Bumps [@adobe/css-tools](https://github.com/adobe/css-tools) from 4.2.0 to 4.3.1.
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a href="https://github.com/adobe/css-tools/blob/main/History.md"><code>@adobe/css-tools</code>'s changelog</a>.</em></p>
<blockquote>
<h1>4.3.1 / 2023-03-14</h1>
<ul>
<li>Fix redos vulnerability with specific crafted css string - CVE-2023-26364</li>
</ul>
<h1>4.3.0 / 2023-03-07</h1>
<ul>
<li>Update build tools</li>
<li>Update exports path and files</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li>See full diff in <a href="https://github.com/adobe/css-tools/commits">compare view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/hyperdxio/hyperdx/network/alerts).
</details>
Bumps [zod](https://github.com/colinhacks/zod) from 3.22.2 to 3.22.3.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a href="https://github.com/colinhacks/zod/releases">zod's releases</a>.</em></p>
<blockquote>
<h2>v3.22.3</h2>
<h2>Commits:</h2>
<ul>
<li>1e23990bcdd33d1e81b31e40e77a031fcfd87ce1 Commit</li>
<li>9bd3879b482f139fd03d5025813ee66a04195cdd docs: remove obsolete text about readonly types (<a href="https://redirect.github.com/colinhacks/zod/issues/2676">#2676</a>)</li>
<li>f59be093ec21430d9f32bbcb628d7e39116adf34 clarify datetime ISO 8601 (<a href="https://redirect.github.com/colinhacks/zod/issues/2673">#2673</a>)</li>
<li>64dcc8e2b16febe48fa8e3c82c47c92643e6c9e3 Update sponsors</li>
<li>18115a8f128680b4526df58ce96deab7dce93b93 Formatting</li>
<li>28c19273658b164c53c149785fa7a8187c428ad4 Update sponsors</li>
<li>ad2ee9ccf723c4388158ff6b8669c2a6cdc85643 2718 Updated Custom Schemas documentation example to use type narrowing (<a href="https://redirect.github.com/colinhacks/zod/issues/2778">#2778</a>)</li>
<li>ae0f7a2c15e7741ee1b23c03a3bfb9acebd86551 docs: update ref to discriminated-unions docs (<a href="https://redirect.github.com/colinhacks/zod/issues/2485">#2485</a>)</li>
<li>2ba00fe2377f4d53947a84b8cdb314a63bbd6dd4 [2609] fix ReDoS vulnerability in email regex (<a href="https://redirect.github.com/colinhacks/zod/issues/2824">#2824</a>)</li>
<li>1e61d76cdec05de9271fc0df58798ddf9ce94923 3.22.3</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a href="1e61d76cde"><code>1e61d76</code></a> 3.22.3</li>
<li><a href="2ba00fe237"><code>2ba00fe</code></a> [2609] fix ReDoS vulnerability in email regex (<a href="https://redirect.github.com/colinhacks/zod/issues/2824">#2824</a>)</li>
<li><a href="ae0f7a2c15"><code>ae0f7a2</code></a> docs: update ref to discriminated-unions docs (<a href="https://redirect.github.com/colinhacks/zod/issues/2485">#2485</a>)</li>
<li><a href="ad2ee9ccf7"><code>ad2ee9c</code></a> 2718 Updated Custom Schemas documentation example to use type narrowing (<a href="https://redirect.github.com/colinhacks/zod/issues/2778">#2778</a>)</li>
<li><a href="28c1927365"><code>28c1927</code></a> Update sponsors</li>
<li><a href="18115a8f12"><code>18115a8</code></a> Formatting</li>
<li><a href="64dcc8e2b1"><code>64dcc8e</code></a> Update sponsors</li>
<li><a href="f59be093ec"><code>f59be09</code></a> clarify datetime ISO 8601 (<a href="https://redirect.github.com/colinhacks/zod/issues/2673">#2673</a>)</li>
<li><a href="9bd3879b48"><code>9bd3879</code></a> docs: remove obsolete text about readonly types (<a href="https://redirect.github.com/colinhacks/zod/issues/2676">#2676</a>)</li>
<li><a href="1e23990bcd"><code>1e23990</code></a> Commit</li>
<li>See full diff in <a href="https://github.com/colinhacks/zod/compare/v3.22.2...v3.22.3">compare view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/hyperdxio/hyperdx/network/alerts).
</details>
Origin: https://github.com/hyperdxio/hyperdx/pull/81#discussion_r1384379205
Add a password confirmation field to the registration form.
- API will require `confirmPassword` field on the registration endpoint
- The `confirmPassword` and `password` fields will be validated by zod on API validation
- UI on the registration form will have a "Confirm Password" field
- Validation errors will be displayed on the UI the same way other validation errors
- API test covers mismatch between `confirmPassword` and `password` (simple check, can be improved)
Close#44
- `/register/password` API validation with [zod](https://github.com/colinhacks/zod) and [zod-express-middleware](https://github.com/Aquila169/zod-express-middleware).
- API will respond instead of redirect. Mainly for displaying validation and business logic errors without query params.
- FE `AuthPage` will keep using original `/login/password` API with redirect, for `register` action a request will be made instead
- Updated test to match implementation
- Updated validation rules as discussed here - https://github.com/hyperdxio/hyperdx/issues/44#issuecomment-1741327421
Things I considered but decided to omit:
- **Keep redirects and use query params for erros**: validation errors should not be in query params
- **Update `/login/password` to drop redirect**: might be a good idea, but not in the context of this issue
- **Break form into login and registration**: perhaps later
- **Refactor and restructuring**: same above - more of a tech debt than feature related
## Context
This PR relates to https://github.com/hyperdxio/hyperdx/issues/53. From a chat with @MikeShi42 a while back we were discussing the UX of the time query presets (e.g. "Past 1h") and how it's kind of confusing atm. Once you click a preset, the label will remain as "Past 1h" and add a `from` and `to` param to the url. If after some time you refresh the page, the label will still say "Past 1h" but the `from` and `to` are the old values. At the same time, the existing useTimeQuery hook has a ton of complex logic which makes it very tricky to modify without causing regressions.
## This PR
Create a new version of the useTimeQuery hook (temporarily calling it useNewTimeQuery) and add detailed unit testing to it for all the different cases. This can eventually be used to replace all the existing callsites of the useTimeQuery hook. For the search page, we can move all the live tail functionality into a separate hook and integrate with this new time query hook to have better separation of concerns and make them both easier to maintain. I'll be making a separate PR for the live tail functionality.
for docker-vompose v1x, it throws error like:
```
ERROR: The Compose file './docker-compose.yml' is invalid because:
services.ingestor.environment.VECTOR_OPENSSL_LEGACY_PROVIDER contains false, which is an invalid type, it should be a string, number, or a null
```
