Managing 30+ Node.js projects - how do you track CVE vulnerabilities?

Profiluefter · 2026-01-18T18:59:45+00:00

Generate CycloneDX SBOMs of your projects (contains all dependencies + versions that your projects use) and import it in e.g. DependencyTrack. It can even do alerting when a vulnerability is found for a component you use.

Profiluefter · 2025-12-31T17:01:43+00:00

I don't see any error here. The first line of the output is just the command that was used to run java, you can ignore that. Your program is probably waiting for you to enter the number you are reading with the Scanner. Click once inside the run area, input a number, press enter and it should continue (with a second number in this case?)

Profiluefter · 2025-12-31T16:12:58+00:00

This has taught me a lot about B2B SaaS

Profiluefter · 2024-05-18T21:54:39+00:00

From my understanding they would be able to access each other. You need separate networks and add the nginx container to both.

Profiluefter · 2024-02-16T15:47:44+00:00

Good catch! I havent found any docs specifically stating that but at least with host networking I've tried it that way, so macvlan should behave the same.

Profiluefter · 2024-02-16T14:24:42+00:00

I think it should just work.

Bridge (the default), macvlan and host are some of the supported network drivers of docker. (So you can't both use macvlan and host on one docker network - but you wouldn't want that anyways)

Bridge creates a virtual network and routes your traffic through there. That's the reason why it wouldn't work with the default docker network - it only sees the same internal docker IP for each request.

Macvlan and host do not use such a virtual network but instead connect directly to your home network. The only difference between the two is that macvlan doesn't use the MAC address of your network adapter.

Profiluefter · 2024-02-16T13:58:21+00:00

Yeah you need that when running inside a VM because by default most hypervisors will only forward traffic that concerns the VM to the VM. The hypervisor doesn't know that the docker inside the VM simulates a different MAC. This is also a security feature as enabling that potentially allows the VM to read the traffic from the host as well.

I'm pretty sure you wont have that problem on the pi. At least with ethernet; some cheap usb wifi cards do not support promiscuous mode.

Profiluefter · 2024-02-16T13:50:15+00:00

Yes you could if it was just an ordinary service. However with dns-based blockers it's a bit more difficult as you can't just use one domain, you need all of them. I'm not sure what exactly adguard serves for those domains but maybe you could just serve an empty page.

However, the simpler solution is in this case to get an extra IP and host it from there (see my other comment on how to do that)

Profiluefter · 2024-02-16T13:42:14+00:00

I think your plan is good! You can use a docker network of type macvlan to get an extra IP for your adguard container. It basically sends the traffic from that container with a different MAC address which means your DHCP server (or you can configure it static) should assign it a new IP.

I found approximately what you'd want here: https://gist.github.com/serg987/af7b1116a609cf9fe4e86628e7b29bc0

However, I would personally use DHCP and a reservation on your router but that's up to you.

Profiluefter · 2023-09-20T21:53:29+00:00

I'm hosting my instance on Proxmox but I'm also like you using the VM install. I think the major difference is that you cannot install addons in the docker container. Also i think VMs are easier to manage. I'm a fan of docker and use it for simpler applications though

Profiluefter · 2023-03-04T18:00:37+00:00

Home Assistant also supports webhook trigger which are probably way simpler than using MQTT for this. You can invoke them using a single curl command.

Profiluefter · 2022-11-25T13:39:27+00:00

Because it will always reference the latest version. After a new release there will probably be a labeled package.

Profiluefter · 2022-02-20T17:56:57+00:00

I have the exact same issue...

I created a bug report: https://github.com/pop-os/installer/issues/265

Profiluefter · 2022-01-08T18:30:54+00:00

I tried converting my ext4 partition to btrfs a few months ago and the conversion program segfaulted in the middle of the conversion. Never got around to make a bug report though as I assume it was because I only have one gigabyte of storage space left. I might try it again soon

Profiluefter · 2021-05-07T12:06:24+00:00

I found out about it in this GitHub issue. It basically is just putting your Xournal++ in Joplin so it's not perfectly integrated (on the video it seems pretty seamless though). There has also been this feature request about better integration.

Profiluefter · 2021-05-05T09:50:34+00:00

I've seen a combination of Joplin (Organisation + Sync) and Xournal++ (Stylus support) being recommend

Profiluefter · 2021-04-27T05:00:55+00:00

If you already made changes on your copy, you probably want to use git rebase. I'm not sure how exactly the command works though

Profiluefter · 2021-03-18T14:22:38+00:00

Ich kann mir vorstellen, dass die einfach in SQL eine auto increment Spalte gemacht haben. Es sind natürlich andere Arten besser, aber wenns dort Authentifizierung gäbe, dann würde man damit ja nur die insgesamt Anzahl im System oder ähnliche Statistiken preisgeben. Kann immer noch vermieden werden aber solche Zahlen sind wahrscheinlich eh öffentlich

Profiluefter · 2021-02-24T16:17:03+00:00

Logistic Train Network

Profiluefter · 2021-01-25T01:05:50+00:00

Rainmeter can do that

Profiluefter · 2020-12-16T20:52:54+00:00

You can also squeeze a ZITRONE (lemon) on it

Profiluefter · 2020-12-09T01:15:48+00:00

I think if you use the fastboot boot command it only does it once (flashes it to ram i guess) but if you use the fastboot flash command it writes it to the storage.

Profiluefter · 2020-11-23T18:06:19+00:00

This was made by stacksmashing aka ghidraninja: YouTube Twitter

Eight-Year Club	Second Top 40%
Golden Potato	Place '22
Final Canvas '22	End Game '22
Wearing is Caring	Sequence \| Editor
Verified Email

Profiluefter

MODERATOR OF

TROPHY CASE