firezone

mirror of https://github.com/outbackdingo/firezone.git synced 2026-01-27 18:18:55 +00:00

Go to file

dependabot[bot] d71635c651 build(deps): Bump rustls-webpki from 0.100.1 to 0.100.2 in /rust (#1941 )

Bumps [rustls-webpki](https://github.com/rustls/webpki) from 0.100.1 to
0.100.2.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/rustls/webpki/releases">rustls-webpki's
releases</a>.</em></p>
<blockquote>
<h2>v/0.100.2</h2>
<h2>Release notes</h2>
<ul>
<li>certificate path building and verification is now capped at 100
signature validation operations to avoid the risk of CPU usage
denial-of-service attack when validating crafted certificate chains
producing quadratic runtime. This risk affected both clients, as well as
servers that verified client certificates.</li>
</ul>
<h2>What's Changed</h2>
<ul>
<li>v0.100.2 prep by <a
href="https://github.com/cpu"><code>@cpu</code></a> in <a
href="https://redirect.github.com/rustls/webpki/pull/154">rustls/webpki#154</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/rustls/webpki/compare/v/0.100.1...v/0.100.2">https://github.com/rustls/webpki/compare/v/0.100.1...v/0.100.2</a></p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="c8b821450b"><code>c8b8214</code></a>
Bump MSRV to 1.60</li>
<li><a
href="855752292e"><code>8557522</code></a>
Avoid testing MSRV of dev-dependencies</li>
<li><a
href="73a7f0c7d7"><code>73a7f0c</code></a>
Cargo: version 0.100.1 -&gt; 0.100.2</li>
<li><a
href="4ea052366f"><code>4ea0523</code></a>
verify_cert: enforce maximum number of signatures.</li>
<li>See full diff in <a
href="https://github.com/rustls/webpki/compare/v/0.100.1...v/0.100.2">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=rustls-webpki&package-manager=cargo&previous-version=0.100.1&new-version=0.100.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
You can disable automated security fix PRs for this repo from the
[Security Alerts
page](https://github.com/firezone/firezone/network/alerts).

</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

2023-08-22 22:01:58 +00:00

.github

Gabi/fix relay expected message size (#1911 )

2023-08-16 20:29:51 +00:00

elixir

fix(ios): portal connectivity and tunnel setup (#1927 )

2023-08-21 20:48:30 -07:00

kotlin

android: integrate firebase crashlytics (#1908 )

2023-08-14 19:59:20 +00:00

rust

build(deps): Bump rustls-webpki from 0.100.1 to 0.100.2 in /rust (#1941 )

2023-08-22 22:01:58 +00:00

swift/apple

apple: macOS app: Some bugfixes (#1937 )

2023-08-22 15:25:16 +00:00

terraform

Grant Thomas access to staging env

2023-08-17 16:53:08 -06:00

website

feat(website): Replace cust logos (#1928 )

2023-08-21 18:51:22 +00:00

.codespellrc

Add updates from master that we want in cloud (#1774 )

2023-07-13 02:54:44 +00:00

.dockerignore

Deployment for the cloud version (#1638 )

2023-06-06 15:03:26 -06:00

.gitignore

Move elixir code to a subfolder (#1631 )

2023-05-24 15:46:51 -06:00

.markdownlint.json

Add websocket connection troubleshooting section (#977 )

2022-09-23 15:35:01 -07:00

.markdownlintignore

Cache node deps; fix minor docs typos (#923 )

2022-08-18 21:01:04 -07:00

.pre-commit-config.yaml

Announce 1.0 early access (#1791 )

2023-07-17 22:48:35 +00:00

.prettierrc.json

Announce 1.0 early access (#1791 )

2023-07-17 22:48:35 +00:00

.terraformignore

Add newlines in the end of files

2023-06-07 09:16:32 -06:00

.tool-versions

Bump Elixir/OTP versions (#1730 )

2023-07-03 23:11:47 +00:00

CODE_OF_CONDUCT.md

Merge blog site into docs, serve at subpaths (#1419 )

2023-02-15 16:52:16 -08:00

CONTRIBUTING.md

CI: add a flow that test client to resource ping (#1729 )

2023-07-05 03:17:26 +00:00

docker-compose.yml

feat(relay): allow configuration for lowest and highest allocation port (#1921 )

2023-08-18 13:04:26 -07:00

LICENSE

Update LICENSE to include component license clarification for subcomponents (#1806 )

2023-07-20 21:14:38 +00:00

NOTICE.txt

apple: Tunnel stack (#1876 )

2023-08-10 12:40:46 -05:00

README.md

Update LICENSE to include component license clarification for subcomponents (#1806 )

2023-07-20 21:14:38 +00:00

requirements.txt

Bump codespell from 2.2.4 to 2.2.5 (#1779 )

2023-07-13 17:17:02 +00:00

SECURITY.md

Add SupportOptions component and utm_source for links (#1219 )

2022-12-24 16:16:55 -06:00

README.md

Note: 🚧 The main branch is undergoing major restructuring in preparation for the 1.0 release 🚧.

See the legacy branch for the branch tracking the latest 0.7 release.

Firezone is a self-hosted VPN server and Linux firewall

Manage remote access through an intuitive web interface and CLI utility.
Deploy on your own infrastructure to keep control of your network traffic.
Built on WireGuard® to be stable, performant, and lightweight.

Get Started

Follow our deploy guide to install your self-hosted instance of Firezone.

Or, if you're on a supported platform, try our auto-install script.

Using Firezone in production at your organization? Contact us to learn about our Enterprise Plan.

Features

Fast: Uses WireGuard® to be 3-4 times faster than OpenVPN.
SSO Integration: Authenticate using any identity provider with an OpenID Connect (OIDC) connector.
Containerized: All dependencies are bundled via Docker.
Simple: Takes minutes to set up. Manage via a simple CLI.
Secure: Runs unprivileged. HTTPS enforced. Encrypted cookies.
Firewall included: Uses Linux nftables to block unwanted egress traffic.

Anti-features

Firezone is not:

An inbound firewall
A tool for creating mesh networks
A full-featured router
An IPSec or OpenVPN server

Documentation

Additional documentation on general usage, troubleshooting, and configuration can be found at https://docs.firezone.dev.

Get Help

If you're looking for help installing, configuring, or using Firezone, check our community support options:

Discussion Forums: Ask questions, report bugs, and suggest features.
Public Slack Group: Join live discussions, meet other users, and get to know the contributors.
Open a PR: Contribute a bugfix or make a contribution to Firezone.

If you need help deploying or maintaining Firezone for your business, consider contacting us about our paid support plan.

Star History

Package Repository

Package repository hosting is graciously provided by Cloudsmith. Cloudsmith is the only fully hosted, cloud-native, universal package management solution, that enables your organization to create, store and share packages in any format, to any place, with total confidence.

Developing and Contributing

See CONTRIBUTING.md.

Security

See SECURITY.md.

License

Portions of this software are licensed as follows:

All content residing under the "elixir/" directory of this repository, if that directory exists, is licensed under the "Elastic License 2.0" license defined in "elixir/LICENSE".
All third party components incorporated into the Firezone Software are licensed under the original license provided by the owner of the applicable component.
Content outside of the above mentioned directories or restrictions above is available under the "Apache 2.0 License" license as defined in "LICENSE".

WireGuard® is a registered trademark of Jason A. Donenfeld.

Languages

Elixir 57.1%

Rust 29.2%

TypeScript 5.9%

Swift 3.3%

Kotlin 1.8%

Other 2.5%