Yonle on Nostr: #bostr version 3.0.10 security release. Nostr relay proxy aggregator that trims your ...
#bostr version 3.0.10 security release.
Nostr relay proxy aggregator that trims your bandwidth usage when using #nostr.
https://github.com/Yonle/bostr/releases/tag/3.0.10You really need to be clever on writing code when it comes to security. Sometime you think this would be fine, But one day it proves that your code has problem with it.
And that's what happened here. This is a bit serious if you use bostr only for private, So please update your bouncer as this is a major version for that.
## what's new
- Fix bostr let everyone in even having `authorized_keys` being set when `noscraper` is set to `true`.
## upgrading
- npm: `npm upgrade bostr@3.0.10` and restart
- source: `git pull && npm install` and restart
- bun: `git pull && bun install` and restart
**Full Changelog**:
https://github.com/Yonle/bostr/compare/3.0.9...3.0.10Published at
2024-08-01 16:08:13Event JSON
{
"id": "3ea3582b2fad69318317a1e89d0274171fcf3fa4be8126bc326ee9a77c25d16b",
"pubkey": "347a2370900d19b4e4756221594e8bda706ae5c785de09e59e4605f91a03f49c",
"created_at": 1722528493,
"kind": 1,
"tags": [
[
"t",
"bostr"
],
[
"t",
"nostr"
],
[
"r",
"https://github.com/Yonle/bostr/releases/tag/3.0.10"
],
[
"r",
"bostr@3.0.10"
],
[
"r",
"https://github.com/Yonle/bostr/compare/3.0.9...3.0.10"
]
],
"content": "#bostr version 3.0.10 security release.\n\nNostr relay proxy aggregator that trims your bandwidth usage when using #nostr.\n\nhttps://github.com/Yonle/bostr/releases/tag/3.0.10\n\nYou really need to be clever on writing code when it comes to security. Sometime you think this would be fine, But one day it proves that your code has problem with it.\n\nAnd that's what happened here. This is a bit serious if you use bostr only for private, So please update your bouncer as this is a major version for that.\n\n## what's new\n- Fix bostr let everyone in even having `authorized_keys` being set when `noscraper` is set to `true`.\n\n## upgrading\n- npm: `npm upgrade bostr@3.0.10` and restart\n- source: `git pull \u0026\u0026 npm install` and restart\n- bun: `git pull \u0026\u0026 bun install` and restart\n\n**Full Changelog**: https://github.com/Yonle/bostr/compare/3.0.9...3.0.10",
"sig": "08444de12404bf90c8b94ad2046cd3cce8ac44584aa22437366bd54da9e2b1aecd60fe4ea5c9d5b515a2dbc42d9f1a4d38ab08da3131c607e4bfa2b752af4d3c"
}