and complete the translations, **not need to find approval on this**.
-3. Into the project, add a new field into `packages/plugins/ui-theme/src/i18n/crowdin/ui.json` file, in the section `lng`, the new language, eg: `{ lng: {korean:"Korean"}}`. (This file is English based, once the PR has been merged, this string will be available in crowdin for translate to the targeted language).
-4. Add the language, [flag icon](https://www.npmjs.com/package/country-flag-icons), and the menu key fort he new language eg: `menuKey: 'lng.korean'` to the file `packages/plugins/ui-theme/src/i18n/enabledLanguages.ts`.
-5. For local testing, read `packages/plugins/ui-theme/src/i18n/ABOUT_TRANSLATIONS.md`.
-6. Add a `changeset` file, see more info below.
-
-## Develop Plugins {#develop-plugins}
+## Develop Plugins

 Plugins are add-ons that extend the functionality of the application.

 If you want to develop your own plugin:

 1. Check whether there is a legacy Sinopia plugin for the feature that you need
-   via [npmjs](https://www.npmjs.com/search?q=sinopia)
-2. Keep in mind the [life-cycle to load a plugin
-   ](https://verdaccio.org/docs/en/dev-plugins)
-3. You are free to host your plugin in your repository
-4. Provide a detailed description of your plugin to help users understand how to
-   use it
+    via [npmjs](https://www.npmjs.com/search?q=sinopia)
+2. Keep in mind the [life-cycle to load a plugin](https://verdaccio.org/docs/en/dev-plugins)
+3. You are free to host your plugin in your repository or ours (just ask)
+4. Provide a detailed description of your plugin to help users understand it
--- a/81
+++ b/81
@@ -1,58 +1,51 @@
-FROM --platform=${BUILDPLATFORM:-linux/amd64} node:18-alpine as builder
-
-ENV NODE_ENV=development \
-    VERDACCIO_BUILD_REGISTRY=https://registry.npmjs.org
-
-RUN apk --no-cache add openssl ca-certificates wget && \
-    apk --no-cache add g++ gcc libgcc libstdc++ linux-headers make python3 && \
-    wget -q -O /etc/apk/keys/sgerrand.rsa.pub https://alpine-pkgs.sgerrand.com/sgerrand.rsa.pub && \
-    wget -q https://github.com/sgerrand/alpine-pkg-glibc/releases/download/2.35-r0/glibc-2.35-r0.apk && \
-    apk add --force-overwrite glibc-2.35-r0.apk
-
-WORKDIR /opt/verdaccio-build
-COPY . .
-RUN npm -g i pnpm@8.9.0 && \
-    pnpm config set registry $VERDACCIO_BUILD_REGISTRY && \
-    pnpm install --frozen-lockfile --ignore-scripts && \
-    rm -Rf test && \
-    pnpm run build
-# FIXME: need to remove devDependencies from the build    
-# NODE_ENV=production pnpm install --frozen-lockfile --ignore-scripts
-# RUN pnpm install --prod --ignore-scripts
-
-FROM node:18-alpine
+FROM node:10.16.3-alpine
 LABEL maintainer="https://github.com/verdaccio/verdaccio"

-ENV VERDACCIO_APPDIR=/opt/verdaccio \
-    VERDACCIO_USER_NAME=verdaccio \
-    VERDACCIO_USER_UID=10001 \
-    VERDACCIO_PORT=4873 \
-    VERDACCIO_PROTOCOL=http
-ENV PATH=$VERDACCIO_APPDIR/docker-bin:$PATH \
-    HOME=$VERDACCIO_APPDIR
+RUN apk --no-cache add wget openssl && \
+    wget -O /usr/local/bin/dumb-init https://github.com/Yelp/dumb-init/releases/download/v1.2.0/dumb-init_1.2.0_amd64 && \
+    chmod +x /usr/local/bin/dumb-init && \
+    apk del openssl && \
+    apk --no-cache add ca-certificates wget && \
+    apk --no-cache add g++ gcc libgcc libstdc++ linux-headers make python && \
+    wget -q -O /etc/apk/keys/sgerrand.rsa.pub https://alpine-pkgs.sgerrand.com/sgerrand.rsa.pub && \
+    wget https://github.com/sgerrand/alpine-pkg-glibc/releases/download/2.25-r0/glibc-2.25-r0.apk && \
+    apk add glibc-2.25-r0.apk

-WORKDIR $VERDACCIO_APPDIR
+ENV APPDIR /usr/local/app

-RUN apk --no-cache add openssl dumb-init
+WORKDIR $APPDIR
+
+ADD . $APPDIR
+
+ENV NODE_ENV=production \
+    VERDACCIO_BUILD_REGISTRY=https://registry.verdaccio.org
+
+RUN npm config set registry $VERDACCIO_BUILD_REGISTRY && \
+    yarn global add -s flow-bin@0.69.0 && \
+    yarn install --production=false && \
+    yarn lint && \
+    yarn code:docker-build && \
+    yarn build:webui && \
+    yarn cache clean && \
+    yarn install --production=true --pure-lockfile

 RUN mkdir -p /verdaccio/storage /verdaccio/plugins /verdaccio/conf

-COPY --from=builder /opt/verdaccio-build .
+ADD conf/docker.yaml /verdaccio/conf/config.yaml

-RUN ls packages/config/src/conf
-ADD packages/config/src/conf/docker.yaml /verdaccio/conf/config.yaml
+RUN addgroup -S verdaccio && adduser -S -G verdaccio verdaccio && \
+    chown -R verdaccio:verdaccio "$APPDIR" && \
+    chown -R verdaccio:verdaccio /verdaccio

-RUN adduser -u $VERDACCIO_USER_UID -S -D -h $VERDACCIO_APPDIR -g "$VERDACCIO_USER_NAME user" -s /sbin/nologin $VERDACCIO_USER_NAME && \
-    chmod -R +x $VERDACCIO_APPDIR/packages/verdaccio/bin $VERDACCIO_APPDIR/docker-bin && \
-    chown -R $VERDACCIO_USER_UID:root /verdaccio/storage && \
-    chmod -R g=u /verdaccio/storage /etc/passwd
+USER verdaccio

-USER $VERDACCIO_USER_UID
+ENV PORT 4873
+ENV PROTOCOL http

-EXPOSE $VERDACCIO_PORT
+EXPOSE $PORT

-VOLUME /verdaccio/storage
+VOLUME ["/verdaccio"]

-ENTRYPOINT ["uid_entrypoint"]
+ENTRYPOINT ["/usr/local/bin/dumb-init", "--"]

-CMD $VERDACCIO_APPDIR/packages/verdaccio/bin/verdaccio --config /verdaccio/conf/config.yaml --listen $VERDACCIO_PROTOCOL://0.0.0.0:$VERDACCIO_PORT
+CMD $APPDIR/bin/verdaccio --config /verdaccio/conf/config.yaml --listen $PROTOCOL://0.0.0.0:${PORT}
--- a/Dockerfile.rpi
+++ b/Dockerfile.rpi
@@ -0,0 +1,13 @@
+FROM hypriot/rpi-node:6-onbuild
+
+RUN mkdir -p /verdaccio/storage /verdaccio/conf
+
+WORKDIR /verdaccio
+
+ADD conf/docker.yaml /verdaccio/conf/config.yaml
+
+EXPOSE 4873
+
+VOLUME ["/verdaccio/conf", "/verdaccio/storage"]
+
+CMD ["/usr/src/app/bin/verdaccio", "--config", "/verdaccio/conf/config.yaml", "--listen", "0.0.0.0:4873"]
--- a/2
+++ b/2
@@ -1,6 +1,6 @@
 MIT License

-Copyright (c) 2021 Verdaccio contributors
+Copyright (c) 2018 Verdaccio community

 Permission is hereby granted, free of charge, to any person obtaining a copy
 of this software and associated documentation files (the "Software"), to deal
--- a/384
+++ b/384
@@ -0,0 +1,384 @@
+Attribution 4.0 International
+
+=======================================================================
+
+Creative Commons Corporation ("Creative Commons") is not a law firm and
+does not provide legal services or legal advice. Distribution of
+Creative Commons public licenses does not create a lawyer-client or
+other relationship. Creative Commons makes its licenses and related
+information available on an "as-is" basis. Creative Commons gives no
+warranties regarding its licenses, any material licensed under their
+terms and conditions, or any related information. Creative Commons
+disclaims all liability for damages resulting from their use to the
+fullest extent possible.
+
+Using Creative Commons Public Licenses
+
+Creative Commons public licenses provide a standard set of terms and
+conditions that creators and other rights holders may use to share
+original works of authorship and other material subject to copyright
+and certain other rights specified in the public license below. The
+following considerations are for informational purposes only, are not
+exhaustive, and do not form part of our licenses.
+
+     Considerations for licensors: Our public licenses are
+     intended for use by those authorized to give the public
+     permission to use material in ways otherwise restricted by
+     copyright and certain other rights. Our licenses are
+     irrevocable. Licensors should read and understand the terms
+     and conditions of the license they choose before applying it.
+     Licensors should also secure all rights necessary before
+     applying our licenses so that the public can reuse the
+     material as expected. Licensors should clearly mark any
+     material not subject to the license. This includes other CC-
+     licensed material, or material used under an exception or
+     limitation to copyright. More considerations for licensors:
+  wiki.creativecommons.org/Considerations_for_licensors
+
+     Considerations for the public: By using one of our public
+     licenses, a licensor grants the public permission to use the
+     licensed material under specified terms and conditions. If
+     the licensor's permission is not necessary for any reason--for
+     example, because of any applicable exception or limitation to
+     copyright--then that use is not regulated by the license. Our
+     licenses grant only permissions under copyright and certain
+     other rights that a licensor has authority to grant. Use of
+     the licensed material may still be restricted for other
+     reasons, including because others have copyright or other
+     rights in the material. A licensor may make special requests,
+     such as asking that all changes be marked or described.
+     Although not required by our licenses, you are encouraged to
+     respect those requests where reasonable. More_considerations
+     for the public:
+  wiki.creativecommons.org/Considerations_for_licensees
+
+=======================================================================
+
+Creative Commons Attribution 4.0 International Public License
+
+By exercising the Licensed Rights (defined below), You accept and agree
+to be bound by the terms and conditions of this Creative Commons
+Attribution 4.0 International Public License ("Public License"). To the
+extent this Public License may be interpreted as a contract, You are
+granted the Licensed Rights in consideration of Your acceptance of
+these terms and conditions, and the Licensor grants You such rights in
+consideration of benefits the Licensor receives from making the
+Licensed Material available under these terms and conditions.
+
+Section 1 -- Definitions.
+
+  a. Adapted Material means material subject to Copyright and Similar
+     Rights that is derived from or based upon the Licensed Material
+     and in which the Licensed Material is translated, altered,
+     arranged, transformed, or otherwise modified in a manner requiring
+     permission under the Copyright and Similar Rights held by the
+     Licensor. For purposes of this Public License, where the Licensed
+     Material is a musical work, performance, or sound recording,
+     Adapted Material is always produced where the Licensed Material is
+     synched in timed relation with a moving image.
+
+b. Adapter's License means the license You apply to Your Copyright
+   and Similar Rights in Your contributions to Adapted Material in
+   accordance with the terms and conditions of this Public License.
+
+c. Copyright and Similar Rights means copyright and/or similar rights
+   closely related to copyright including, without limitation,
+   performance, broadcast, sound recording, and Sui Generis Database
+   Rights, without regard to how the rights are labeled or
+   categorized. For purposes of this Public License, the rights
+   specified in Section 2(b)(1)-(2) are not Copyright and Similar
+   Rights.
+
+d. Effective Technological Measures means those measures that, in the
+   absence of proper authority, may not be circumvented under laws
+   fulfilling obligations under Article 11 of the WIPO Copyright
+   Treaty adopted on December 20, 1996, and/or similar international
+   agreements.
+
+e. Exceptions and Limitations means fair use, fair dealing, and/or
+   any other exception or limitation to Copyright and Similar Rights
+   that applies to Your use of the Licensed Material.
+
+f. Licensed Material means the artistic or literary work, database,
+   or other material to which the Licensor applied this Public
+   License.
+
+g. Licensed Rights means the rights granted to You subject to the
+   terms and conditions of this Public License, which are limited to
+   all Copyright and Similar Rights that apply to Your use of the
+   Licensed Material and that the Licensor has authority to license.
+
+h. Licensor means the individual(s) or entity(ies) granting rights
+   under this Public License.
+
+i. Share means to provide material to the public by any means or
+   process that requires permission under the Licensed Rights, such
+   as reproduction, public display, public performance, distribution,
+   dissemination, communication, or importation, and to make material
+   available to the public including in ways that members of the
+   public may access the material from a place and at a time
+   individually chosen by them.
+
+j. Sui Generis Database Rights means rights other than copyright
+   resulting from Directive 96/9/EC of the European Parliament and of
+   the Council of 11 March 1996 on the legal protection of databases,
+   as amended and/or succeeded, as well as other essentially
+   equivalent rights anywhere in the world.
+
+k. You means the individual or entity exercising the Licensed Rights
+   under this Public License. Your has a corresponding meaning.
+
+Section 2 -- Scope.
+
+a. License grant.
+
+     1. Subject to the terms and conditions of this Public License,
+        the Licensor hereby grants You a worldwide, royalty-free,
+        non-sublicensable, non-exclusive, irrevocable license to
+        exercise the Licensed Rights in the Licensed Material to:
+
+          a. reproduce and Share the Licensed Material, in whole or
+             in part; and
+
+          b. produce, reproduce, and Share Adapted Material.
+
+     2. Exceptions and Limitations. For the avoidance of doubt, where
+        Exceptions and Limitations apply to Your use, this Public
+        License does not apply, and You do not need to comply with
+        its terms and conditions.
+
+     3. Term. The term of this Public License is specified in Section
+        6(a).
+
+     4. Media and formats; technical modifications allowed. The
+        Licensor authorizes You to exercise the Licensed Rights in
+        all media and formats whether now known or hereafter created,
+        and to make technical modifications necessary to do so. The
+        Licensor waives and/or agrees not to assert any right or
+        authority to forbid You from making technical modifications
+        necessary to exercise the Licensed Rights, including
+        technical modifications necessary to circumvent Effective
+        Technological Measures. For purposes of this Public License,
+        simply making modifications authorized by this Section 2(a)
+        (4) never produces Adapted Material.
+
+     5. Downstream recipients.
+
+          a. Offer from the Licensor -- Licensed Material. Every
+             recipient of the Licensed Material automatically
+             receives an offer from the Licensor to exercise the
+             Licensed Rights under the terms and conditions of this
+             Public License.
+
+          b. No downstream restrictions. You may not offer or impose
+             any additional or different terms or conditions on, or
+             apply any Effective Technological Measures to, the
+             Licensed Material if doing so restricts exercise of the
+             Licensed Rights by any recipient of the Licensed
+             Material.
+
+     6. No endorsement. Nothing in this Public License constitutes or
+        may be construed as permission to assert or imply that You
+        are, or that Your use of the Licensed Material is, connected
+        with, or sponsored, endorsed, or granted official status by,
+        the Licensor or others designated to receive attribution as
+        provided in Section 3(a)(1)(A)(i).
+
+b. Other rights.
+
+     1. Moral rights, such as the right of integrity, are not
+        licensed under this Public License, nor are publicity,
+        privacy, and/or other similar personality rights; however, to
+        the extent possible, the Licensor waives and/or agrees not to
+        assert any such rights held by the Licensor to the limited
+        extent necessary to allow You to exercise the Licensed
+        Rights, but not otherwise.
+
+     2. Patent and trademark rights are not licensed under this
+        Public License.
+
+     3. To the extent possible, the Licensor waives any right to
+        collect royalties from You for the exercise of the Licensed
+        Rights, whether directly or through a collecting society
+        under any voluntary or waivable statutory or compulsory
+        licensing scheme. In all other cases the Licensor expressly
+        reserves any right to collect such royalties.
+
+Section 3 -- License Conditions.
+
+Your exercise of the Licensed Rights is expressly made subject to the
+following conditions.
+
+a. Attribution.
+
+     1. If You Share the Licensed Material (including in modified
+        form), You must:
+
+          a. retain the following if it is supplied by the Licensor
+             with the Licensed Material:
+
+               i. identification of the creator(s) of the Licensed
+                  Material and any others designated to receive
+                  attribution, in any reasonable manner requested by
+                  the Licensor (including by pseudonym if
+                  designated);
+
+              ii. a copyright notice;
+
+             iii. a notice that refers to this Public License;
+
+              iv. a notice that refers to the disclaimer of
+                  warranties;
+
+               v. a URI or hyperlink to the Licensed Material to the
+                  extent reasonably practicable;
+
+          b. indicate if You modified the Licensed Material and
+             retain an indication of any previous modifications; and
+
+          c. indicate the Licensed Material is licensed under this
+             Public License, and include the text of, or the URI or
+             hyperlink to, this Public License.
+
+     2. You may satisfy the conditions in Section 3(a)(1) in any
+        reasonable manner based on the medium, means, and context in
+        which You Share the Licensed Material. For example, it may be
+        reasonable to satisfy the conditions by providing a URI or
+        hyperlink to a resource that includes the required
+        information.
+
+     3. If requested by the Licensor, You must remove any of the
+        information required by Section 3(a)(1)(A) to the extent
+        reasonably practicable.
+
+     4. If You Share Adapted Material You produce, the Adapter's
+        License You apply must not prevent recipients of the Adapted
+        Material from complying with this Public License.
+
+Section 4 -- Sui Generis Database Rights.
+
+Where the Licensed Rights include Sui Generis Database Rights that
+apply to Your use of the Licensed Material:
+
+a. for the avoidance of doubt, Section 2(a)(1) grants You the right
+   to extract, reuse, reproduce, and Share all or a substantial
+   portion of the contents of the database;
+
+b. if You include all or a substantial portion of the database
+   contents in a database in which You have Sui Generis Database
+   Rights, then the database in which You have Sui Generis Database
+   Rights (but not its individual contents) is Adapted Material; and
+
+c. You must comply with the conditions in Section 3(a) if You Share
+   all or a substantial portion of the contents of the database.
+
+For the avoidance of doubt, this Section 4 supplements and does not
+replace Your obligations under this Public License where the Licensed
+Rights include other Copyright and Similar Rights.
+
+Section 5 -- Disclaimer of Warranties and Limitation of Liability.
+
+a. UNLESS OTHERWISE SEPARATELY UNDERTAKEN BY THE LICENSOR, TO THE
+   EXTENT POSSIBLE, THE LICENSOR OFFERS THE LICENSED MATERIAL AS-IS
+   AND AS-AVAILABLE, AND MAKES NO REPRESENTATIONS OR WARRANTIES OF
+   ANY KIND CONCERNING THE LICENSED MATERIAL, WHETHER EXPRESS,
+   IMPLIED, STATUTORY, OR OTHER. THIS INCLUDES, WITHOUT LIMITATION,
+   WARRANTIES OF TITLE, MERCHANTABILITY, FITNESS FOR A PARTICULAR
+   PURPOSE, NON-INFRINGEMENT, ABSENCE OF LATENT OR OTHER DEFECTS,
+   ACCURACY, OR THE PRESENCE OR ABSENCE OF ERRORS, WHETHER OR NOT
+   KNOWN OR DISCOVERABLE. WHERE DISCLAIMERS OF WARRANTIES ARE NOT
+   ALLOWED IN FULL OR IN PART, THIS DISCLAIMER MAY NOT APPLY TO YOU.
+
+b. TO THE EXTENT POSSIBLE, IN NO EVENT WILL THE LICENSOR BE LIABLE
+   TO YOU ON ANY LEGAL THEORY (INCLUDING, WITHOUT LIMITATION,
+   NEGLIGENCE) OR OTHERWISE FOR ANY DIRECT, SPECIAL, INDIRECT,
+   INCIDENTAL, CONSEQUENTIAL, PUNITIVE, EXEMPLARY, OR OTHER LOSSES,
+   COSTS, EXPENSES, OR DAMAGES ARISING OUT OF THIS PUBLIC LICENSE OR
+   USE OF THE LICENSED MATERIAL, EVEN IF THE LICENSOR HAS BEEN
+   ADVISED OF THE POSSIBILITY OF SUCH LOSSES, COSTS, EXPENSES, OR
+   DAMAGES. WHERE A LIMITATION OF LIABILITY IS NOT ALLOWED IN FULL OR
+   IN PART, THIS LIMITATION MAY NOT APPLY TO YOU.
+
+c. The disclaimer of warranties and limitation of liability provided
+   above shall be interpreted in a manner that, to the extent
+   possible, most closely approximates an absolute disclaimer and
+   waiver of all liability.
+
+Section 6 -- Term and Termination.
+
+a. This Public License applies for the term of the Copyright and
+   Similar Rights licensed here. However, if You fail to comply with
+   this Public License, then Your rights under this Public License
+   terminate automatically.
+
+b. Where Your right to use the Licensed Material has terminated under
+   Section 6(a), it reinstates:
+
+     1. automatically as of the date the violation is cured, provided
+        it is cured within 30 days of Your discovery of the
+        violation; or
+
+     2. upon express reinstatement by the Licensor.
+
+   For the avoidance of doubt, this Section 6(b) does not affect any
+   right the Licensor may have to seek remedies for Your violations
+   of this Public License.
+
+c. For the avoidance of doubt, the Licensor may also offer the
+   Licensed Material under separate terms or conditions or stop
+   distributing the Licensed Material at any time; however, doing so
+   will not terminate this Public License.
+
+d. Sections 1, 5, 6, 7, and 8 survive termination of this Public
+   License.
+
+Section 7 -- Other Terms and Conditions.
+
+a. The Licensor shall not be bound by any additional or different
+   terms or conditions communicated by You unless expressly agreed.
+
+b. Any arrangements, understandings, or agreements regarding the
+   Licensed Material not stated herein are separate from and
+   independent of the terms and conditions of this Public License.
+
+Section 8 -- Interpretation.
+
+a. For the avoidance of doubt, this Public License does not, and
+   shall not be interpreted to, reduce, limit, restrict, or impose
+   conditions on any use of the Licensed Material that could lawfully
+   be made without permission under this Public License.
+
+b. To the extent possible, if any provision of this Public License is
+   deemed unenforceable, it shall be automatically reformed to the
+   minimum extent necessary to make it enforceable. If the provision
+   cannot be reformed, it shall be severed from this Public License
+   without affecting the enforceability of the remaining terms and
+   conditions.
+
+c. No term or condition of this Public License will be waived and no
+   failure to comply consented to unless expressly agreed to by the
+   Licensor.
+
+d. Nothing in this Public License constitutes or may be interpreted
+   as a limitation upon, or waiver of, any privileges and immunities
+   that apply to the Licensor or You, including from the legal
+   processes of any jurisdiction or authority.
+
+=======================================================================
+
+Creative Commons is not a party to its public licenses.
+Notwithstanding, Creative Commons may elect to apply one of its public
+licenses to material it publishes and in those instances will be
+considered the "Licensor." Except for the limited purpose of indicating
+that material is shared under a Creative Commons public license or as
+otherwise permitted by the Creative Commons policies published at
+creativecommons.org/policies, Creative Commons does not authorize the
+use of the trademark "Creative Commons" or any other trademark or logo
+of Creative Commons without its prior written consent including,
+without limitation, in connection with any unauthorized modifications
+to any of its public licenses or any other arrangements,
+understandings, or agreements concerning use of licensed material. For
+the avoidance of doubt, this paragraph does not form part of the public
+licenses.
+
+Creative Commons may be contacted at creativecommons.org.
--- a/README.md
+++ b/README.md
@@ -1,19 +1,10 @@
-[![BannerUK](https://cdn.verdaccio.dev/readme/banner-uk.svg)](https://donate.redcrossredcrescent.org/ua/donate/~my-donation?_cv=1)
+![verdaccio logo](https://github.com/verdaccio/verdaccio/raw/master/assets/bitmap/verdaccio%402x.png)

-> Verdaccio stands for **peace**, stop the war, we will be yellow / blue 🇺🇦 until that happens.
+![verdaccio ui](https://github.com/verdaccio/verdaccio/raw/master/assets/gif/verdaccio_big_30.gif?raw=true)

-![verdaccio logo](https://cdn.verdaccio.dev/readme/verdaccio@2x.png)
+[📢 Share your feedback in our Survey "Verdaccio Community Feedback #1"](https://t.co/kqDtknO5d0)

-![verdaccio gif](https://cdn.verdaccio.dev/readme/readme-website.png)
-
-# Version Next (Development branch)
-
-> Looking for Verdaccio 5 version? Check the branch `5.x`
-> The plugins for the `v5.x` that are hosted within this organization are located
-> at the [`verdaccio/monorepo`](https://github.com/verdaccio/monorepo) repository, while for the `next` version
-> are hosted on this project `./packages/plugins`, keep on mind `next` plugins will eventually would be
-> incompatible with `v5.x` versions.
-> Note that contributing guidelines might be different based on the branch.
+# Version 3

 [Verdaccio](https://verdaccio.org/) is a simple, **zero-config-required local private npm registry**.
 No need for an entire database just to get started! Verdaccio comes out of the box with
@@ -23,75 +14,33 @@ For those looking to extend their storage capabilities, Verdaccio
 **supports various community-made plugins to hook into services such as Amazon's s3,
 Google Cloud Storage** or create your own plugin.

+
 [![verdaccio (latest)](https://img.shields.io/npm/v/verdaccio/latest.svg)](https://www.npmjs.com/package/verdaccio)
-[![verdaccio (downloads)](https://img.shields.io/npm/dy/verdaccio.svg)](https://www.npmjs.com/package/verdaccio)
+[![verdaccio (next)](https://img.shields.io/npm/v/verdaccio/next.svg)](https://www.npmjs.com/package/verdaccio)
+[![verdaccio (next)](http://img.shields.io/npm/dy/verdaccio.svg)](https://www.npmjs.com/package/verdaccio)
 [![docker pulls](https://img.shields.io/docker/pulls/verdaccio/verdaccio.svg?maxAge=43200)](https://verdaccio.org/docs/en/docker.html)
 [![backers](https://opencollective.com/verdaccio/tiers/backer/badge.svg?label=Backer&color=brightgreen)](https://opencollective.com/verdaccio)
-[![stackshare](https://img.shields.io/badge/Follow%20on-StackShare-blue.svg?logo=stackshare&style=flat)](https://stackshare.io/verdaccio)

+![circle ci status](https://circleci.com/gh/verdaccio/verdaccio.svg?style=shield&circle-token=:circle-token)
+[![codecov](https://img.shields.io/codecov/c/github/verdaccio/verdaccio/master.svg)](https://codecov.io/gh/verdaccio/verdaccio)
 [![discord](https://img.shields.io/discord/388674437219745793.svg)](http://chat.verdaccio.org/)
-[![MIT](https://img.shields.io/github/license/mashape/apistatus.svg)](https://github.com/verdaccio/verdaccio/blob/master/LICENSE)
+[![node](https://img.shields.io/node/v/verdaccio/latest.svg)](https://www.npmjs.com/package/verdaccio)
+![MIT](https://img.shields.io/github/license/mashape/apistatus.svg)
 [![Crowdin](https://d322cqt584bo4o.cloudfront.net/verdaccio/localized.svg)](https://crowdin.com/project/verdaccio)

+
 [![Twitter followers](https://img.shields.io/twitter/follow/verdaccio_npm.svg?style=social&label=Follow)](https://twitter.com/verdaccio_npm)
 [![Github](https://img.shields.io/github/stars/verdaccio/verdaccio.svg?style=social&label=Stars)](https://github.com/verdaccio/verdaccio/stargazers)
-[![StandWithUkraine](https://raw.githubusercontent.com/vshymanskyy/StandWithUkraine/main/badges/StandWithUkraine.svg)](https://github.com/vshymanskyy/StandWithUkraine/blob/main/docs/README.md)
+

 ## Install

-> Latest Node.js v16 required
-
 Install with npm:

 ```bash
-npm install --location=global verdaccio@next
+npm install --global verdaccio
 ```

-With `yarn`
-
-```bash
-yarn global add verdaccio@next
-```
-
-With `pnpm`
-
-```bash
-pnpm i -g verdaccio@next
-```
-
-or
-
-```bash
-docker pull verdaccio/verdaccio:nightly-master
-```
-
-or with _helm_ [official chart](https://github.com/verdaccio/charts).
-
-```bash
-helm repo add verdaccio https://charts.verdaccio.org
-helm repo update
-helm install verdaccio/verdaccio
-```
-
-Furthermore, you can read the [**Debugging Guidelines**](https://github.com/verdaccio/verdaccio/wiki/Debugging-Verdaccio) and the [**Docker Examples**](https://github.com/verdaccio/verdaccio/tree/master/docker-examples) for more advanced development.
-
-## Plugins
-
-You can develop your own [plugins](https://verdaccio.org/docs/plugins) with the [verdaccio generator](https://github.com/verdaccio/generator-verdaccio-plugin). Installing [Yeoman](https://yeoman.io/) is required.
-
-```
-npm install --location=global yo
-npm install --location=global generator-verdaccio-plugin
-```
-
-Learn more [here](https://verdaccio.org/docs/dev-plugins) how to develop plugins. Share your plugins with the community.
-
-## Donations
-
-Verdaccio is run by **volunteers**; nobody is working full-time on it. If you find this project to be useful and would like to support its development, consider do a long support donation - **and your logo will be on this section of the readme.**
-
-**[Donate](https://github.com/sponsors/verdaccio)** 💵👍🏻 starting from _$1/month_ or just one single contribution.
-
 ## What does Verdaccio do for me?

 ### Use private packages
@@ -100,49 +49,23 @@ If you want to use all benefits of npm package system in your company without se

 ### Cache npmjs.org registry

-If you have more than one server you want to install packages on, you might want to use this to decrease latency
-(presumably "slow" npmjs.org will be connected to only once per package/version) and provide limited failover (if npmjs.org is down, we might still find something useful in the cache) or avoid issues like _[How one developer just broke Node, Babel and thousands of projects in 11 lines of JavaScript](https://www.theregister.co.uk/2016/03/23/npm_left_pad_chaos/)_, _[Many packages suddenly disappeared](https://github.com/npm/registry-issue-archive/issues/255)_ or _[Registry returns 404 for a package I have installed before](https://github.com/npm/registry-issue-archive/issues/329)_.
+   If you have more than one server you want to install packages on, you might want to use this to decrease latency
+   (presumably "slow" npmjs.org will be connected to only once per package/version) and provide limited failover (if npmjs.org is down, we might still find something useful in the cache) or avoid issues like *[How one developer just broke Node, Babel and thousands of projects in 11 lines of JavaScript](https://www.theregister.co.uk/2016/03/23/npm_left_pad_chaos/)*, *[Many packages suddenly disappeared](https://github.com/npm/registry-issue-archive/issues/255)* or *[Registry returns 404 for a package I have installed before](https://github.com/npm/registry-issue-archive/issues/329)*.

 ### Link multiple registries

 If you use multiples registries in your organization and need to fetch packages from multiple sources in one single project you might take advance of the uplinks feature with Verdaccio, chaining multiple registries and fetching from one single endpoint.

+
 ### Override public packages

-If you want to use a modified version of some 3rd-party package (for example, you found a bug, but maintainer didn't accept pull request yet), you can publish your version locally under the same name. See in detail [here](https://verdaccio.org/docs/en/best#override-public-packages).
+If you want to use a modified version of some 3rd-party package (for example, you found a bug, but maintainer didn't accept pull request yet), you can publish your version locally under the same name. See in detail each of these [use cases](https://github.com/verdaccio/verdaccio/tree/master/docs/use-cases.md).

 ### E2E Testing

 Verdaccio has proved to be a lightweight registry that can be
-booted in a couple of seconds, fast enough for any CI. Many open source projects use verdaccio for end to end testing, to mention some examples, **create-react-app**, **mozilla neutrino**, **pnpm**, **storybook**, **babel.js**, **angular-cli** or **docusaurus**. You can read more in [here](https://verdaccio.org/docs/e2e).
+booted in a couple of seconds, fast enough for any CI. Many open source projects use verdaccio for end to end testing, to mention some examples, **create-react-app**, **mozilla neutrino**, **pnpm**, **storybook**, **alfresco** or **eclipse theia**. You can read more in dedicated article to E2E in our blog.

-Furthermore, here few examples how to start:
-
- [e2e-ci-example-gh-actions](https://github.com/juanpicado/e2e-ci-example-gh-actions)
- [verdaccio-end-to-end-tests](https://github.com/juanpicado/verdaccio-end-to-end-tests)
- [verdaccio-fork](https://github.com/juanpicado/verdaccio-fork)
-
-## Watch our Videos
-
-**Node Congress 2022, February 2022, Online Free**
-
-<div>
-   <a href="https://portal.gitnation.org/contents/five-ways-of-taking-advantage-of-verdaccio-your-private-and-proxy-nodejs-registry">
-     <img src="https://cdn.verdaccio.dev/readme/nodejscongress2022.jpg" alt="nodejs" width="200"/>
-  </a>
-</div>
-
-You might want to check out as well our previous talks:
-
- [Using Docker and Verdaccio to make Integration Testing Easy - **Docker All Hands #4 December - 2021**](https://www.youtube.com/watch?v=zRI0skF1f8I)
- [**Juan Picado** – Testing the integrity of React components by publishing in a private registry - React Finland - 2021](https://www.youtube.com/watch?v=bRKZbrlQqLY&t=16s&ab_channel=ReactFinland)
- [BeerJS Cba Meetup No. 53 May 2021 - **Juan Picado**](https://www.youtube.com/watch?v=6SyjqBmS49Y&ab_channel=BeerJSCba)
- [Node.js Dependency Confusion Attacks - April 2021 - **Juan Picado**](https://www.youtube.com/watch?v=qTRADSp3Hpo)
- [**OpenJS World 2020** about \*Cover your Projects with a Multi purpose Lightweight Node.js Registry - **Juan Picado**](https://www.youtube.com/watch?v=oVCjDWeehAQ)
- [ViennaJS Meetup - Introduction to Verdaccio by **Priscila Olivera** and **Juan Picado**](https://www.youtube.com/watch?v=hDIFKzmoCa)
- [Open Source? trivago - Verdaccio (**Ayush** and **Juan Picado**) January 2020](https://www.youtube.com/watch?v=A5CWxJC9xzc)
- [GitNation Open Source Stage - How we have built a Node.js Registry with React - **Juan Picado** December 2019](https://www.youtube.com/watch?v=gpjC8Qp9B9A)
- [Verdaccio - A lightweight Private Proxy Registry built in Node.js | **Juan Picado** at The Destro Dev Show](https://www.youtube.com/watch?reload=9&v=P_hxy7W-IL4&ab_channel=TheDestroDevShow)

 ## Get Started

@@ -155,22 +78,16 @@ verdaccio
 You would need set some npm configuration, this is optional.

 ```bash
-npm set registry http://localhost:4873/
-```
-
-For one-off commands or to avoid setting the registry globally:
-
-```bash
-NPM_CONFIG_REGISTRY=http://localhost:4873 npm i
+$ npm set registry http://localhost:4873/
 ```

 Now you can navigate to [http://localhost:4873/](http://localhost:4873/) where your local packages will be listed and can be searched.

-> Warning: Verdaccio [does not currently support PM2's cluster mode](https://github.com/verdaccio/verdaccio/issues/1301#issuecomment-489302298), running it with cluster mode may cause unknown behavior.
+> Warning: Verdaccio does not currently support PM2's cluster mode, running it with cluster mode may cause unknown behavior.

 ## Publishing

-#### 1. create a user and log in
+#### 1. create an user and log in

 ```bash
 npm adduser --registry http://localhost:4873
@@ -179,7 +96,7 @@ npm adduser --registry http://localhost:4873
 > if you use HTTPS, add an appropriate CA information ("null" means get CA list from OS)

 ```bash
-npm set ca null
+$ npm set ca null
 ```

 #### 2. publish your package
@@ -190,17 +107,23 @@ npm publish --registry http://localhost:4873

 This will prompt you for user credentials which will be saved on the `verdaccio` server.

+
 ## Docker

-Below are the most commonly needed information,
+Below are the most commonly needed informations,
 every aspect of Docker and verdaccio is [documented separately](https://www.verdaccio.org/docs/en/docker.html)

+
 ```
-docker pull verdaccio/verdaccio:nightly-master
+docker pull verdaccio/verdaccio
 ```

 Available as [tags](https://hub.docker.com/r/verdaccio/verdaccio/tags/).

+```
+docker pull verdaccio/verdaccio:3
+```
+
 ### Running verdaccio using Docker

 To run the docker container:
@@ -209,7 +132,7 @@ To run the docker container:
 docker run -it --rm --name verdaccio -p 4873:4873 verdaccio/verdaccio
 ```

-Docker examples are available [in this repository](https://github.com/verdaccio/verdaccio/tree/master/docker-examples).
+Docker examples are available [in this repository](https://github.com/verdaccio/docker-examples).

 ## Compatibility

@@ -224,76 +147,24 @@ Verdaccio aims to support all features of a standard npm client that make sense

 - Unpublishing packages (npm unpublish) - **supported**
 - Tagging (npm tag) - **supported**
- Deprecation (npm deprecate) - **supported**
+- Deprecation (npm deprecate) - not supported - *PR-welcome*

 ### User management

 - Registering new users (npm adduser {newuser}) - **supported**
- Change password (npm profile set password) - **supported**
- Transferring ownership (npm owner add {user} {pkg}) - not supported, _PR-welcome_
- Token (npm token) - **supported**
+- Change password (npm profile set password)  - **supported (4.x)**
+- Transferring ownership (npm owner add {user} {pkg}) - not supported, *PR-welcome*

 ### Miscellany

 - Searching (npm search) - **supported** (cli / browser)
 - Ping (npm ping) - **supported**
- Starring (npm star, npm unstar, npm stars) - **supported**
+- Starring (npm star, npm unstar) - not supported, *PR-welcome*

 ### Security

- npm/yarn audit - **supported**
+- npm audit - **supported**

-## Report a vulnerability
-
-If you want to report a security vulnerability, please follow the steps which we have defined for you in our [security policy](https://github.com/verdaccio/verdaccio/security/policy).
-
-## Special Thanks
-
-Thanks to the following companies to help us to achieve our goals providing free open source licenses. Every company provides enough resources to move this project forward.
-
-| Company      | Logo                                                                                                                            | License                                                                           |
-| ------------ | ------------------------------------------------------------------------------------------------------------------------------- | --------------------------------------------------------------------------------- |
-| JetBrains    | [![jetbrain](assets/thanks/jetbrains/logo.png)](https://www.jetbrains.com/)                                                     | JetBrains provides licenses for products for active maintainers, renewable yearly |
-| Crowdin      | [![crowdin](assets/thanks/crowdin/logo.png)](https://crowdin.com/)                                                              | Crowdin provides platform for translations                                        |
-| BrowserStack | [![browserstack](https://cdn.verdaccio.dev/readme/browserstack_logo.png)](https://www.browserstack.com/)                        | BrowserStack provides plan to run End to End testing for the UI                   |
-| Netlify      | [![netlify](https://www.netlify.com/img/global/badges/netlify-color-accent.svg)](https://www.netlify.com/)                      | Netlify provides pro plan for website deployment                                  |
-| Algolia      | [![algolia](https://cdn.verdaccio.dev/sponsor/logo/algolia/logo.png)](https://algolia.com/)                                     | Algolia provides search services for the website                                  |
-| Docker       | [![docker](https://cdn.verdaccio.dev/sponsor/logo/docker/docker.png)](https://www.docker.com/community/open-source/application) | Docker offers unlimited pulls and unlimited egress to any and all users           |
-
-## Maintainers
-
-| [Juan Picado](https://github.com/juanpicado)                                   | [Ayush Sharma](https://github.com/ayusharma)                             | [Sergio Hg](https://github.com/sergiohgz)                                 |
-| ------------------------------------------------------------------------------ | ------------------------------------------------------------------------ | ------------------------------------------------------------------------- |
-| ![jotadeveloper](https://avatars3.githubusercontent.com/u/558752?s=120&v=4)    | ![ayusharma](https://avatars2.githubusercontent.com/u/6918450?s=120&v=4) | ![sergiohgz](https://avatars2.githubusercontent.com/u/14012309?s=120&v=4) |
-| [@jotadeveloper](https://twitter.com/jotadeveloper)                            | [@ayusharma\_](https://twitter.com/ayusharma_)                           | [@sergiohgz](https://twitter.com/sergiohgz)                               |
-| [Priscila Oliveria](https://github.com/priscilawebdev)                         | [Daniel Ruf](https://github.com/DanielRuf)                               |
-| ![priscilawebdev](https://avatars2.githubusercontent.com/u/29228205?s=120&v=4) | ![DanielRuf](https://avatars3.githubusercontent.com/u/827205?s=120&v=4)  |
-| [@priscilawebdev](https://twitter.com/priscilawebdev)                          | [@DanielRufde](https://twitter.com/DanielRufde)                          |
-
-You can find and chat with then over Discord, click [here](http://chat.verdaccio.org) or follow them at _Twitter_.
-
-## Who is using Verdaccio?
-
- [create-react-app](https://github.com/facebook/create-react-app/blob/master/CONTRIBUTING.md#customizing-e2e-registry-configuration) _(+86.2k ⭐️)_
- [Grafana](https://github.com/grafana/grafana/search?q=verdaccio) _(+54.9k ⭐️)_
- [Gatsby](https://github.com/gatsbyjs/gatsby) _(+49.2k ⭐️)_
- [Babel.js](https://github.com/babel/babel) _(+38.5k ⭐️)_
- [Docusaurus](https://github.com/facebook/docusaurus) _(+34k ⭐️)_
- [Vue CLI](https://github.com/vuejs/vue-cli) _(+27.4k ⭐️)_
- [Angular CLI](https://github.com/angular/angular-cli) _(+24.3k ⭐️)_
- [Uppy](https://github.com/transloadit/uppy) _(+23.8k ⭐️)_
- [bit](https://github.com/teambit/bit) _(+13k ⭐️)_
- [Aurelia Framework](https://github.com/aurelia/framework) _(+11.6k ⭐️)_
- [pnpm](https://github.com/pnpm/pnpm) _(+10.1k ⭐️)_
- [ethereum/web3.js](https://github.com/ethereum/web3.js) _(+9.8k ⭐️)_
- [Webiny CMS](https://github.com/webiny/webiny-js) _(+6.6k ⭐️)_
- [NX](https://github.com/nrwl/nx) _(+6.1k ⭐️)_
- [Mozilla Neutrino](https://github.com/neutrinojs/neutrino) _(+3.7k ⭐️)_
- [workshopper how to npm](https://github.com/workshopper/how-to-npm) _(+1k ⭐️)_
- [Amazon SDK v3](https://github.com/aws/aws-sdk-js-v3)
- [Amazon Encryption SDK for Javascript](https://github.com/aws/aws-encryption-sdk-javascript)
-
-🤓 Don't be shy, add yourself to this readme.

 ## Open Collective Sponsors

@@ -320,24 +191,25 @@ Thank you to all our backers! 🙏 [[Become a backer](https://opencollective.com

 This project exists thanks to all the people who contribute. [[Contribute](CONTRIBUTING.md)].

-[![contributors](https://opencollective.com/verdaccio/contributors.svg?width=890&button=true)](../../graphs/contributors)
+[![contrubitors](https://opencollective.com/verdaccio/contributors.svg?width=890&button=true)](../../graphs/contributors)

 ### FAQ / Contact / Troubleshoot

 If you have any issue you can try the following options, do no desist to ask or check our issues database, perhaps someone has asked already what you are looking for.

- [Blog](https://verdaccio.org/blog/)
- [Donations](https://github.com/sponsors/verdaccio)
- [Reporting an issue](https://github.com/verdaccio/verdaccio/issues/new/choose)
- [Running discussions](https://github.com/verdaccio/verdaccio/issues?q=is%3Aissue+is%3Aopen+label%3Adiscuss)
- [Chat](https://discord.gg/7qWJxBf)
- [Logos](https://verdaccio.org/docs/en/logo)
- [Docker Examples](https://github.com/verdaccio/verdaccio/tree/master/docker-examples)
- [FAQ](https://github.com/verdaccio/verdaccio/discussions/categories/q-a)
+* [Blog](https://medium.com/verdaccio)
+* [Donations](https://opencollective.com/verdaccio)
+* [Roadmaps](https://github.com/verdaccio/verdaccio/projects)
+* [Reporting an issue](https://github.com/verdaccio/verdaccio/blob/master/CONTRIBUTING.md#reporting-a-bug)
+* [Running discussions](https://github.com/verdaccio/verdaccio/issues?q=is%3Aissue+is%3Aopen+label%3Adiscuss)
+* [Chat](http://chat.verdaccio.org/)
+* [Logos](https://verdaccio.org/docs/en/logo)
+* [FAQ](https://github.com/verdaccio/verdaccio/issues?utf8=%E2%9C%93&q=is%3Aissue%20label%3Aquestion%20)
+* [Docker Examples](https://github.com/verdaccio/docker-examples)

 ### License

 Verdaccio is [MIT licensed](https://github.com/verdaccio/verdaccio/blob/master/LICENSE)

-The Verdaccio documentation and logos (excluding /thanks, e.g., .md, .png, .sketch) files within the /assets folder) is
-[Creative Commons licensed](https://creativecommons.org/licenses/by/4.0/).
+The Verdaccio documentation and logos (excluding /thanks, e.g., .md, .png, .sketch)  files within the /assets folder) is
+ [Creative Commons licensed](https://github.com/verdaccio/verdaccio/blob/master/LICENSE-docs).
--- a/SECURITY.md
+++ b/SECURITY.md
@@ -1,77 +0,0 @@
-# Security Policy
-
-## Supported versions
-
-The following table describes the versions of this project that are currently supported with security updates:
-
-| Version   | Supported          |
-| --------- | ------------------ |
-| 2.x       | :x:                |
-| 3.x       | :x:                |
-| 4.x       | :x:                |
-| 5.x       | :white_check_mark: |
-| 6.x alpha | :x:                |
-
-## Responsible disclosure security policy
-
-A responsible disclosure policy helps protect users of the project from publicly disclosed security vulnerabilities without a fix by employing a process where vulnerabilities are first triaged in a private manner, and only publicly disclosed after a reasonable time period that allows patching the vulnerability and provides an upgrade path for users.
-
-When contacting us directly via email, we will do our best efforts to respond in a reasonable time to resolve the issue. When contacting a security program their disclosure policy will provide details on timeframe, processes and paid bounties.
-
-We kindly ask you to refrain from malicious acts that put our users, the project, or any of the project’s team members at risk.
-
-## Reporting a security issue
-
-> Please do not use the provided email address to report issues which are not related to security vulnerabilities
-
-At Verdaccio, we consider the security of our systems a top priority. But no matter how much effort we put into system security, there can still be vulnerabilities present.
-
-If you discover a security vulnerability, please use one of the following means of communications to report it to us:
-
- Report the security issue to [Snyk Security Team](https://snyk.io/vulnerability-disclosure). They will help triage the security issue and work with all involved parties to remediate and release a fix.
-
-Note that time-frame and processes are subject to each program’s own policy.
-
- Report the security issue to the project maintainers directly at verdaccio@pm.me. If the report contains highly sensitive information, please be advised to encrypt your findings using our [PGP key](https://cdn.verdaccio.dev/gpg/publickey.verdaccio@pm.me.asc) which is also available in this document.
-
-Your efforts to responsibly disclose your findings are sincerely appreciated and will be taken into account to acknowledge your contributions.
-
-## PGP key
-
-The following is this project’s PGP key which should be used to encrypt any sensitive information shared on unsecured medium such as e-mails:
-
-```
-----BEGIN PGP PUBLIC KEY BLOCK-----
-Version: OpenPGP.js v4.5.1
-Comment: https://openpgpjs.org
-
-xsBNBFzm3asBCACxnJDv1r6dxiM2e8iqS6B7fxY2I3X1Rc+3m8mhXOwVwRG4
-AOrQ417oSzsVLf4iocg+DWrtxzY79odTLJEovVt79rxwqIIl4y96tH+29kLB
-ao7eaYZacfstonVkBAmxBLaYv1x7cqWuukm6sBCOxapW1X9BcbR3vOghDziY
-/1AwNjupAOPvKNMtghjrdh3w0iMfZS1hw28zjM1oCeezEil+CTjgQDN+69qS
-UFG/BInJ7CVn9TvhU85inSwpxVa576fkhvFoNUrGvFvYRWtXRJndbRdBodVj
-C9At/Gb2IeNf7xqXH2KloZ1yaVNVSzLX4jqrMWeF+9Z12SjUyL6G9TwDABEB
-AAHNIXZlcmRhY2Npb0BwbS5tZSA8dmVyZGFjY2lvQHBtLm1lPsLAdQQQAQgA
-HwUCXObdqwYLCQcIAwIEFQgKAgMWAgECGQECGwMCHgEACgkQpSvoGbwFJYhn
-2wf+JF+yLQXh1EFMih6lpbx243hvglgOWmcigYVRh5mSfULcdW2pmkPQXqhE
-DW73qqwN9G9piiPnGMw7sKoB7XJVuFKyvHOYKtem5UQVRvs2rTxnSc5qFcUJ
-0w3Tw/pZ9B3fYAEYti2B/GsSOzaECfBKCFOg15xXGAdwfgff5FsorN1Gb6MG
-eCO9c8faSF/+fQUCfokwMDVzxXQFZEMx3q/rHVJ/Fm+XelZ+00c9fdyiuPW5
-dM9gATle7lz0iPtxaUDGLW8QZ/7b6O8IJ1kle0tL4AE++bXsVWxNdzhlNohH
-Hn09sIdFnG4ySTz4YJjiDd70ZdQjOGEGvutymEIN1xcNq87ATQRc5t2rAQgA
-yX2ZhUCtrz7lzK0992yveB+duVF//yo9Pei2ra9Z3GNmA+oWlRH1FTWpAmVH
-uDdUchTnxAwaKntabt3Mb1AgEZwrdiG4LuHFbdx2ls93BJ5lXdp7vB6pVf3N
-IrhHKyQ/Y5L5kMSj/GjrhO19zmj6mPPEgb3M3ZIZjQUF4pro0pExuAPA9Wxe
-awn5+0BUYFs4mZQDtTdiVuz5tWA0fNtt1aBfOPA97tmn18y4b1b0iQIJQpep
-BVVnFLeAZOevDcBJFbmQOdAjufWSSgpzX+FZ3rx6RVwwKxUiVQyUuwSQkKh5
-RufZ5zE0y7Fe/YlWXbKoj4zNJqYtjPSPngQRWf7UpwARAQABwsBfBBgBCAAJ
-BQJc5t2rAhsMAAoJEKUr6Bm8BSWIoYQH+QDw0Z84tZK4N1lh49hYyohs6vNU
-9kG69nKLQA5NymPtTxh8YOJhdJL697FkvKI4OGEO2FXUmcJS3CBJ2nBVKMq2
-1biDRKC4OhIU2RgFhS6bHy6VOn24EYs77T+zX8YXpz8ulYVln2b0QZCubN0Z
-L50tEC8HnuVMVN+/pqITdD3FjzwGZgHdW8qkKgD6qhObHCl8/cW2buCsaIAY
-eZWVPgPY1S1U0V608qYNtUCkrmUW5Sl6YLvz7JTvTsaym5mzyFXF3ErAURgI
-/v4XaWmRgNGIxbIxsFGuEs+KIKBQDJmtvJCVpBNS5IYnFf5h/LA5cfkwMKJt
-wXhyE0b/iDs60ZM=
-=QWXs
-----END PGP PUBLIC KEY BLOCK-----
-```
--- a/assets/bitmap/banner-background/verdaccio@2x.png
+++ b/assets/bitmap/banner-background/verdaccio@2x.png
--- a/assets/bitmap/banner-transparent-background/verdaccio.png
+++ b/assets/bitmap/banner-transparent-background/verdaccio.png
--- a/assets/bitmap/banner-transparent-background/verdaccio@2x.png
+++ b/assets/bitmap/banner-transparent-background/verdaccio@2x.png
--- a/assets/bitmap/banner-transparent-background/verdaccio@3x.png
+++ b/assets/bitmap/banner-transparent-background/verdaccio@3x.png
--- a/assets/bitmap/logo-background-title/verdaccio-tiny-text.png
+++ b/assets/bitmap/logo-background-title/verdaccio-tiny-text.png
--- a/assets/bitmap/logo-background-title/verdaccio-tiny-text@2x.png
+++ b/assets/bitmap/logo-background-title/verdaccio-tiny-text@2x.png
--- a/assets/bitmap/logo-background-title/verdaccio-tiny-text@3x.png
+++ b/assets/bitmap/logo-background-title/verdaccio-tiny-text@3x.png
--- a/assets/bitmap/logo-black-white-title/verdaccio-blackwhite-text.png
+++ b/assets/bitmap/logo-black-white-title/verdaccio-blackwhite-text.png
--- a/assets/bitmap/logo-black-white-title/verdaccio-blackwhite-text@2x.png
+++ b/assets/bitmap/logo-black-white-title/verdaccio-blackwhite-text@2x.png
--- a/assets/bitmap/logo-black-white-title/verdaccio-blackwhite-text@3x.png
+++ b/assets/bitmap/logo-black-white-title/verdaccio-blackwhite-text@3x.png
--- a/assets/bitmap/logo-name-bakground/logo-small-header-bottom.png
+++ b/assets/bitmap/logo-name-bakground/logo-small-header-bottom.png
--- a/assets/bitmap/logo-name-bakground/logo-small-header-bottom@2x.png
+++ b/assets/bitmap/logo-name-bakground/logo-small-header-bottom@2x.png
--- a/assets/bitmap/logo-name-bakground/logo-small-header-bottom@3x.png
+++ b/assets/bitmap/logo-name-bakground/logo-small-header-bottom@3x.png
--- a/assets/bitmap/logo-transparent/logo-twitter-white-background.png
+++ b/assets/bitmap/logo-transparent/logo-twitter-white-background.png
--- a/assets/bitmap/logo-transparent/logo-twitter.png
+++ b/assets/bitmap/logo-transparent/logo-twitter.png
--- a/assets/bitmap/twitter/github-template.png
+++ b/assets/bitmap/twitter/github-template.png
--- a/assets/bitmap/twitter/twitter-header-text.png
+++ b/assets/bitmap/twitter/twitter-header-text.png
--- a/assets/bitmap/twitter/twitter-social-banner-tittle-light.png
+++ b/assets/bitmap/twitter/twitter-social-banner-tittle-light.png
--- a/assets/bitmap/twitter/twitter-social-banner-tittle.png
+++ b/assets/bitmap/twitter/twitter-social-banner-tittle.png
--- a/assets/bitmap/twitter/twitter-social-banner.png
+++ b/assets/bitmap/twitter/twitter-social-banner.png
--- a/assets/bitmap/banner-background/verdaccio-banner.png
+++ b/assets/bitmap/banner-background/verdaccio-banner.png
--- a/assets/bitmap/banner-background/verdaccio-banner@2x.png
+++ b/assets/bitmap/banner-background/verdaccio-banner@2x.png
--- a/assets/bitmap/banner-background/verdaccio-banner@3x.png
+++ b/assets/bitmap/banner-background/verdaccio-banner@3x.png
--- a/Show More
+++ b/Show More
Author	SHA1	Message	Date
Juan Picado @jotadeveloper	32177bde91	chore(release): 3.13.0	2019-09-29 17:57:56 +02:00
Juan Picado @jotadeveloper	17271edeb5	feat: update core dependencies	2019-09-29 17:24:53 +02:00
Juan Picado @jotadeveloper	6ddf71d676	feat: bump Node.js v10.16.3	2019-09-29 17:16:01 +02:00
Juan Picado @jotadeveloper	9d9084ede0	chore(release): 3.12.3	2019-08-01 20:04:02 +02:00
Juan Picado @jotadeveloper	e82665f8d6	Merge pull request #1424 from verdaccio/3.x-update-deps 3.x update dependencies	2019-08-01 20:03:05 +02:00
Juan Picado @jotadeveloper	bfc4c2c6d6	fix(security): update dependencies for security vulnerabilities, this is a period maintenance	2019-08-01 19:56:03 +02:00
Juan Picado @jotadeveloper	290ce0db9f	Merge pull request #1423 from raido/backport/dash-pkg-name-fix-v3 V3: Backport #1409 dash in package name fix	2019-08-01 19:04:46 +02:00
Raido Kuli	ae5beed30e	fix: backport #1409 to v3.x	2019-08-01 17:27:05 +03:00
Juan Picado @jotadeveloper	5a2a92a3cd	chore(release): 3.12.2	2019-06-23 10:03:35 +02:00
Juan Picado @jotadeveloper	f3e1a5034a	fix: restore express version	2019-06-23 10:03:16 +02:00
Juan Picado @jotadeveloper	74a0792d67	chore: update tag to previous on publish	2019-06-23 00:22:29 +02:00
Juan Picado @jotadeveloper	c35ce54efb	chore(release): 3.12.1	2019-06-23 00:01:30 +02:00
Juan Picado @jotadeveloper	df2ebc6310	chore: replace node6 by node12 from circleci	2019-06-22 23:48:10 +02:00
Juan Picado @jotadeveloper	e7178a5eaf	fix: update dependencies Some vulnerabilities in sub dependencies has been reported, this commit only update critical dependencies	2019-06-22 23:39:52 +02:00
Juan Picado @jotadeveloper	998ec280f8	chore(release): 3.12.0	2019-05-17 16:59:18 +02:00
Juan Picado @jotadeveloper	5abf71c5e5	feat: update readme v3 (#1311 ) * feat: update readme parser * chore: fix readme unit test * chore: downgrade request@2.87.0 There is a weird error with the latest version https://github.com/request/request/issues/3085 * chore: remove parsing on publish fix functional test * chore: add xss step to readme	2019-05-17 07:49:04 -07:00
Juan Picado @jotadeveloper	0b1b3556d9	chore(release): 3.11.7	2019-05-09 22:20:26 +02:00
Juan Picado @jotadeveloper	cd9f2d5dc8	fix: update to latest node.js docker image	2019-05-09 22:19:23 +02:00
Juan Picado @jotadeveloper	398b839da3	fix: update dependencies security corcern	2019-05-09 22:12:59 +02:00