Securing Home Assistant’s Android App with Cloudflare Zero Trust & mTLS

A step-by-step recipe for locking down the Home Assistant Android companion app behind Cloudflare Zero Trust using mutual-TLS (mTLS). We’ll generate a client certificate, install it on the phone, and apply precise Cloudflare rules so that only your trusted devices can reach your smart-home—even when Single-Sign-On (SSO) would otherwise kick you out.

Read more

How a Node.js Memory Leak Took Down Our Next.js App —and What We Learned

A regression in Node.js 20.16.0 introduced a memory leak in the built‑in Fetch API (via undici). After our hosting platform automatically upgraded the runtime, our production Next.js containers started crashing with out‑of‑memory (OOM) exceptions. We mitigated the issue by pinning Node to 20.15.1 and later upgraded safely to 22.7.0, which includes the upstream fix.

Read more