mirror of
https://github.com/outbackdingo/firezone.git
synced 2026-01-27 10:18:54 +00:00
fe77897da6
Bumps [rack](https://github.com/rack/rack) from 2.2.4 to 2.2.7. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/rack/rack/releases">rack's releases</a>.</em></p> <blockquote> <h2>v2.2.7</h2> <h2>What's Changed</h2> <ul> <li>Correct the year number in the changelog by <a href="https://github.com/kimulab"><code>@kimulab</code></a> in <a href="https://redirect.github.com/rack/rack/pull/2015">rack/rack#2015</a></li> <li>Support underscore in host names for Rack 2.2 (Fixes <a href="https://redirect.github.com/rack/rack/issues/2070">#2070</a>) by <a href="https://github.com/jeremyevans"><code>@jeremyevans</code></a> in <a href="https://redirect.github.com/rack/rack/pull/2071">rack/rack#2071</a></li> </ul> <h2>New Contributors</h2> <ul> <li><a href="https://github.com/kimulab"><code>@kimulab</code></a> made their first contribution in <a href="https://redirect.github.com/rack/rack/pull/2015">rack/rack#2015</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/rack/rack/compare/v2.2.6.4...v2.2.7">https://github.com/rack/rack/compare/v2.2.6.4...v2.2.7</a></p> <h2>v2.2.6.4</h2> <p>No release notes provided.</p> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/rack/rack/blob/main/CHANGELOG.md">rack's changelog</a>.</em></p> <blockquote> <h1>Changelog</h1> <p>All notable changes to this project will be documented in this file. For info on how to format all future additions to this file please reference <a href="https://keepachangelog.com/en/1.0.0/">Keep A Changelog</a>.</p> <h2>Unreleased</h2> <h3>SPEC Changes</h3> <ul> <li><code>rack.input</code> is now optional. (<a href="https://redirect.github.com/rack/rack/pull/1997">#1997</a>, [<a href="https://github.com/ioquatix"><code>@ioquatix</code></a>])</li> </ul> <h3>Changed</h3> <ul> <li><code>rack.input</code> is now optional, and if missing, will raise an error. Use this to fail on multipart parsing a request without an input body. (<a href="https://redirect.github.com/rack/rack/pull/2018">#2018</a>, [<a href="https://github.com/ioquatix"><code>@ioquatix</code></a>])</li> <li>Introduce <code>module Rack::BadRequest</code> which is included in multipart and query parser errors. (<a href="https://redirect.github.com/rack/rack/pull/2019">#2019</a>, [<a href="https://github.com/ioquatix"><code>@ioquatix</code></a>])</li> <li>MIME type for JavaScript files (<code>.js</code>) changed from <code>application/javascript</code> to <code>text/javascript</code> (<a href="1bd0f1597d"><code>1bd0f15</code></a>)</li> <li>Add <code>.mjs</code> MIME type (<a href="https://redirect.github.com/rack/rack/pull/2057">#2057</a>, [<a href="https://github.com/axilleas"><code>@axilleas</code></a>])</li> <li>Update MIME types associated to <code>.ttf</code>, <code>.woff</code>, <code>.woff2</code> and <code>.otf</code> extensions to use mondern <code>font/*</code> types. (<a href="https://redirect.github.com/rack/rack/pull/2065">#2065</a>, [<a href="https://github.com/davidstosik"><code>@davidstosik</code></a>])</li> </ul> <h2>[3.0.8] - 2023-06-14</h2> <ul> <li>Fix some unused variable verbose warnings. (<a href="https://redirect.github.com/rack/rack/pull/2084">#2084</a>, [<a href="https://github.com/jeremyevans"><code>@jeremyevans</code></a>], <a href="https://github.com/skipkayhil"><code>@skipkayhil</code></a>)</li> </ul> <h2>[3.0.7] - 2023-03-16</h2> <ul> <li>Make query parameters without <code>=</code> have <code>nil</code> values. (<a href="https://redirect.github.com/rack/rack/pull/2059">#2059</a>, [<a href="https://github.com/jeremyevans"><code>@jeremyevans</code></a>])</li> </ul> <h2>[3.0.6.1] - 2023-03-13</h2> <ul> <li>[CVE-2023-27539] Avoid ReDoS in header parsing</li> </ul> <h2>[3.0.6] - 2023-03-13</h2> <ul> <li>Add <code>QueryParser#missing_value</code> for handling missing values + tests. (<a href="https://redirect.github.com/rack/rack/pull/2052">#2052</a>, [<a href="https://github.com/ioquatix"><code>@ioquatix</code></a>])</li> </ul> <h2>[3.0.5] - 2023-03-13</h2> <ul> <li>Split form/query parsing into two steps. (<a href="https://redirect.github.com/rack/rack/pull/2038">#2038</a>, <a href="https://github.com/matthewd"><code>@matthewd</code></a>)</li> </ul> <h2>[3.0.4.2] - 2023-03-02</h2> <ul> <li>[CVE-2023-27530] Introduce multipart_total_part_limit to limit total parts</li> </ul> <h2>[3.0.4.1] - 2023-01-17</h2> <ul> <li>[CVE-2022-44571] Fix ReDoS vulnerability in multipart parser</li> <li>[CVE-2022-44570] Fix ReDoS in Rack::Utils.get_byte_ranges</li> <li>[CVE-2022-44572] Forbid control characters in attributes (also ReDoS)</li> </ul> <h2>[3.0.4] - 2023-01-17</h2> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="983b6e3b29"><code>983b6e3</code></a> Bump patch version.</li> <li><a href="e5a30bf548"><code>e5a30bf</code></a> Support underscore in host names for Rack 2.2 (Fixes <a href="https://redirect.github.com/rack/rack/issues/2070">#2070</a>) (<a href="https://redirect.github.com/rack/rack/issues/2071">#2071</a>)</li> <li><a href="70185aa15a"><code>70185aa</code></a> Merge branch '2-2-sec' into 2-2-stable</li> <li><a href="27addc7f1a"><code>27addc7</code></a> bump version</li> <li><a href="ee7919ea04"><code>ee7919e</code></a> Avoid ReDoS problem</li> <li><a href="6f79642d90"><code>6f79642</code></a> Merge branch '2-2-sec' into 2-2-stable</li> <li><a href="d6b5b2bab8"><code>d6b5b2b</code></a> bump version</li> <li><a href="9aac3757fe"><code>9aac375</code></a> Limit all multipart parts, not just files</li> <li><a href="cd4c9f0e4b"><code>cd4c9f0</code></a> Correct the year in the changelog (<a href="https://redirect.github.com/rack/rack/issues/2015">#2015</a>)</li> <li><a href="2606ac5d5d"><code>2606ac5</code></a> bumping version</li> <li>Additional commits viewable in <a href="https://github.com/rack/rack/compare/2.2.4...v2.2.7">compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/firezone/firezone/network/alerts). </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Note: 🚧 The main branch is undergoing major restructuring in preparation for the 1.0 release 🚧.
See the legacy branch for the branch tracking the latest 0.7 release.
Firezone is a self-hosted VPN server and Linux firewall
- Manage remote access through an intuitive web interface and CLI utility.
- Deploy on your own infrastructure to keep control of your network traffic.
- Built on WireGuard® to be stable, performant, and lightweight.
Get Started
Follow our deploy guide to install your self-hosted instance of Firezone.
Or, if you're on a supported platform, try our auto-install script.
Using Firezone in production at your organization? Contact us to learn about our Enterprise Plan.
Features
- Fast: Uses WireGuard® to be 3-4 times faster than OpenVPN.
- SSO Integration: Authenticate using any identity provider with an OpenID Connect (OIDC) connector.
- Containerized: All dependencies are bundled via Docker.
- Simple: Takes minutes to set up. Manage via a simple CLI.
- Secure: Runs unprivileged. HTTPS enforced. Encrypted cookies.
- Firewall included: Uses Linux nftables to block unwanted egress traffic.
Anti-features
Firezone is not:
- An inbound firewall
- A tool for creating mesh networks
- A full-featured router
- An IPSec or OpenVPN server
Documentation
Additional documentation on general usage, troubleshooting, and configuration can be found at https://docs.firezone.dev.
Get Help
If you're looking for help installing, configuring, or using Firezone, check our community support options:
- Discussion Forums: Ask questions, report bugs, and suggest features.
- Public Slack Group: Join live discussions, meet other users, and get to know the contributors.
- Open a PR: Contribute a bugfix or make a contribution to Firezone.
If you need help deploying or maintaining Firezone for your business, consider contacting us about our paid support plan.
Star History
Package Repository
Package repository hosting is graciously provided by Cloudsmith. Cloudsmith is the only fully hosted, cloud-native, universal package management solution, that enables your organization to create, store and share packages in any format, to any place, with total confidence.
Developing and Contributing
See CONTRIBUTING.md.
Security
See SECURITY.md.
License
See LICENSE.
WireGuard® is a registered trademark of Jason A. Donenfeld.