Smart SSH, HTTPS and MySQL bastion that needs no client-side software
Find a file
dependabot[bot] 5cf8897822
Bump svelte-check from 3.8.6 to 4.0.2 in /warpgate-web (#1065)
Bumps [svelte-check](https://github.com/sveltejs/language-tools) from
3.8.6 to 4.0.2.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/sveltejs/language-tools/releases">svelte-check's
releases</a>.</em></p>
<blockquote>
<h2>svelte-check-4.0.2</h2>
<ul>
<li>fix: ensure components typed through Svelte 5's
<code>Component</code> interface get proper intellisense</li>
</ul>
<h2>svelte-check-4.0.1</h2>
<ul>
<li>fix: remove ancient <code>process</code> augmentation from internal
<code>d.ts</code> file</li>
</ul>
<h2>svelte-check-4.0.0</h2>
<ul>
<li>chore: bump magic-string (<a
href="https://redirect.github.com/sveltejs/language-tools/issues/2476">#2476</a>)</li>
<li>chore: switch from fast-glob to fdir (<a
href="https://redirect.github.com/sveltejs/language-tools/issues/2433">#2433</a>)</li>
<li>fix: detect <!-- raw HTML omitted --> tag (<a
href="https://redirect.github.com/sveltejs/language-tools/issues/2482">#2482</a>)</li>
<li>feat: better type checking for bindings in Svelte 5 (<a
href="https://redirect.github.com/sveltejs/language-tools/issues/2477">#2477</a>)</li>
<li>feat: replace svelte-preprocess with barebones TS preprocessor (<a
href="https://redirect.github.com/sveltejs/language-tools/issues/2452">#2452</a>)</li>
<li>feat: project reference support (<a
href="https://redirect.github.com/sveltejs/language-tools/issues/2463">#2463</a>)</li>
</ul>
<h3>Breaking changes</h3>
<ul>
<li>require Svelte 4 or later (<a
href="https://redirect.github.com/sveltejs/language-tools/issues/2453">#2453</a>)</li>
<li>make TypeScript a peer dependency, require TS 5 or later (<a
href="https://redirect.github.com/sveltejs/language-tools/issues/2453">#2453</a>)</li>
<li>require node 18 or later (<a
href="https://redirect.github.com/sveltejs/language-tools/issues/2453">#2453</a>)</li>
<li><code>process</code> augmentation (declaring a
<code>process.browser</code> field) was removed</li>
<li>slight changes to how files are assigned to which tsconfig.json (<a
href="https://redirect.github.com/sveltejs/language-tools/issues/1234">#1234</a>,
<a
href="https://redirect.github.com/sveltejs/language-tools/issues/2463">#2463</a>)</li>
<li>slight changes to how Svelte module resolution works;
<code>.svelte</code> files now take precedence over
<code>.svelte.js/ts</code> files (if both exist) (<a
href="https://redirect.github.com/sveltejs/language-tools/issues/2481">#2481</a>)</li>
<li>language-server now forces fewer TypeScript options. Most notably
<code>skipLibCheck</code> is no longer forced to <code>true</code>,
which may result in <code>d.ts</code> files now being checked in your
project, which they were not before, revealing type errors. Either fix
those or add <code>&quot;skipLibCheck&quot;: true</code> to your
<code>tsconfig.json</code> (<a
href="https://redirect.github.com/sveltejs/language-tools/issues/1976">#1976</a>,
<a
href="https://redirect.github.com/sveltejs/language-tools/issues/2463">#2463</a>)</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="0921d657a5"><code>0921d65</code></a>
fix: update SvelteKit trailingSlash types (<a
href="https://redirect.github.com/sveltejs/language-tools/issues/2496">#2496</a>)</li>
<li><a
href="fbd3b81c26"><code>fbd3b81</code></a>
fix: add constraint to inference</li>
<li><a
href="9221ca336d"><code>9221ca3</code></a>
fix: remove process declaration</li>
<li><a
href="840c60ffbd"><code>840c60f</code></a>
chore: add homepage/repository fields</li>
<li><a
href="74f3216b96"><code>74f3216</code></a>
chore: show more error diagnostics for emitDts</li>
<li><a
href="399ad6a08d"><code>399ad6a</code></a>
fix: detect <code>\&lt;script module&gt;</code> tag (<a
href="https://redirect.github.com/sveltejs/language-tools/issues/2482">#2482</a>)</li>
<li><a
href="d99497176d"><code>d994971</code></a>
feat: allow autoImportFileExcludePatterns to ignore files outside the
root (#...</li>
<li><a
href="a3a7a91d0f"><code>a3a7a91</code></a>
fix: Svelte module resolution tweaks (<a
href="https://redirect.github.com/sveltejs/language-tools/issues/2481">#2481</a>)</li>
<li><a
href="8c080cf362"><code>8c080cf</code></a>
feat: better type checking for bindings in Svelte 5 (<a
href="https://redirect.github.com/sveltejs/language-tools/issues/2477">#2477</a>)</li>
<li><a
href="ec5fef4b7d"><code>ec5fef4</code></a>
chore: bump magic-string (<a
href="https://redirect.github.com/sveltejs/language-tools/issues/2476">#2476</a>)</li>
<li>Additional commits viewable in <a
href="https://github.com/sveltejs/language-tools/compare/svelte-check-3.8.6...svelte-check-4.0.2">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=svelte-check&package-manager=npm_and_yarn&previous-version=3.8.6&new-version=4.0.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-09-23 11:34:30 +02:00
.cargo Validate a TOTP code before saving it (#1055) 2024-09-11 09:30:02 +02:00
.github Group dependabot version bump prs if they are minor or patch bumps (#1049) 2024-09-05 16:53:45 +02:00
docker bumped rust in docker image 2024-07-16 12:44:23 +02:00
docs added readme banner 2022-08-08 16:03:35 +02:00
oidc-test OIDC RP-initiated logout (SSO single logout) support (#992) 2024-09-10 23:16:42 +02:00
tests word 2024-03-23 21:54:21 +01:00
warpgate bumped rustls & related pkgs (#1066) 2024-09-18 11:28:39 +02:00
warpgate-admin bumped rustls & related pkgs (#1066) 2024-09-18 11:28:39 +02:00
warpgate-common bumped rustls & related pkgs (#1066) 2024-09-18 11:28:39 +02:00
warpgate-core bumped rustls & related pkgs (#1066) 2024-09-18 11:28:39 +02:00
warpgate-database-protocols bumped rustls & related pkgs (#1066) 2024-09-18 11:28:39 +02:00
warpgate-db-entities bumped rustls & related pkgs (#1066) 2024-09-18 11:28:39 +02:00
warpgate-db-migrations bumped rustls & related pkgs (#1066) 2024-09-18 11:28:39 +02:00
warpgate-protocol-http bumped rustls & related pkgs (#1066) 2024-09-18 11:28:39 +02:00
warpgate-protocol-mysql bumped rustls & related pkgs (#1066) 2024-09-18 11:28:39 +02:00
warpgate-protocol-ssh bumped rustls & related pkgs (#1066) 2024-09-18 11:28:39 +02:00
warpgate-sso bumped rustls & related pkgs (#1066) 2024-09-18 11:28:39 +02:00
warpgate-web Bump svelte-check from 3.8.6 to 4.0.2 in /warpgate-web (#1065) 2024-09-23 11:34:30 +02:00
.all-contributorsrc Add @SheaSmith as a contributor 2024-03-23 21:59:52 +01:00
.bumpversion.cfg Bump version: 0.10.1 → 0.10.2 2024-08-14 22:59:52 +02:00
.dockerignore
.env
.flake8 added e2e tests 2022-08-14 12:36:49 +02:00
.gitignore Validate a TOTP code before saving it (#1055) 2024-09-11 09:30:02 +02:00
Cargo.lock bumped rustls & related pkgs (#1066) 2024-09-18 11:28:39 +02:00
Cargo.toml bumped rust 2024-01-23 12:05:59 +01:00
clippy.toml
Cranky.toml
Cross.toml build updates 2022-11-22 00:52:43 +01:00
deny.toml
justfile Validate a TOTP code before saving it (#1055) 2024-09-11 09:30:02 +02:00
LICENSE
README.md Update README.md 2024-09-04 17:03:37 +02:00
rust-toolchain bump rust some more 2024-07-16 10:40:27 +02:00
rustfmt.toml
sonar-project.properties added e2e tests 2022-08-14 12:36:49 +02:00



GitHub All Releases     Discord


Warpgate is a smart SSH, HTTPS and MySQL bastion host for Linux that doesn't need special client apps.

  • Set it up in your DMZ, add user accounts and easily assign them to specific hosts and URLs within the network.
  • Warpgate will record every session for you to view (live) and replay later through a built-in admin web UI.
  • Not a jump host - forwards your connections straight to the target instead.
  • Native 2FA and SSO support (TOTP & OpenID Connect)
  • Single binary with no dependencies.
  • Written in 100% safe Rust.

Getting started & downloads

image
image image

Project Status

The project is currently in alpha stage and is gathering community feedback. See the official roadmap for the upcoming features.

In particular, we're working on:

  • Requesting admin approvals for sessions
  • Support for tunneling PostgreSQL connections,
  • and much more.

How it works

Warpgate is a service that you deploy on the bastion/DMZ host, which will accept SSH, HTTPS and MySQL connections and provide an (optional) web admin UI.

Run warpgate setup to interactively generate a config file, including port bindings. See Getting started for details.

It receives connections with specifically formatted credentials, authenticates the user locally, connects to the target itself, and then connects both parties together while (optionally) recording the session.

When connecting through HTTPS, Warpgate presents a selection of available targets, and will then proxy all traffic in a session to the selected target. You can switch between targets at any time.

You manage the target and user lists and assign them to each other through the admin UI, and the session history is stored in an SQLite database (default: in /var/lib/warpgate).

You can also use the admin web interface to view the live session list, review session recordings, logs and more.

Contributing / building from source

  • You'll need Rust, NodeJS and Yarn
  • Clone the repo
  • Just is used to run tasks - install it: cargo install just
  • Install the admin UI deps: just yarn
  • Build the frontend: just yarn build
  • Build Warpgate: cargo build (optionally --release)

The binary is in target/{debug|release}.

Tech stack

  • Rust 🦀
    • HTTP: poem-web
    • Database: SQLite via sea-orm + sqlx
    • SSH: russh
  • Typescript
    • Svelte
    • Bootstrap

Backend API

  • Warpgate admin and user facing APIs use autogenerated OpenAPI schemas and SDKs. To update the SDKs after changing the query/response structures, run just openapi-all.

Contributors

Thanks goes to these wonderful people (emoji key):

Eugeny
Eugeny

💻
Spencer Heywood
Spencer Heywood

💻
Andreas Piening
Andreas Piening

💻
Niklas
Niklas

💻
Nooblord
Nooblord

💻
Shea Smith
Shea Smith

💻

This project follows the all-contributors specification. Contributions of any kind welcome!