jwtauth VS signoz

It's difficult to assess their security response because it doesn't seem that they've had any CVEs. A different project by the go-chi maintainers, jwtauth, did have to address moving away from a vulnerable dependency, which took them almost 3 months to fix. So, not ideal - but jwtauth isn't as active or used anywhere near as much as chi itself, so doesn't necessarily reflect their responsiveness to a chi vulnerability.

This release has a good deal of security improvements, with more to come in the next release. Also some very nice features implemented by our contributors. Thanks to [you all](https://github.com/navidrome/navidrome/graphs/contributors?from=2021-04-26&to=2021-05-24&type=c)! ## Highlights - [UI] Option to toggle fields in songs, albums & artists grids (#923). Thanks @aldrinjenson - [UI] Allow regular users to change their info, including passwords (#199) - [UI] Displays BPM info (#1087). Thanks @brianschrameck - [UI] Add Czech, Slovenian and Swedish translations. Thanks @plr20, @jernejml and @deeeeeebs respectively - [UI] Restart current song when clicking "Previous song" in its first seconds (#1104). Thanks @aniketbiswas21 - [UI] Show error message when adding duplicated username, and other user management improvements (#1101). Thanks @srichter - [Server] Never send passwords to the UI - [Server] Implement PermissionsPolicy security header (#1112). Thanks @Dnouv - [Server] Move away from unmaintained JWT library (see https://github.com/go-chi/jwtauth/issues/50) - [Server] Add `EnableLogRedacting` to mask sensitive info in logs. Enabled by default - [Server] Make server compilable on OmniOS/illumos (#1048) Thanks @whorfin - [Scanner] Various reliability and speed improvements (#1054) Thanks @whorfin - [Scanner] Add new `ScanSchedule` that replaces `ScanInterval` and allow [cron-like](https://en.wikipedia.org/wiki/Cron) schedules - [Subsonic API] Fix Bookmarks Subsonic support (#1099) Downloads are available in GitHub: https://github.com/navidrome/navidrome/releases/tag/v0.43.0

You should also check out SigNoz [1], we are an open-core alternative to DataDog - based natively on OpenTelemetry. We also have a cloud product if you don't want to host yourself

[1] https://signoz.io

You might want to have a look at SigNoz [1] as well. We have also published some perf benchmark wrt Elastic & Loki [2] and have some cool features like logs pipeline for manipulating logs before ingestion

[1] https://github.com/signoz/signoz

Check Signoz's repo on GitHub

SigNoz maintainer here.

We also have traces, metrics and logs in a single application which makes correlation across them much easier. From what I can understand from Quickwit website, they use Grafana and Jaeger for UI.

Here'e our github repo if you want to check it out. https://github.com/signoz/signoz

Using user's private with no opt-out option is unethical.

If anyone is looking self-hosted for alternatives then they should try SigNoz: https://github.com/SigNoz/signoz

SigNoz is a great New Relic alternative that is open-source and provides three signals in a single pane of glass. You can monitor logs, metrics, and traces and correlate signals for better insights into application performance.

If anyone wants to check the project, here's our github repo - https://github.com/signoz/signoz

You need a backend to which you can send the collected data for monitoring and visualization. SigNoz is an OpenTelemetry-native APM that is well-suited for visualizing OpenTelemetry data.

Once the data is collected, it needs to be sent to a backend. That’s where SigNoz comes into the picture. SigNoz is an open-source OpenTelemetry-native APM that provides logs, metrics and traces under a single pane of glass.