Add track() API for custom event tracking + config updates via SSE#984
Draft
Add track() API for custom event tracking + config updates via SSE#984
Conversation
Codecov Report❌ Patch coverage is 📢 Thoughts on this report? Let us know! |
hansott
commented
Apr 1, 2026
…ack-api * 'main' of github.com:AikidoSec/firewall-node: (25 commits) Improve serverless docs for Lambda and Cloud Functions Simplify onPackageWrapped logic Add tests for duplicate class names across scopes Add test for nested classes with same className Skip failing SQLite3 test with latest Node.js version Switch to new Safe Chain version Remove startup warning for AIKIDO_BLOCK_INVALID_SQL Fix tests for AIKIDO_BLOCK_INVALID_SQL default change Default AIKIDO_BLOCK_INVALID_SQL to off Fix method name handling Fix linter recommendation Add className filter to MethodDefinition instrumentation Strip devDependencies and scripts from published package.json Ignore caniuse-lite is outdated in e2e test IDOR: Add dialect to cache key Update SQLite3 test to expect Zen blocking on invalid SQL Remove redundant JSDoc comment Keep dry mode test in original position to reduce diff Add docs for AIKIDO_BLOCK_INVALID_SQL env var Use AIKIDO_BLOCK_INVALID_SQL env var instead of server config ...
Use Server-Sent Events to receive near-instant config updates from zen-realtime instead of polling every 60 seconds. Falls back to polling when the SSE connection is unavailable. Vendors the eventsource-parser library (MIT) for SSE protocol parsing.
SSE is now the only mechanism for config updates — no more polling. Verbose SSE logging (connect, disconnect, chunks, events) is gated behind AIKIDO_DEBUG_SSE=true. Removes unused getConfigLastUpdatedAt.
…ack-api * 'main' of github.com:AikidoSec/firewall-node: Fix test failing in CI Skip grouped rate limiting for excluded users Fix too new version not allowed by Safe Chain Support @prisma/adapter-pg v7 Fix failing test because of ads logged to stderr Fix ESM tests Extend tests Allow disabling rate limiting per user Support Undici v8 Update Next.js instructions and run all e2e tests on v24 Remove debug logs Add Next.js v16 e2e test and update docs Support Mistral Ai v2 and v1 in ESM apps Fix unprotected Prisma methods
hansott
changed the title
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
2 participants
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
No description provided.