Merge pull request #1571 from FalkorDB/staging

Update dependencies and enhance connection info features

Author: Anchel123

.github/workflows/helm-chart.yml

@@ -30,7 +30,7 @@ jobs:
           fetch-depth: 0
 
       - name: Set up Helm
-        uses: azure/setup-helm@1a275c3b69536ee54be43f2070a358922e12c8d4 # v4.3.1
+        uses: azure/setup-helm@dda3372f752e03dde6b3237bc9431cdc2f7a02a2 # v5.0.0
         with:
           version: v3.14.0
 
@@ -67,7 +67,7 @@ jobs:
         uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
 
       - name: Set up Helm
-        uses: azure/setup-helm@1a275c3b69536ee54be43f2070a358922e12c8d4 # v4.3.1
+        uses: azure/setup-helm@dda3372f752e03dde6b3237bc9431cdc2f7a02a2 # v5.0.0
         with:
           version: v3.14.0
 
@@ -117,7 +117,7 @@ jobs:
           fetch-depth: 0
 
       - name: Set up Helm
-        uses: azure/setup-helm@1a275c3b69536ee54be43f2070a358922e12c8d4 # v4.3.1
+        uses: azure/setup-helm@dda3372f752e03dde6b3237bc9431cdc2f7a02a2 # v5.0.0
         with:
           version: v3.14.0
 
@@ -235,7 +235,7 @@ jobs:
           cat installation-instructions.txt
 
       - name: Upload package as artifact
-        uses: actions/upload-artifact@bbbca2ddaa5d8feaa63e36b76fdaad77386f024f # v4.4.3
+        uses: actions/upload-artifact@bbbca2ddaa5d8feaa63e36b76fdaad77386f024f # v7.0.0
         with:
           name: helm-chart
           path: .helm-charts/*.tgz

.github/workflows/nextjs.yml

@@ -35,15 +35,15 @@ jobs:
       security-events: write
     steps:
       - name: Checkout
-        uses: actions/checkout@v6
+        uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6
       - name: Setup Node
-        uses: actions/setup-node@v4
+        uses: actions/setup-node@53b83947a5a98c8d113130e565377fae1a50d02f # v6.3.0
         with:
           node-version: "24"
           cache: npm
 
       - name: Restore cache
-        uses: actions/cache@v4
+        uses: actions/cache@668228422ae6a00e4ad889ee87cd7109ec5666a7 # v5.0.4
         with:
           path: |
             .next/cache
@@ -67,7 +67,7 @@ jobs:
       security-events: write
     steps:
       - name: Checkout
-        uses: actions/checkout@v6
+        uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6
 
       - name: Set up Docker Buildx
         uses: docker/setup-buildx-action@4d04d5d9486b7bd6fa91e7baf45bbb4f8b9deedd # v4
@@ -85,7 +85,7 @@ jobs:
 
       - name: Run Trivy vulnerability scanner
         id: trivy-scan
-        uses: aquasecurity/trivy-action@1bd062560b422f5944df1de50abd05162bea079e
+        uses: aquasecurity/trivy-action@57a97c7e7821a5776cebc9bb87c984fa69cba8f1 # v0.35.0
         continue-on-error: true
         with:
           image-ref: 'falkordb/falkordb-browser:test'
@@ -111,14 +111,14 @@ jobs:
           fi
 
       - name: Upload Trivy results to GitHub Security tab
-        uses: github/codeql-action/upload-sarif@v4
+        uses: github/codeql-action/upload-sarif@c10b8064de6f491fea524254123dbe5e09572f13 # v4
         if: always()
         with:
           sarif_file: 'trivy-results.sarif'
 
       - name: Generate Trivy report for PR
         if: github.event_name == 'pull_request'
-        uses: aquasecurity/trivy-action@1bd062560b422f5944df1de50abd05162bea079e
+        uses: aquasecurity/trivy-action@57a97c7e7821a5776cebc9bb87c984fa69cba8f1 # v0.35.0
         continue-on-error: true
         with:
           image-ref: 'falkordb/falkordb-browser:test'
@@ -132,7 +132,7 @@ jobs:
 
       - name: Comment PR with Trivy results
         if: github.event_name == 'pull_request'
-        uses: actions/github-script@v8
+        uses: actions/github-script@ed597411d8f924073f98dfc5c65a23a2325f34cd # v8
         with:
           script: |
             const fs = require('fs');
@@ -176,7 +176,7 @@ jobs:
             }
 
       - name: Enforce HIGH/CRITICAL vulnerability threshold
-        uses: aquasecurity/trivy-action@22438a435773de8c97dc0958cc0b823c45b064ac
+        uses: aquasecurity/trivy-action@57a97c7e7821a5776cebc9bb87c984fa69cba8f1 # v0.35.0
         with:
           image-ref: 'falkordb/falkordb-browser:test'
           format: 'table'

.github/workflows/playwright.yml

@@ -34,14 +34,14 @@ jobs:
     runs-on: ubuntu-latest
     timeout-minutes: 15
     steps:
-      - uses: actions/checkout@v6
-      - uses: actions/setup-node@v4
+      - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6
+      - uses: actions/setup-node@53b83947a5a98c8d113130e565377fae1a50d02f # v6.3.0
         with:
           node-version: 24
           cache: 'npm'
       - name: Cache node modules
         id: cache-npm
-        uses: actions/cache@v4
+        uses: actions/cache@668228422ae6a00e4ad889ee87cd7109ec5666a7 # v5.0.4
         with:
           path: |
             ~/.npm
@@ -86,7 +86,7 @@ jobs:
       - name: Build application
         run: npm run build
       - name: Upload build output
-        uses: actions/[email protected]
+        uses: actions/upload-artifact@bbbca2ddaa5d8feaa63e36b76fdaad77386f024f # v7.0.0
         with:
           name: nextjs-build-${{ github.run_id }}
           path: .next/
@@ -115,13 +115,13 @@ jobs:
           - 6380:6379
 
     steps:
-      - uses: actions/checkout@v6
-      - uses: actions/setup-node@v4
+      - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6
+      - uses: actions/setup-node@53b83947a5a98c8d113130e565377fae1a50d02f # v6.3.0
         with:
           node-version: 24
           cache: 'npm'
       - name: Restore dependencies cache
-        uses: actions/cache/restore@v4
+        uses: actions/cache/restore@668228422ae6a00e4ad889ee87cd7109ec5666a7 # v5.0.4
         with:
           path: |
             ~/.npm
@@ -132,7 +132,7 @@ jobs:
             ${{ runner.os }}-node-${{ hashFiles('**/package-lock.json') }}-
             ${{ runner.os }}-node-
       - name: Download build output
-        uses: actions/download-artifact@v8
+        uses: actions/download-artifact@3e5f45b2cfb9172054b4087a40e8e0b5a5461e7c # v8
         with:
           name: nextjs-build-${{ github.run_id }}
           path: .next/
@@ -162,23 +162,23 @@ jobs:
             --reporter=dot,list
       - name: Upload test results
         if: always()
-        uses: actions/[email protected]
+        uses: actions/upload-artifact@bbbca2ddaa5d8feaa63e36b76fdaad77386f024f # v7.0.0
         with:
           name: playwright-results-shard-${{ matrix.shard }}-${{ github.run_id }}
           path: test-results/
           retention-days: 3
           if-no-files-found: ignore
       - name: Upload HTML report
         if: always()
-        uses: actions/[email protected]
+        uses: actions/upload-artifact@bbbca2ddaa5d8feaa63e36b76fdaad77386f024f # v7.0.0
         with:
           name: playwright-report-shard-${{ matrix.shard }}-${{ github.run_id }}
           path: playwright-report/
           retention-days: 30
           if-no-files-found: ignore
       - name: Upload server logs
         if: always()
-        uses: actions/[email protected]
+        uses: actions/upload-artifact@bbbca2ddaa5d8feaa63e36b76fdaad77386f024f # v7.0.0
         with:
           name: nextjs-logs-shard-${{ matrix.shard }}-${{ github.run_id }}
           path: nextjs.log
@@ -192,13 +192,13 @@ jobs:
     runs-on: ubuntu-latest
 
     steps:
-      - uses: actions/checkout@v6
-      - uses: actions/setup-node@v4
+      - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6
+      - uses: actions/setup-node@53b83947a5a98c8d113130e565377fae1a50d02f # v6.3.0
         with:
           node-version: 24
           cache: 'npm'
       - name: Restore dependencies cache
-        uses: actions/cache/restore@v4
+        uses: actions/cache/restore@668228422ae6a00e4ad889ee87cd7109ec5666a7 # v5.0.4
         with:
           path: |
             ~/.npm
@@ -209,7 +209,7 @@ jobs:
             ${{ runner.os }}-node-${{ hashFiles('**/package-lock.json') }}-
             ${{ runner.os }}-node-
       - name: Download build output
-        uses: actions/download-artifact@v8
+        uses: actions/download-artifact@3e5f45b2cfb9172054b4087a40e8e0b5a5461e7c # v8
         with:
           name: nextjs-build-${{ github.run_id }}
           path: .next/
@@ -298,23 +298,23 @@ jobs:
         run: docker stop falkordb-tls || true
       - name: Upload test results
         if: always()
-        uses: actions/[email protected]
+        uses: actions/upload-artifact@bbbca2ddaa5d8feaa63e36b76fdaad77386f024f # v7.0.0
         with:
           name: playwright-results-tls-${{ github.run_id }}
           path: test-results/
           retention-days: 3
           if-no-files-found: ignore
       - name: Upload HTML report
         if: always()
-        uses: actions/[email protected]
+        uses: actions/upload-artifact@bbbca2ddaa5d8feaa63e36b76fdaad77386f024f # v7.0.0
         with:
           name: playwright-report-tls-${{ github.run_id }}
           path: playwright-report/
           retention-days: 30
           if-no-files-found: ignore
       - name: Upload server logs
         if: always()
-        uses: actions/[email protected]
+        uses: actions/upload-artifact@bbbca2ddaa5d8feaa63e36b76fdaad77386f024f # v7.0.0
         with:
           name: nextjs-logs-tls-${{ github.run_id }}
           path: nextjs.log
@@ -328,13 +328,13 @@ jobs:
     runs-on: ubuntu-latest
 
     steps:
-      - uses: actions/checkout@v6
-      - uses: actions/setup-node@v4
+      - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6
+      - uses: actions/setup-node@53b83947a5a98c8d113130e565377fae1a50d02f # v6.3.0
         with:
           node-version: 24
           cache: 'npm'
       - name: Restore dependencies cache
-        uses: actions/cache/restore@v4
+        uses: actions/cache/restore@668228422ae6a00e4ad889ee87cd7109ec5666a7 # v5.0.4
         with:
           path: |
             ~/.npm
@@ -345,7 +345,7 @@ jobs:
             ${{ runner.os }}-node-${{ hashFiles('**/package-lock.json') }}-
             ${{ runner.os }}-node-
       - name: Download build output
-        uses: actions/download-artifact@v8
+        uses: actions/download-artifact@3e5f45b2cfb9172054b4087a40e8e0b5a5461e7c # v8
         with:
           name: nextjs-build-${{ github.run_id }}
           path: .next/
@@ -434,23 +434,23 @@ jobs:
           done
       - name: Upload test results
         if: always()
-        uses: actions/[email protected]
+        uses: actions/upload-artifact@bbbca2ddaa5d8feaa63e36b76fdaad77386f024f # v7.0.0
         with:
           name: playwright-results-cluster-${{ github.run_id }}
           path: test-results/
           retention-days: 3
           if-no-files-found: ignore
       - name: Upload HTML report
         if: always()
-        uses: actions/[email protected]
+        uses: actions/upload-artifact@bbbca2ddaa5d8feaa63e36b76fdaad77386f024f # v7.0.0
         with:
           name: playwright-report-cluster-${{ github.run_id }}
           path: playwright-report/
           retention-days: 30
           if-no-files-found: ignore
       - name: Upload server logs
         if: always()
-        uses: actions/[email protected]
+        uses: actions/upload-artifact@bbbca2ddaa5d8feaa63e36b76fdaad77386f024f # v7.0.0
         with:
           name: nextjs-logs-cluster-${{ github.run_id }}
           path: nextjs.log

.github/workflows/release-image.yml

@@ -87,7 +87,7 @@ jobs:
 
       - name: Run Trivy vulnerability scanner
         if: matrix.arch == 'amd64'
-        uses: aquasecurity/trivy-action@1bd062560b422f5944df1de50abd05162bea079e
+        uses: aquasecurity/trivy-action@57a97c7e7821a5776cebc9bb87c984fa69cba8f1
         with:
           image-ref: ${{ env.TRIVY_TAG }}
           format: 'table'

app/api/connection-info/route.ts

@@ -0,0 +1,79 @@
+import { NextResponse } from "next/server";
+import { getClient } from "@/app/api/auth/[...nextauth]/options";
+import { getCorsHeaders } from "@/app/api/utils";
+
+export async function OPTIONS(request: Request) {
+  return new NextResponse(null, { status: 204, headers: getCorsHeaders(request) });
+}
+
+function parseInfoField(info: string, field: string): string | undefined {
+  const escaped = field.replace(/[.*+?^${}()|[\]\\]/g, '\\$&');
+  const match = info.match(new RegExp(`${escaped}:(.+?)\\r?\\n`));
+  return match?.[1]?.trim();
+}
+
+// eslint-disable-next-line import/prefer-default-export
+export async function GET(request: Request) {
+  try {
+    const session = await getClient(request);
+
+    if (session instanceof NextResponse) {
+      return session;
+    }
+
+    const { client } = session;
+    const connection = await client.connection;
+
+    const info = await connection.info();
+    const clusterEnabled = parseInfoField(info, "redis_mode") === "cluster";
+    const replicationInfo = await connection.info("replication");
+    const connectedSlaves = Number(parseInfoField(replicationInfo, "connected_slaves") ?? "0");
+    const role = parseInfoField(replicationInfo, "role") ?? "master";
+
+    const result: Record<string, unknown> = {};
+
+    if (clusterEnabled) {
+      try {
+        const clusterNodesRaw: string = await connection.sendCommand(["CLUSTER", "NODES"]) as string;
+        const lines = clusterNodesRaw.split("\n").filter(line => line.trim().length > 0);
+        result.clusterNodes = lines.map(line => {
+          const parts = line.split(" ");
+          const addressPart = parts[1] ?? "";
+          const [addrWithPort, hostname] = addressPart.split(",");
+          const address = addrWithPort?.split("@")[0] ?? "";
+          const [ip, portStr] = address.split(":");
+          const host = hostname || ip;
+          const flags = parts[2] ?? "";
+          const flagList = flags.split(",");
+          // Skip nodes with non-standard flags (e.g., fail, handshake, noaddr)
+          const isMaster = flagList.includes("master") || flagList.includes("myself,master");
+          const isSlave = flagList.includes("slave") || flagList.includes("myself,slave");
+          if (!isMaster && !isSlave) return null;
+          const nodeRole = isMaster ? "master" : "slave";
+          const port = Number(portStr);
+          if (!Number.isFinite(port) || port <= 0) return null;
+          const slots = nodeRole === "master" ? parts.slice(8).join(" ") : undefined;
+          return { host, port, role: nodeRole, slots };
+        }).filter(Boolean);
+      } catch (err) {
+        console.error("Failed to get cluster details:", err);
+      }
+    } else if (role === "master" && connectedSlaves > 0) {
+      result.sentinelRole = "master";
+      result.sentinelReplicas = connectedSlaves;
+    } else if (role === "slave") {
+      result.sentinelRole = "slave";
+      result.sentinelMasterHost = parseInfoField(replicationInfo, "master_host");
+      const parsedPort = Number(parseInfoField(replicationInfo, "master_port") ?? "0");
+      result.sentinelMasterPort = Number.isFinite(parsedPort) ? parsedPort : 0;
+    }
+
+    return NextResponse.json({ result }, { status: 200, headers: getCorsHeaders(request) });
+  } catch (err) {
+    console.error(err);
+    return NextResponse.json(
+      { message: (err as Error).message },
+      { status: 500, headers: getCorsHeaders(request) }
+    );
+  }
+}