Changes included in this PR

• Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
  • social/pusher/package.json

Vulnerabilities that will be fixed

With an upgrade:

Severity | Priority Score (*) | Issue | Breaking Change | Exploit Maturity :-------------------------:|-------------------------|:-------------------------|:-------------------------|:------------------------- | 584/1000 Why? Has a fix available, CVSS 7.4 | Regular Expression Denial of Service (ReDoS) SNYK-JS-HAWK-2808852 | Yes | No Known Exploit

(*) Note that the real score may have changed since the PR was raised.

See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information: 🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Learn about vulnerability in an interactive lesson of Snyk Learn.

Since #974 has been merged we should be able to close this now

We may be able to use a sidecar container to add the VPN support which makes things easier (simpler stack), but still need to work out how to configure

First thoughts:

1. This will probably require a custom stack for each VPN type that includes the VPN binaries
2. Might require custom Kubernetes permissions to allow the setting up of network interfaces (need to asses the security considerations)
3. Need to be very careful about what IP address ranges are supported to prevent clashes with the Private IP address ranges that exist inside the K8s cluster
4. Need to ensure this is basically one way (no way for device on connected network to reach further than the single FF Project Pod)
5. How does this work with TCP/UDP nodes and allowing inbound connections?
6. Will need a way to convey VPN status to Node-RED (custom nodes?)
7. How will it be configured (possibly see point 6)

Add deployment type test to init

@knolleary tested on my local rig, I'm happy that it does what it's supposed to do

@dceejay this looks good to me, please merge and push to npm when you can (might want to decide if we bump the version to 0.2.0/1.0.0 rather than 0.1.1)

Same tests failing for both SQLite and Postgres

docs: Add Safe mode for Node-RED

Update docs/user/README.md

Merge pull request #1644 from flowforge/backport-1643

docs: Add Safe mode for Node-RED (backport #1643)

Backport of https://github.com/flowforge/flowforge/pull/1643

Description

Document knowledge from Ben to make it publicly available for FlowForge users and allow us to link to an answer next time.

Labels

• [X] Backport needed? -> add the backport label

docs: Add Safe mode for Node-RED

Update docs/user/README.md

Merge pull request #1643 from flowforge/zj-doc-safe-mode

docs: Add Safe mode for Node-RED

Description

Document knowledge from Ben to make it publicly available for FlowForge users and allow us to link to an answer next time.

Labels

• [X] Backport needed? -> add the backport label

Update docs/user/README.md

Thanks for this, just a couple more points

What changed that required you to replace the icon? If pushers logo has changed please resize the new one to be match the size of the old one.

Also you will need to sign the CLA before we can accept the code. It should just be a case of clicking the link in the comment above

Update pushed

Explicitly tag projects with Deployments

Store if the project is Deployment in the DB, this allows us to use it to generate UI messages later

That makes sense and also gives us a nicer way to query how many are converted and a way to present a message in the UI at somepoint

It's odd that the build fails, it compiles fine on my server running ubuntu 22.04 x64 I'm guessing it may be a missing dependency for other archs.

I've added alpine-sdk to the list of packages to install, it is the equivalent of build-essentials so it may contain some packages yet that it needs.