build(deps): bump validator and verdaccio

[dependabot]

Bumps validator to 13.15.23 and updates ancestor dependency verdaccio. These dependencies need to be updated together.

Updates validator from 13.12.0 to 13.15.23

Release notes

Sourced from validator's releases.

13.15.23

Fixes, New Locales and Enhancements

• Doc fixes and others:
  • #2631 @​WikiRik

Full Changelog: validatorjs/validator.js@13.15.22...13.15.23

13.15.22

Fixes, New Locales and Enhancements

• #2622 isURL: fix regression with hostnames with ports @​mbtools
• #2616 isLength: improve handling Unicode variation selectors @​koral--
• Doc fixes and others:
  • #2621 @​mbtools

New Contributors

• @​mbtools made their first contribution in validatorjs/validator.js#2622
• @​koral-- made their first contribution in validatorjs/validator.js#2616

Full Changelog: validatorjs/validator.js@13.15.20...13.15.22

13.15.20

Fixes, New Locales and Enhancements

• #2556 isMobilePhone: add ar-QA locale @​WardKhaddour
• #2576 isAlpha/isAlphanuneric: add Indic locales (ta-IN, te-IN, kn-IN, ml-IN, gu-IN, pa-IN, or-IN) @​avadootharajesh
• #2574 isBase64: improve padding regex @​KrayzeeKev
• #2584 isVAT: improve FR locale @​iamAmer
• #2608 isURL: improve protocol detection. Resolves CVE-2025-56200 @​theofidry
• Doc fixes and others:
  • #2563 @​stoneLeaf
  • #2581 @​camillobruni

New Contributors

• @​stoneLeaf made their first contribution in validatorjs/validator.js#2563
• @​WardKhaddour made their first contribution in validatorjs/validator.js#2556
• @​avadootharajesh made their first contribution in validatorjs/validator.js#2576
• @​KrayzeeKev made their first contribution in validatorjs/validator.js#2574
• @​iamAmer made their first contribution in validatorjs/validator.js#2584
• @​camillobruni made their first contribution in validatorjs/validator.js#2581
• @​theofidry made their first contribution in validatorjs/validator.js#2608

Full Changelog: validatorjs/validator.js@13.15.15...13.15.20

13.15.15

Fixes, New Locales and Enhancements

• isMobilePhone

... (truncated)

Changelog

Sourced from validator's changelog.

13.15.23

Fixes, New Locales and Enhancements

• Doc fixes and others:
  • #2631 @​WikiRik

13.15.22

Fixes, New Locales and Enhancements

• #2622 isURL: fix regression with hostnames with ports @​mbtools
• #2616 isLength: improve handling Unicode variation selectors @​koral--
• Doc fixes and others:
  • #2621 @​mbtools

13.15.20

Fixes, New Locales and Enhancements

• #2556 isMobilePhone: add ar-QA locale @​WardKhaddour
• #2576 isAlpha/isAlphanuneric: add Indic locales (ta-IN, te-IN, kn-IN, ml-IN, gu-IN, pa-IN, or-IN) @​avadootharajesh
• #2574 isBase64: improve padding regex @​KrayzeeKev
• #2584 isVAT: improve FR locale @​iamAmer
• #2608 isURL: improve protocol detection. Resolves CVE-2025-56200 @​theofidry
• Doc fixes and others:
  • #2563 @​stoneLeaf
  • #2581 @​camillobruni

13.15.15

Fixes, New Locales and Enhancements

• isMobilePhone
  • #2514 improve el-CY locale @​rezk2ll
  • #2512 improve pt-AO locale @​renaldodev
  • #2502 improve ar-OM locale @​tomcastro
• #2089 isIP: allow usage of option object @​pixelbucket-dev
• #2526 isPassportNumber: improve CA locale @​evanbechtol
• #2491 isBase64: improve validation based on RFC4648 @​aseyfpour
• #2479 isPostalCode: improve FR locale @​Rajput-Balram
• #2088 isBefore: allow usage of option object @​pixelbucket-dev
• #2346 isRgbColor: allow second digit in rgba alpha value @​controlol
• #2453 isIP: improve IPv6 regex @​ShreySinha02
• #2052 isPostalCode: add PK locale @​mateeni-dev
• #2529 isPostalCode: improve TW locale @​Crocsx
• #2550 isPassportNumber: improve US locale @​yitzchak-schechter
• #2553 isUUID: add loose option @​bc-m
• #2551 isPostalCode: add BD locale @​tanvirrb

... (truncated)

Commits

• 9113304 fix(build): move to trusted publishing (#2631)
• f2b5c17 maintenance: 2511 release (#2627)
• d457eca fix(isLength): correctly handle Unicode variation selectors (#2616)
• f2e3633 docs: add install instructions to contibution guide (#2621)
• cf40145 fix: URL validation for hostnames with ports (no protocol) (#2622)
• 4af6124 maintenance: 2510 release (#2585)
• 30d4fe0 13.15.20
• cbef508 fix(isURL): improve protocol detection. Resolves CVE-2025-56200 (#2608)
• 6f436be Fix typo in validators.test.js (#2581)
• 3c85708 Fix: correct French VAT (FR) validation regex and add tests (#2584)
• Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by [GitHub Actions](https://www.npmjs.com/~GitHub Actions), a new releaser for validator since your current version.

Updates verdaccio from 6.1.6 to 6.2.4

Release notes

Sourced from verdaccio's releases.

v6.2.4

What's Changed

• fix: allow docker listen address to be configured (6.x) by @​markormesher in verdaccio/verdaccio#5503

VERDACCIO_ADDRESS Environment Variable for Docker

You can now set the VERDACCIO_ADDRESS environment variable to control Verdaccio’s network bind address.

• Choose IPv4 (0.0.0.0), IPv6 ([::]), or a specific interface.
• Improves compatibility for dual-stack and custom environments.

Example:

docker run -e VERDACCIO_ADDRESS=0.0.0.0 ...
docker run -e VERDACCIO_ADDRESS='[::]' ...

More info at : https://verdaccio.org/docs/env/

Full Changelog: verdaccio/verdaccio@v6.2.3...v6.2.4

v6.2.3

What's Changed

• fix(deps): update core verdaccio dependencies (6.x) by @​renovate[bot] in verdaccio/verdaccio#5497
  • fix(middleware): dist-tags with scoped packages verdaccio/verdaccio#5495 https://github.com/orgs/verdaccio/discussions/5483 @​mbtools and @​stgbmpi
• fix: Docker image not listening on IPv6 (6.x) by @​A1bi in verdaccio/verdaccio#5499 (🐛 regression) will be fixed at v6.2.4

Full Changelog: verdaccio/verdaccio@v6.2.2...v6.2.3

v6.2.2

What's Changed

• fix(deps): update core verdaccio dependencies (6.x) by @​renovate[bot] in verdaccio/verdaccio#5477
  • fix: running without auth plugin (#5466) @​mbtools
• fix(deps): update core verdaccio dependencies (6.x) by @​renovate[bot] in verdaccio/verdaccio#5488
  • fix: notification packages bug #5439 @​juanpicado
  • chore: replace mime package with constants (#5471) @​mbtools
  • fix(proxy): proxy protocol check (#5474) @​mbtools
• fix(deps): update dependency semver to v7.7.3 (6.x) by @​renovate[bot] in verdaccio/verdaccio#5489
• chore(deps): update node.js to v22.21.1 (6.x) by @​renovate[bot] in verdaccio/verdaccio#5491
• chore(deps): update babel monorepo to v7.28.5 (6.x) by @​renovate[bot] in verdaccio/verdaccio#5490
• fix(deps): update core verdaccio dependencies (6.x) by @​renovate[bot] in verdaccio/verdaccio#5493

Full Changelog: verdaccio/verdaccio@v6.2.1...v6.2.2

v6.2.1

What's Changed

• fix(deps): update core verdaccio dependencies (6.x) by @​renovate[bot] in verdaccio/verdaccio#5440

... (truncated)

Changelog

Sourced from verdaccio's changelog.

6.2.4 (2025-12-02)

Bug Fixes

• allow docker listen address to be configured (6.x) (#5503) (12a19ac)

6.2.3 (2025-11-27)

Bug Fixes

• deps: update core verdaccio dependencies (#5497) (d991c35)
• Docker image not listening on IPv6 (#5499) (6ab28c4)

6.2.2 (2025-11-23)

Bug Fixes

• deps: update core verdaccio dependencies (#5477) (26d1675)
• deps: update core verdaccio dependencies (#5488) (57989f2)
• deps: update core verdaccio dependencies (#5493) (399cb22)
• deps: update dependency semver to v7.7.3 (#5489) (72923a6)

6.2.1 (2025-10-24)

Bug Fixes

• deps: update core verdaccio dependencies (#5440) (78494d8)

6.2.0 (2025-09-29)

Features

• 6.x refactor test and deps (#5315) (af55fbb)

Bug Fixes

• #5281 view packages logged in (#5399) (9e404c1)
• deps: update core verdaccio dependencies (#5327) (f389431)
• deps: update core verdaccio dependencies (6.x) (#5388) (012c19f)
• deps: update dependency debug to v4.4.3 (#5387) (24edd64)
• filter plugins not loading (#5382) (2cbd326)
• remove unused dependencies (#5349) (87bb1b8)

Commits

• 385c278 chore(release): 6.2.4
• 12a19ac fix: allow docker listen address to be configured (6.x) (#5503)
• 1d0b245 chore(release): 6.2.3
• 6ab28c4 fix: Docker image not listening on IPv6 (#5499)
• d991c35 fix(deps): update core verdaccio dependencies (#5497)
• c6b7bb0 chore(release): 6.2.2
• 399cb22 fix(deps): update core verdaccio dependencies (#5493)
• 1aefda2 chore(deps): update babel monorepo to v7.28.5 (#5490)
• c847dc7 chore(deps): update node.js to v22.21.1 (#5491)
• 72923a6 fix(deps): update dependency semver to v7.7.3 (#5489)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  You can disable automated security fix PRs for this repo from the Security Alerts page.

[coveralls]

coverage: 80.698% (-0.5%) from 81.183%
when pulling dab02ff on dependabot/npm_and_yarn/multi-ba6acecb92
into 8d1e0c5 on master.