nune/privatebin-docker-nginx-fpm-alpine
nune/privatebin-docker-nginx-fpm-alpine
0
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions 2
151 commits 7 branches 70 tags 498 KiB
Commit graph

151 commits

This branch
This branch
All branches
Author SHA1 Message Date
El RIDO
8539ee0e6e
wait for up to 10 seconds on the php-fpm socket to come up, before starting nginx 2021-06-05 07:49:07 +02:00
rugk
379c73aef9
better naming 2021-06-05 00:50:05 +02:00
rugk
136f2ce32e
Add Trivy analysis 
Oh I'm sorry, but here is another analysis tool 😅 

The cool thing here it says it only needs 10s at most. So let's test that for real…

https://github.com/aquasecurity/trivy#features
 2021-06-05 00:44:39 +02:00
rugk
aab06e6a36
Add snyk container scanning CI 
Another GitHub action that looked useful.

I've had to login with my GitHub account at https://app.snyk.io to get a free API token (saved as a secret in this repo) though.
 2021-06-04 23:36:36 +02:00
Mark van Holsteijn
bcb52002aa do not start nginx until /var/run/php-fpm.sock is available 2021-06-04 22:12:52 +02:00
Mark van Holsteijn
be11f9b1b2 pass in GoogleCloudStorage required environment variables 2021-05-24 15:05:05 +02:00
El RIDO
081580da91
build context != Dockerfile 2021-05-06 20:31:41 +02:00
El RIDO
f43c4f64a9
adding an Alpine edge build, as per discussion in #36 2021-05-06 20:26:18 +02:00
El RIDO
0928070a04
allow image to run as any non-root user/group, fixes #10 2021-04-28 18:29:58 +02:00
El RIDO
7326e27e8c
increment version 2021-04-28 18:28:49 +02:00
El RIDO
ada7a40cbf
disable further false positives 2021-04-22 19:14:07 +02:00
El RIDO
453cff7c01
working on improving #29 2021-04-16 19:13:00 +02:00
El RIDO
bd1a39f520
Merge pull request #32 from PrivateBin/security-headers 
new security headers, recommended by ZAP scan #29
 2021-04-06 05:49:14 +02:00
El RIDO
7b367cad23
new security headers, recommended by ZAP scan #29 2021-04-05 18:21:55 +02:00
El RIDO
a86fc49145
new release 1.3.5 2021-04-05 17:55:51 +02:00
El RIDO
52cbe547da
Merge pull request #30 from PrivateBin/owasp-rules-fine 
Ignore some OWASP rules etc
 2021-04-05 17:48:25 +02:00
rugk
781eca69b7
Use ignore rules files in workflow 2021-04-05 14:44:11 +02:00
rugk
3373723d60
Add ignore rules files 2021-04-05 14:43:54 +02:00
rugk
2fb3087192
Checkout repository 2021-04-05 14:00:04 +02:00
El RIDO
ec07a9ff88
Merge pull request #28 from PrivateBin/owasp-scan 
Create OWASP GitHub Action
 2021-04-05 12:23:48 +02:00
rugk
567bf3332a
Fix URL 2021-04-04 13:26:06 +02:00
rugk
27922a0fb0
Create OWASP GItHub Action 2021-04-04 13:24:13 +02:00
El RIDO
7e968c9b82
move snyk over to Helm chart, it doesn't support raw dockerfiles 2021-02-05 05:04:55 +01:00
El RIDO
0ca9b77288
provide snyk a target 2021-02-05 05:01:20 +01:00
El RIDO
1e22cfd764
Merge branch 'master' of github.com:PrivateBin/docker-nginx-fpm-alpine 2021-02-05 04:56:22 +01:00
El RIDO
2afdf0194d
correct k8s example, kudos @Feliksas 2021-02-05 04:55:46 +01:00
El RIDO
a8e1b01dd7
Create snyk_infrastructure-analysis.yml 2021-01-26 19:05:41 +01:00
El RIDO
25104d083f
adapt to new nginx 1.18 folder structure 2021-01-17 09:13:47 +01:00
El RIDO
b5c2b4d1fe
switch to packaged s6-overlay, shaving off one MiB from the image 2021-01-17 08:54:28 +01:00
El RIDO
8a8160e1d5
upgrade chown image to busybox 1.33.0 / musl 1.2.2 2021-01-16 07:34:17 +01:00
El RIDO
798992cb0e
upgrade to PHP 8 2021-01-16 06:23:37 +01:00
El RIDO
3892bc3573
upgrade to alpine 3.13 2021-01-16 05:57:39 +01:00
El RIDO
cf84eb76ba
upgrade s6-overlay 2021-01-16 05:54:30 +01:00
El RIDO
7dfe1b2bb4
trigger a rebuild of the 1.3.4 image to include security updates, fixes #25 2020-10-24 07:06:55 +02:00
El RIDO
2e25086fb1
only add qemu platforms needed 2020-10-03 11:05:45 +02:00
El RIDO
38eca302d5
explore the switch to new buildx action by docker 2020-10-03 11:00:54 +02:00
El RIDO
b84118dd88
make security policy explicit in the k8s example as per helm chart 2020-10-03 10:35:05 +02:00
El RIDO
6ab53b4699
document probes for k8s 2020-10-03 10:32:20 +02:00
El RIDO
7994a768ad
using numeric IDs allows the image to run on kubernetes with the runAsNonRoot security context 2020-10-01 19:18:14 +02:00
El RIDO
4b98c98f49
addressing concerns over busybox usage, by switching to minimal chown binary, closes #13 2020-08-30 12:22:01 +02:00
El RIDO
372ed866ac
avoid relative path in docker command examples, closes #20 2020-08-30 08:21:27 +02:00
El RIDO
246d479c05
build and push tags as well 2020-08-16 15:48:29 +02:00
El RIDO
a5904883ef
upgrade s6 2020-08-16 14:45:03 +02:00
El RIDO
920ec587e7
syntax 2020-07-06 20:11:33 +02:00
El RIDO
de03d8f328
Merge branch 'zuh0-nightly-builds' 2020-07-06 20:04:54 +02:00
El RIDO
e470ccbfac
simplify actions, adjust image, only build tags or on schedule 2020-07-06 20:04:26 +02:00
Gabriel Duque
1bc818024b
ci: deploy nightly built multi-architecture images 
Signed-off-by: Gabriel Duque <gabriel@zuh0.com>
 2020-07-06 10:27:30 +02:00
El RIDO
56434e8b9e
upgrade alpine base image (same exact php version) 2020-06-01 08:18:01 +02:00
El RIDO
885c692c07
correct the k8s example 2020-05-25 19:39:42 +02:00
El RIDO
9582113c42
enable ipv6 listening 2020-04-28 07:13:40 +02:00