f318f1ef0e
Bump ruby to 3.2.2 due to ReDoS vulnerabilities ( #24320 )
2 years ago
313feca996
Use Yarn production install for asset compile ( #24232 )
2 years ago
e7e189fa44
Use Yarn production install for asset compile ( #24232 )
2 years ago
edc6f486bf
Upgrade to Ruby 3.2 ( #22928 )
...
Co-authored-by: Matthew Ford <matt@bitzesty.com>
2 years ago
fb8503e861
Upgrade to Ruby 3.2 ( #22928 )
...
Co-authored-by: Matthew Ford <matt@bitzesty.com>
2 years ago
17e3cdb81b
Update Ruby to 3.0.5 ( #23544 )
2 years ago
841263a548
Update Ruby to 3.0.5 ( #23544 )
2 years ago
5bf8be8122
Sync Node.js to 16.19 patch release ( #23554 )
2 years ago
c6b7e04120
Sync Node.js to 16.19 patch release ( #23554 )
2 years ago
97db92d368
Yarn cache cleanup right after install in Docker ( #23557 )
2 years ago
a1c0573bc6
Yarn cache cleanup right after install in Docker ( #23557 )
2 years ago
80903a3b77
th: Merge https://gitea.treehouse.systems/mirrors/mastodon-glitch into merge/glitch-4.0.2
2 years ago
c16cab7c3c
Add hadolint as Dockerfile linter ( #20993 )
...
* Added hadolint as Dockerfile linter in pipeline and resolved remaining hadolint issues in Dockerfile
* Use more specific version of hadolint Action
* Bumpt hadolint Action version to latest version to avoid deprecation notice
* Being _really_ specific now
2 years ago
a0813806d6
Add hadolint as Dockerfile linter ( #20993 )
...
* Added hadolint as Dockerfile linter in pipeline and resolved remaining hadolint issues in Dockerfile
* Use more specific version of hadolint Action
* Bumpt hadolint Action version to latest version to avoid deprecation notice
* Being _really_ specific now
2 years ago
fc9f6cbc19
Update Node 16.18.1 for latest security release ( #22019 )
...
* Update Node 16.18.1 for latest security release
* Increase Yarn network timeout for build error
2 years ago
736b4283b0
Update Node 16.18.1 for latest security release ( #22019 )
...
* Update Node 16.18.1 for latest security release
* Increase Yarn network timeout for build error
2 years ago
04d83f15a7
Add missing procps package to Dockerfile ( #21028 )
...
The new Debian-Base does not come with this by default, making the ps based health-check in the compose file fail
2 years ago
f343ed42ff
Add missing procps package to Dockerfile ( #21028 )
...
The new Debian-Base does not come with this by default, making the ps based health-check in the compose file fail
2 years ago
443183e930
Remove blank line from start of Dockerfile breaking syntax declaration ( #20948 )
2 years ago
231e3ec552
Remove blank line from start of Dockerfile breaking syntax declaration ( #20948 )
2 years ago
a1fe971bf2
Split off Dockerfile components for faster build times ( #20933 )
2 years ago
1b5ed32085
Split off Dockerfile components for faster build times ( #20933 )
2 years ago
5a5fd023d1
Use buildx functions for faster build ( #20692 )
...
* Use buildx functions for faster build
* move link
* cannot use --link with --chown
2 years ago
92734e3df1
Use buildx functions for faster build ( #20692 )
...
* Use buildx functions for faster build
* move link
* cannot use --link with --chown
2 years ago
b17c429263
th: dockerfile: implement emoji-mart patch
2 years ago
97ba5e41ef
Install python3 when building with Docker ( #18072 )
2 years ago
5cf056fdb0
Install python3 when building with Docker ( #18072 )
2 years ago
0c1d4f48fd
Update Node to 16.17.1 ( #19224 )
...
See
https://nodejs.org/en/blog/vulnerability/september-2022-security-releases/
for the details.
2 years ago
0c99c6c3df
Update Node to 16.17.1 ( #19224 )
...
See
https://nodejs.org/en/blog/vulnerability/september-2022-security-releases/
for the details.
2 years ago
9a500b21b5
Bump Ruby version from 3.0.3 to 3.0.4 ( #18028 )
...
https://www.ruby-lang.org/en/news/2022/04/12/ruby-3-0-4-released/
2 years ago
113dd90aa3
Bump Ruby version from 3.0.3 to 3.0.4 ( #18028 )
...
https://www.ruby-lang.org/en/news/2022/04/12/ruby-3-0-4-released/
2 years ago
af32bdc7b2
Update node to 16.16.0 ( #18790 )
...
See https://nodejs.org/en/blog/vulnerability/july-2022-security-releases/
2 years ago
9f61f22a3b
Update node to 16.16.0 ( #18790 )
...
See https://nodejs.org/en/blog/vulnerability/july-2022-security-releases/
2 years ago
c9ad24c75e
Update Dockerfile ( #18717 )
2 years ago
602f291da9
Update Dockerfile ( #18717 )
2 years ago
117f949fda
Bump NODE_VER to 16.14.2 ( #17825 )
...
See the announcement
https://nodejs.org/en/blog/vulnerability/mar-2022-security-releases/
3 years ago
8ee4fde19b
Bump NODE_VER to 16.14.2 ( #17825 )
...
See the announcement
https://nodejs.org/en/blog/vulnerability/mar-2022-security-releases/
3 years ago
a40e6f5d97
Remove protobuf dependencies ( #17539 )
3 years ago
298491a816
Remove protobuf dependencies ( #17539 )
3 years ago
646789f51e
Bump NODE_VER to 16.13.2, to solve security issues ( #17399 )
...
Fixes CVE-2021-44532, CVE-2021-44533, and CVE-2022-21824.
See: https://nodejs.org/en/blog/vulnerability/jan-2022-security-releases/
3 years ago
aa45404578
Bump NODE_VER to 16.13.2, to solve security issues ( #17399 )
...
Fixes CVE-2021-44532, CVE-2021-44533, and CVE-2022-21824.
See: https://nodejs.org/en/blog/vulnerability/jan-2022-security-releases/
3 years ago
63859eed66
Save bundle config as local ( #17188 )
...
Some bundle options are saved as global user config and not project local.
Specially, `deployment` must be saved as local config to be run on copied environment
3 years ago
fad37dd1bc
Save bundle config as local ( #17188 )
...
Some bundle options are saved as global user config and not project local.
Specially, `deployment` must be saved as local config to be run on copied environment
3 years ago
56abe9b4d7
Upgrade Ruby to 3.0.3 ( #17038 )
...
https://www.ruby-lang.org/en/news/2021/11/24/ruby-3-0-3-released/
3 years ago
46e62fc4b3
Upgrade Ruby to 3.0.3 ( #17038 )
...
https://www.ruby-lang.org/en/news/2021/11/24/ruby-3-0-3-released/
3 years ago
1b575f8aed
Update Dockerfile ( #16939 )
3 years ago
d647f6ad04
Update Dockerfile ( #16939 )
3 years ago
0e747afd34
Ruby 3.0.2 Upgrade ( #16982 )
...
* Update .ruby-version
* Update Gemfile
* Update Gemfile.lock
* Update Dockerfile
* Update check-i18n.yml
* Update config.yml
* Update config.yml
3 years ago
c242c1d87a
Ruby 3.0.2 Upgrade ( #16982 )
...
* Update .ruby-version
* Update Gemfile
* Update Gemfile.lock
* Update Dockerfile
* Update check-i18n.yml
* Update config.yml
* Update config.yml
3 years ago
2abb53ee23
[Dockerfile] [Security] Update NodeJS to V16 (LTS) on docker. ( #16856 )
...
* [Security] Update NodeJS on docker.
https://nodejs.org/en/blog/vulnerability/oct-2021-security-releases/
* Update Dockerfile
* Upgrade npm package
* Update Dockerfile
3 years ago
03338d1297
[Dockerfile] [Security] Update NodeJS to V16 (LTS) on docker. ( #16856 )
...
* [Security] Update NodeJS on docker.
https://nodejs.org/en/blog/vulnerability/oct-2021-security-releases/
* Update Dockerfile
* Upgrade npm package
* Update Dockerfile
3 years ago
eaad3c0998
add bundle flag to suppress root warning ( #16557 )
3 years ago
f68772fd6a
add bundle flag to suppress root warning ( #16557 )
3 years ago
9fede6a285
Update Dockerfile ( #16696 )
3 years ago
12cb6ed461
Update Dockerfile ( #16696 )
3 years ago
312ccdb126
NodeJS 14 support - circleci/docker/.nvmrc ( #16163 )
...
* Update config.yml
* Update Dockerfile
* Update .nvmrc
* Update Dockerfile
* NodeJS 10 is EOL.
* Update package.json
* Update README.md
* Update Vagrantfile
* Update Dockerfile
* Update Dockerfile
3 years ago
229f5d1681
NodeJS 14 support - circleci/docker/.nvmrc ( #16163 )
...
* Update config.yml
* Update Dockerfile
* Update .nvmrc
* Update Dockerfile
* NodeJS 10 is EOL.
* Update package.json
* Update README.md
* Update Vagrantfile
* Update Dockerfile
* Update Dockerfile
3 years ago
b9e9bb17d9
Use ruby-2.7.4 ( #16481 )
...
Stop using older version of resolv gem as the bug has been fixed.
https://bugs.ruby-lang.org/issues/17781
3 years ago
3d5183e99c
Use ruby-2.7.4 ( #16481 )
...
Stop using older version of resolv gem as the bug has been fixed.
https://bugs.ruby-lang.org/issues/17781
3 years ago
aa38f15cf1
Revert default Ruby version to 2.7.2 ( #16154 )
...
Ruby 2.7.3 introduced a new bug with Resolv::DNS, which we heavily use within
Mastodon: https://bugs.ruby-lang.org/issues/17781
Ruby 2.7.3 also included security fixes for two CVEs, but those do not seem
to apply to Mastodon:
https://github.com/tootsuite/mastodon/pull/16004#issuecomment-815125025
4 years ago
d95128c99d
Revert default Ruby version to 2.7.2 ( #16154 )
...
Ruby 2.7.3 introduced a new bug with Resolv::DNS, which we heavily use within
Mastodon: https://bugs.ruby-lang.org/issues/17781
Ruby 2.7.3 also included security fixes for two CVEs, but those do not seem
to apply to Mastodon:
https://github.com/tootsuite/mastodon/pull/16004#issuecomment-815125025
4 years ago
acd8edcdee
Upgrade Ruby to 2.7.3 ( #16004 )
...
* Upgrade Ruby to 2.7.3
https://www.ruby-lang.org/en/news/2021/04/05/ruby-2-7-3-released/
includes security fixes to
- CVE-2021-28965: XML round-trip vulnerability in REXML
- CVE-2021-28966: Path traversal in Tempfile on Windows
* Update rexml to 3.2.5
https://www.ruby-lang.org/en/news/2021/04/05/xml-round-trip-vulnerability-in-rexml-cve-2021-28965/
4 years ago
3f8d0de82e
Upgrade Ruby to 2.7.3 ( #16004 )
...
* Upgrade Ruby to 2.7.3
https://www.ruby-lang.org/en/news/2021/04/05/ruby-2-7-3-released/
includes security fixes to
- CVE-2021-28965: XML round-trip vulnerability in REXML
- CVE-2021-28966: Path traversal in Tempfile on Windows
* Update rexml to 3.2.5
https://www.ruby-lang.org/en/news/2021/04/05/xml-round-trip-vulnerability-in-rexml-cve-2021-28965/
4 years ago
d6432f2cb6
build: install shared-mime-info in Dockerfile ( #15978 )
4 years ago
e3f1107975
build: install shared-mime-info in Dockerfile ( #15978 )
4 years ago
bc5683f1b4
Docker: Use precompiled jemalloc, format, apply hadolint suggestions ( #10823 )
...
* Format, apply hadolint suggestions, little nitpicks
* Use pre compiled jemalloc
* Use tini from package repository
4 years ago
46d3d3169e
Docker: Use precompiled jemalloc, format, apply hadolint suggestions ( #10823 )
...
* Format, apply hadolint suggestions, little nitpicks
* Use pre compiled jemalloc
* Use tini from package repository
4 years ago
32cf85aa92
Update Dockerfile ( #15869 )
4 years ago
f56cf6e9d0
Update Dockerfile ( #15869 )
4 years ago
530d435054
Update to Node.js-12.20.1 ( #15558 )
...
This is a security release. You can read the announce at
https://nodejs.org/en/blog/vulnerability/january-2021-security-releases/
4 years ago
b4281f5a51
Update to Node.js-12.20.1 ( #15558 )
...
This is a security release. You can read the announce at
https://nodejs.org/en/blog/vulnerability/january-2021-security-releases/
4 years ago
a765a70d6b
Fix the Dockerfile in case of Kaniko build ( #15510 )
...
Kaniko does not support looking up binaries from $PATH, so we
specify the full path to the bash binary.
Co-authored-by: kaiyou <dev@kaiyou.fr>
4 years ago
1817f96578
Fix the Dockerfile in case of Kaniko build ( #15510 )
...
Kaniko does not support looking up binaries from $PATH, so we
specify the full path to the bash binary.
Co-authored-by: kaiyou <dev@kaiyou.fr>
4 years ago
5630db1dab
Update Dockerfile ( #15232 )
4 years ago
b429d33e46
Update Dockerfile ( #15232 )
4 years ago
75585748c9
Use Ruby 2.7.2 ( #15150 )
...
thwait and e2mmap are no longer needed in Gemfile.
Gems properly require those.
4 years ago
541b9f8c1c
Use Ruby 2.7.2 ( #15150 )
...
thwait and e2mmap are no longer needed in Gemfile.
Gems properly require those.
4 years ago
4019f5233a
Minor fix & improvement for the Dockerfile ( #14686 )
...
* Dockerfile: Fix building with multiarch
Tested on amd64 and arm64
* Reduce docker image size by clean up some unneeded source file
4 years ago
03b5f09ffc
Minor fix & improvement for the Dockerfile ( #14686 )
...
* Dockerfile: Fix building with multiarch
Tested on amd64 and arm64
* Reduce docker image size by clean up some unneeded source file
4 years ago
31e1f4bbef
Update Dockerfile ( #13582 )
4 years ago
9ea91bbf59
Update Dockerfile ( #13582 )
4 years ago
68bc5ef550
[Security] Update Dockerfile for Ruby 2.6.6 ( #13393 )
5 years ago
e4a1ebf721
[Security] Update Dockerfile for Ruby 2.6.6 ( #13393 )
5 years ago
0ca5d449ca
[Security] Bump Node.js from 12.14.0 to 12.16.1 in Docker ( #13235 )
...
* Update Dockerfile
* Update Dockerfile
5 years ago
51a1fbaafc
[Security] Bump Node.js from 12.14.0 to 12.16.1 in Docker ( #13235 )
...
* Update Dockerfile
* Update Dockerfile
5 years ago
8af34e6a64
Fix non-x64 architectures not being able to build Docker image because of hardcoded Node.js architecture ( #13081 )
...
* Use ARCH variable instead of hardcoded x64
* fix formating
5 years ago
250ca99cb5
Fix non-x64 architectures not being able to build Docker image because of hardcoded Node.js architecture ( #13081 )
...
* Use ARCH variable instead of hardcoded x64
* fix formating
5 years ago
4f80dd3e26
Update Dockerfile ( #12997 )
5 years ago
71baacb49a
Update Dockerfile ( #12997 )
5 years ago
510f07e94a
Upgrade Node v12 in Dockerfile ( #12703 )
5 years ago
e7d3495874
Upgrade Node v12 in Dockerfile ( #12703 )
5 years ago
817286d233
Updated NodeJS in Dockerfile ( #12492 )
5 years ago
6c2c2eee46
Updated NodeJS in Dockerfile ( #12492 )
5 years ago
6d6154eec0
Dockerfile: put back EXPOSE directive ( #12279 )
...
[Rkt](https://coreos.com/rkt ) doesn't allow ports to be exposed to containers unless they are declared in the container manifest. Re-adding EXPOSE back in (removed in fa3a0f8bc8
5 years ago
3b609da9bd
Dockerfile: put back EXPOSE directive ( #12279 )
...
[Rkt](https://coreos.com/rkt ) doesn't allow ports to be exposed to containers unless they are declared in the container manifest. Re-adding EXPOSE back in (removed in 1dbf993bce
5 years ago
1c5690c8af
Update nodejs in Dockerfile ( #12052 )
5 years ago
f8a0c00920
Update nodejs in Dockerfile ( #12052 )
5 years ago
722f448000
Update Ruby in Dockerfile ( #12050 )
5 years ago
ea8c781ec7
Update Ruby in Dockerfile ( #12050 )
5 years ago
5aafbec05e
Use prebuilt node.js on Docker image ( #11768 )
5 years ago
Sai
Nick Schonning
Aaron Patterson
Ariadne Conill
Moritz Heiber
BtbN
Effy Elden
Kohei Ota (inductor)
Yamagishi Kazutoshi
Daniel Jakots
zunda
Shlee
Jeong Arm
zunda
David Sterry
Claire
Mashiro
Sandro
kaiyou
Kairui Song | 宋恺睿
Sara Aimée Smiseth
David Caldwell