Hacker News new | ask | show | jobs
by nocodb 1844 days ago
Thanks for your report.

With regards to Swagger thing, we allow to create multiple projects within same schema too! And this happens in NC_DB only - I imagine we 've an issue with Swagger related model creation. This should be straight forward.

At row edit part - we will work on your feedback.
1 comments
de6u99er 1844 days ago
What about the hotjar part and external JS libraries? (I might have edited my previous comment in the meanwhile and you might not have seen it)
link
nocodb 1844 days ago
Hotjar allows us to ask questionnaire about product. And the idea was to give it and google analytics as plugins so you as a customer can key in your own analytics. Happy to remove it and somebody had raised an issue of jsdeliver related to fonts.
link
de6u99er 1844 days ago
I am not an Hotjar expert, but looking right now at the source code of your hotjar.js file it doesn't seem to be per installation but rather one config for all running NocoDBs.

This sections in particular are quite concerning to me:

  window.hjSiteSettings = window.hjSiteSettings || {
    site_id: 2297736,
    r: 1.0,
    rec_value: 0.01,
    state_change_listen_mode: "manual",
    record: true,
    continuous_capture_enabled: false,
    recording_capture_keystrokes: true,
    anonymize_digits: true,
    anonymize_emails: true,
    suppress_all: false,
    suppress_text: false,
    suppress_location: false,
    user_attributes_enabled: false,
    legal_name: null,
    privacy_policy_url: null,
    deferred_page_contents: [

  // all the other code

  window.hjBootstrap(
    "https://script.hotjar.com/",
    "modules.5a9f57d95ecbb1bf1965.js",
    "2297736"
  ),
  (window.hjLazyModules = window.hjLazyModules || {
    FORM_SELECTOR: { js: "form-selector.392b5f4f766aeb35682b.js" },
    SURVEY_V2: { js: "survey-v2.7218c468a82710c2c26b.js" },
    SURVEY_BOOTSTRAPPER: {
      js: "survey-bootstrapper.f41ed221e5747a5a4a7b.js",
    },
    SURVEY_ISOLATED: { js: "survey-isolated.8af10abbd1a5f80490de.js" },
    HEATMAP_SCREENSHOTTER: {
      js: "heatmap-screenshotter.e571353a90a331625bf1.js",
    },
    HEATMAP_VIEWER: { js: "heatmap-viewer.2fb5d2a22502dfdfdac6.js" },
    SURVEY_INVITATION: { js: "survey-invitation.1ae4ed40ba57f9c20afc.js" },
    NOTIFICATION: { js: "notification.5e4044e77b0558775cb4.js" },
    INCOMING_FEEDBACK: { js: "incoming-feedback.2856389193450b0481d4.js" },
    PREACT_INCOMING_FEEDBACK: {
      js: "preact-incoming-feedback.80672cee08360a8c286c.js",
    },
    SENTRY: { js: "sentry.f1958c523a41d4a73968.js" },
  });
It seems to load additional js files like --> https://script.hotjar.com/heatmap-screenshotter.e571353a90a3...

--------------------

Hotjar website has following thing to say:

  > Hotjar should capture the majority of user sessions in Heatmaps and Recordings. We cannot guarantee that a specific user will be tracked.
see: https://help.hotjar.com/hc/en-us/articles/115011624047-Does-...

--------------------

Can't say if it would have sent data to your hotjar account or not since it was blocked in my browser, but to me this all seems like an involuntary data collection. But again, I am no Hotjar expert. Maybe someone else can chip in here.

link