cli chore(deps): bump validator and verdaccio

Bumps validator to 13.15.23 and updates ancestor dependency verdaccio. These dependencies need to be updated together.

Updates validator from 13.15.15 to 13.15.23

Release notes

13.15.23

Fixes, New Locales and Enhancements

Doc fixes and others:

#2631 @WikiRik

Full Changelog: https://github.com/validatorjs/validator.js/compare/13.15.22...13.15.23

13.15.22

Fixes, New Locales and Enhancements

#2622 isURL: fix regression with hostnames with ports @mbtools

#2616 isLength: improve handling Unicode variation selectors @koral--

Doc fixes and others:

#2621 @mbtools

New Contributors

@mbtools made their first contribution in validatorjs/validator.js#2622

@koral-- made their first contribution in validatorjs/validator.js#2616

Full Changelog: https://github.com/validatorjs/validator.js/compare/13.15.20...13.15.22

13.15.20

Fixes, New Locales and Enhancements

#2556 isMobilePhone: add ar-QA locale @WardKhaddour

#2576 isAlpha/isAlphanuneric: add Indic locales (ta-IN, te-IN, kn-IN, ml-IN, gu-IN, pa-IN, or-IN) @avadootharajesh

#2574 isBase64: improve padding regex @KrayzeeKev

#2584 isVAT: improve FR locale @iamAmer

#2608 isURL: improve protocol detection. Resolves CVE-2025-56200 @theofidry

Doc fixes and others:

#2563 @stoneLeaf

#2581 @camillobruni

New Contributors

@stoneLeaf made their first contribution in validatorjs/validator.js#2563

@WardKhaddour made their first contribution in validatorjs/validator.js#2556

@avadootharajesh made their first contribution in validatorjs/validator.js#2576

@KrayzeeKev made their first contribution in validatorjs/validator.js#2574

@iamAmer made their first contribution in validatorjs/validator.js#2584

@camillobruni made their first contribution in validatorjs/validator.js#2581

@theofidry made their first contribution in validatorjs/validator.js#2608

Full Changelog: https://github.com/validatorjs/validator.js/compare/13.15.15...13.15.20

Changelog

Sourced from validator's changelog.

13.15.23

Fixes, New Locales and Enhancements

Doc fixes and others:

#2631 @WikiRik

13.15.22

Fixes, New Locales and Enhancements

#2622 isURL: fix regression with hostnames with ports @mbtools

#2616 isLength: improve handling Unicode variation selectors @koral--

Doc fixes and others:

#2621 @mbtools

13.15.20

Fixes, New Locales and Enhancements

#2556 isMobilePhone: add ar-QA locale @WardKhaddour

#2576 isAlpha/isAlphanuneric: add Indic locales (ta-IN, te-IN, kn-IN, ml-IN, gu-IN, pa-IN, or-IN) @avadootharajesh

#2574 isBase64: improve padding regex @KrayzeeKev

#2584 isVAT: improve FR locale @iamAmer

#2608 isURL: improve protocol detection. Resolves CVE-2025-56200 @theofidry

Doc fixes and others:

#2563 @stoneLeaf

#2581 @camillobruni

Commits

9113304 fix(build): move to trusted publishing (#2631)
f2b5c17 maintenance: 2511 release (#2627)
d457eca fix(isLength): correctly handle Unicode variation selectors (#2616)
f2e3633 docs: add install instructions to contibution guide (#2621)
cf40145 fix: URL validation for hostnames with ports (no protocol) (#2622)
4af6124 maintenance: 2510 release (#2585)
30d4fe0 13.15.20
cbef508 fix(isURL): improve protocol detection. Resolves CVE-2025-56200 (#2608)
6f436be Fix typo in validators.test.js (#2581)
3c85708 Fix: correct French VAT (FR) validation regex and add tests (#2584)
Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by [GitHub Actions](https://www.npmjs.com/~GitHub Actions), a new releaser for validator since your current version.

Updates verdaccio from 6.2.1 to 6.2.3

Release notes

Sourced from verdaccio's releases.

v6.2.3

What's Changed

fix(deps): update core verdaccio dependencies (6.x) by @renovate[bot] in verdaccio/verdaccio#5497

fix(middleware): dist-tags with scoped packages verdaccio/verdaccio#5495 https://github.com/orgs/verdaccio/discussions/5483 @mbtools and @stgbmpi

fix: Docker image not listening on IPv6 (6.x) by @A1bi in verdaccio/verdaccio#5499

Full Changelog: https://github.com/verdaccio/verdaccio/compare/v6.2.2...v6.2.3

v6.2.2

What's Changed

fix(deps): update core verdaccio dependencies (6.x) by @renovate[bot] in verdaccio/verdaccio#5477

fix: running without auth plugin (#5466) @mbtools

fix(deps): update core verdaccio dependencies (6.x) by @renovate[bot] in verdaccio/verdaccio#5488

fix: notification packages bug #5439 @juanpicado

chore: replace mime package with constants (#5471) @mbtools

fix(proxy): proxy protocol check (#5474) @mbtools

fix(deps): update dependency semver to v7.7.3 (6.x) by @renovate[bot] in verdaccio/verdaccio#5489

chore(deps): update node.js to v22.21.1 (6.x) by @renovate[bot] in verdaccio/verdaccio#5491

chore(deps): update babel monorepo to v7.28.5 (6.x) by @renovate[bot] in verdaccio/verdaccio#5490

fix(deps): update core verdaccio dependencies (6.x) by @renovate[bot] in verdaccio/verdaccio#5493

Full Changelog: https://github.com/verdaccio/verdaccio/compare/v6.2.1...v6.2.2

Changelog

Sourced from verdaccio's changelog.

6.2.3 (2025-11-27)

Bug Fixes

deps: update core verdaccio dependencies (#5497) (d991c35)

Docker image not listening on IPv6 (#5499) (6ab28c4)

6.2.2 (2025-11-23)

Bug Fixes

deps: update core verdaccio dependencies (#5477) (26d1675)

deps: update core verdaccio dependencies (#5488) (57989f2)

deps: update core verdaccio dependencies (#5493) (399cb22)

deps: update dependency semver to v7.7.3 (#5489) (72923a6)

Commits

1d0b245 chore(release): 6.2.3
6ab28c4 fix: Docker image not listening on IPv6 (#5499)
d991c35 fix(deps): update core verdaccio dependencies (#5497)
c6b7bb0 chore(release): 6.2.2
399cb22 fix(deps): update core verdaccio dependencies (#5493)
1aefda2 chore(deps): update babel monorepo to v7.28.5 (#5490)
c847dc7 chore(deps): update node.js to v22.21.1 (#5491)
72923a6 fix(deps): update dependency semver to v7.7.3 (#5489)
57989f2 fix(deps): update core verdaccio dependencies (#5488)
26d1675 fix(deps): update core verdaccio dependencies (#5477)
See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) You can disable automated security fix PRs for this repo from the Security Alerts page.

Nov 28 '25 20:11 dependabot[bot]

📊 Benchmark results

Comparing with beee1443c8bed59aa7d0ae381e4f299f8e8b70d7

Dependency count: 1,044 (no change)
Package size: 304 MB ⬆️ 0.00% increase vs. beee1443c8bed59aa7d0ae381e4f299f8e8b70d7
Number of ts-expect-error directives: 378 (no change)

Dec 03 '25 20:12 github-actions[bot]

📊 Benchmark results

Comparing with 6d4de26527d6abc9e6b4b1fb1ecc996c7a014264

Dependency count: 1,044 (no change)
Package size: 304 MB ⬆️ 0.00% increase vs. 6d4de26527d6abc9e6b4b1fb1ecc996c7a014264
Number of ts-expect-error directives: 378 (no change)

Dec 03 '25 20:12 github-actions[bot]