Claire
d95128c99d
Revert default Ruby version to 2.7.2 ( #16154 )
...
Ruby 2.7.3 introduced a new bug with Resolv::DNS, which we heavily use within
Mastodon: https://bugs.ruby-lang.org/issues/17781
Ruby 2.7.3 also included security fixes for two CVEs, but those do not seem
to apply to Mastodon:
https://github.com/tootsuite/mastodon/pull/16004#issuecomment-815125025
4 years ago
Daigo 3 Dango
3f8d0de82e
Upgrade Ruby to 2.7.3 ( #16004 )
...
* Upgrade Ruby to 2.7.3
https://www.ruby-lang.org/en/news/2021/04/05/ruby-2-7-3-released/
includes security fixes to
- CVE-2021-28965: XML round-trip vulnerability in REXML
- CVE-2021-28966: Path traversal in Tempfile on Windows
* Update rexml to 3.2.5
https://www.ruby-lang.org/en/news/2021/04/05/xml-round-trip-vulnerability-in-rexml-cve-2021-28965/
4 years ago
Mashiro
e3f1107975
build: install shared-mime-info in Dockerfile ( #15978 )
4 years ago
Sandro
46d3d3169e
Docker: Use precompiled jemalloc, format, apply hadolint suggestions ( #10823 )
...
* Format, apply hadolint suggestions, little nitpicks
* Use pre compiled jemalloc
* Use tini from package repository
4 years ago
Shlee
f56cf6e9d0
Update Dockerfile ( #15869 )
4 years ago
Daniel Jakots
b4281f5a51
Update to Node.js-12.20.1 ( #15558 )
...
This is a security release. You can read the announce at
https://nodejs.org/en/blog/vulnerability/january-2021-security-releases/
4 years ago
kaiyou
1817f96578
Fix the Dockerfile in case of Kaniko build ( #15510 )
...
Kaniko does not support looking up binaries from $PATH, so we
specify the full path to the bash binary.
Co-authored-by: kaiyou <dev@kaiyou.fr>
4 years ago
Shlee
b429d33e46
Update Dockerfile ( #15232 )
4 years ago
Daigo 3 Dango
541b9f8c1c
Use Ruby 2.7.2 ( #15150 )
...
thwait and e2mmap are no longer needed in Gemfile.
Gems properly require those.
4 years ago
Kairui Song | 宋恺睿
03b5f09ffc
Minor fix & improvement for the Dockerfile ( #14686 )
...
* Dockerfile: Fix building with multiarch
Tested on amd64 and arm64
* Reduce docker image size by clean up some unneeded source file
4 years ago
Shlee
9ea91bbf59
Update Dockerfile ( #13582 )
4 years ago
Shlee
e4a1ebf721
[Security] Update Dockerfile for Ruby 2.6.6 ( #13393 )
5 years ago
Shlee
51a1fbaafc
[Security] Bump Node.js from 12.14.0 to 12.16.1 in Docker ( #13235 )
...
* Update Dockerfile
* Update Dockerfile
5 years ago
Sara Aimée Smiseth
250ca99cb5
Fix non-x64 architectures not being able to build Docker image because of hardcoded Node.js architecture ( #13081 )
...
* Use ARCH variable instead of hardcoded x64
* fix formating
5 years ago
Shlee
71baacb49a
Update Dockerfile ( #12997 )
5 years ago
Shlee
e7d3495874
Upgrade Node v12 in Dockerfile ( #12703 )
5 years ago
Shlee
6c2c2eee46
Updated NodeJS in Dockerfile ( #12492 )
5 years ago
David Caldwell
3b609da9bd
Dockerfile: put back EXPOSE directive ( #12279 )
...
[Rkt](https://coreos.com/rkt ) doesn't allow ports to be exposed to containers unless they are declared in the container manifest. Re-adding EXPOSE back in (removed in 1dbf993bce
) allows the container to be used on rkt based systems.
5 years ago
Shlee
f8a0c00920
Update nodejs in Dockerfile ( #12052 )
5 years ago
Shlee
ea8c781ec7
Update Ruby in Dockerfile ( #12050 )
5 years ago
Yamagishi Kazutoshi
d7ed697030
Use prebuilt node.js on Docker image ( #11768 )
5 years ago
Shlee
59b013df5f
Update NodeJS source for Docker Image ( #11707 )
...
* Update Ruby/Node/jemalloc source for Docker Image
* Update Dockerfile
* Update Dockerfile
5 years ago
Shlee
33f4b6e1eb
Update Dockerfile ( #11710 )
5 years ago
Eugen Rochko
15c7478c55
Change Dockerfile to bind to 0.0.0.0 instead of docker-compose.yml ( #11351 )
5 years ago
Sandro Jäckel
1e6a1ea075
Docker: Remove dist-upgrade ( #10822 )
6 years ago
Sandro Jäckel
c90f3b9865
Docker: Keep /var/lib/apt/ to keep apt working ( #10830 )
6 years ago
Alfie John
0852e643b7
Expand abbreviation to minimise confusion ( #10826 )
6 years ago
Ben Lubar
d36fcb54c4
Re-organize Dockerfile to improve incremental builds. ( #10212 )
...
- Always run apt update before any other apt command. (This fixes
incremental builds failing if a remote package is updated.)
- Only copy dependency lists before installing dependencies. (This means
editing code doesn't force all dependencies to be re-downloaded.)
- Delete cache in the same layer that it is created. (Otherwise,
deleting cache *increases* the size of the image on non-squashed
builds.)
- Move the installation of some static dependencies to *before* Mastodon
code is imported to Docker.
6 years ago
mohemohe
16fb39cffc
Fix fail health check due to missing wget ( #10110 )
6 years ago
Sir-Boops
1dbf993bce
Switch to Ubuntu for docker ( #10100 )
6 years ago
J0WI
26c1aba658
Do not use apk cache and upgrade ( #9966 )
6 years ago
J0WI
11d1502853
Replace LibreSSL by OpenSSL ( #9975 )
6 years ago
ashleyhull-versent
5c873a4ed7
Update Dockerfile ( #9965 )
6 years ago
ashleyhull-versent
8ec539fef1
Update Dockerfile ( #9796 )
6 years ago
Yamagishi Kazutoshi
ea03faa167
Installing libxml2 and libxslt on Docker ( #9680 )
6 years ago
Isatis
5f0d3e8bad
Dockerfile: Nodejs 8.12 -> 8.14 ( #9532 )
6 years ago
ashleyhull-versent
51677ff070
Update Dockerfile ( #9026 )
6 years ago
Isatis
49b182cd51
Dockerfile: update Node to 8.12.0 and put Ruby on Alpine 3.7 for build system memory help ( #8842 )
6 years ago
ashleyhull-versent
94f9cb0855
Revert "Updated ruby/node images" ( #8712 )
...
* Revert "update vagrant configs (#8706 )"
This reverts commit 8971bb8cf2
.
* Revert "Updated ruby/node images (#8700 )"
This reverts commit 5aae71cf60
.
6 years ago
ashleyhull-versent
5aae71cf60
Updated ruby/node images ( #8700 )
6 years ago
Kevin Liu
68cccb00ef
Dockerfile: run asset precompilation as a build step ( #7780 )
...
* Dockerfile: run asset precompilation as a build step
* Replace OTP_SECRET and SECRET_KEY_BASE with placeholders
6 years ago
Yamagishi Kazutoshi
0eacf2b419
Upgrade Node.js to v8.x on Docker image ( #8019 )
6 years ago
Yamagishi Kazutoshi
e9b322d0a6
Upgrade webpack to version v4.x ( #6655 )
6 years ago
Yamagishi Kazutoshi
523d8f20e3
Add symbolic link for yarnpkg ( #7894 )
7 years ago
Yamagishi Kazutoshi
097fd44978
Add /mastodon/bin to $PATH ( #7889 )
7 years ago
Yamagishi Kazutoshi
f464f98fd3
Update Ruby to version 2.4.4 ( #6964 )
...
https://www.ruby-lang.org/en/news/2018/03/28/ruby-2-4-4-released/
> This release includes some bug fixes and some security fixes.
>
> - CVE-2017-17742: HTTP response splitting in WEBrick
> - CVE-2018-6914: Unintentional file and directory creation with directory traversal in tempfile and tmpdir
> - CVE-2018-8777: DoS by large request in WEBrick
> - CVE-2018-8778: Buffer under-read in String#unpack
> - CVE-2018-8779: Unintentional socket creation by poisoned NUL byte in UNIXServer and UNIXSocket
> - CVE-2018-8780: Unintentional directory traversal by poisoned NUL byte in Dir
> - Multiple vulnerabilities in RubyGems
7 years ago
Eugen Rochko
844616e950
Re-add git and nodejs-npm to Dockerfile ( #6810 )
...
Fix #6809
I don't know why, either
7 years ago
Eugen Rochko
0074cad44f
Downgrade Dockerfile to Ruby 2.4.3 on Alpine 3.6 ( #6806 )
...
Fix 6734
7 years ago
Akihiko Odaki
36579bac88
Use Alpine Linux yarn package in Docker ( #6725 )
...
Yarn was manually installed to meet the Yarn version requirement of
webpacker. Today, Alpine Linux 3.7 provides Yarn new enough.
7 years ago
Akihiko Odaki
58a4633707
Remove su-exec from Docker image ( #6722 )
...
It is no longer necessary since commit
be9bab171d
.
7 years ago