DevFW-CICD/ingress-nginx-helm
12
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
7422 commits 4 branches 217 tags 166 MiB
Commit graph

295 commits

Author SHA1 Message Date
Milas Bowman
e78af97ecd
chore(deps): upgrade headers-more module to 0.37 (#10991) 
https://github.com/openresty/headers-more-nginx-module/compare/v0.34...v0.37

Signed-off-by: Milas Bowman <devnull@milas.dev>
 2024-02-26 04:32:18 -08:00
Ricardo Katz
16821e4871
Bump alpine to 3.19.1 (#10930) 2024-01-28 13:53:29 -08:00
James Strong
c9c72c4e26
force nginx rebuild (#10883) 2024-01-19 22:33:56 +01:00
Adrian
dc36582389
change MODSECURITY_VERSION_LIB to 3.0.11 (#10800) 
* feat: change MODSECURITY_VERSION_LIB to 3.0.11

* use sha commit instead of tag
 2023-12-27 00:54:00 +01:00
Ricardo Katz
1a7112e063
Add common label to Dockerfiles (#10803) 2023-12-26 02:38:42 +01:00
James Strong
c211e75065 upgrade alpine to 3.19.0 
Signed-off-by: James Strong <strong.james.e@gmail.com>
 2023-12-08 14:15:22 -05:00
James Strong
6807537a70
upgrade go 1.21.5 (#10732) 
* upgrade go 1.21.5

Signed-off-by: James Strong <strong.james.e@gmail.com>

* update golang gha

Signed-off-by: James Strong <strong.james.e@gmail.com>

* supgrade golang lint ci to v1.55.2

* sfix all golang lint ci errors

* sget a nginx build as well

* srevert some e2e changes

* srevert some e2e changes

---------

Signed-off-by: James Strong <strong.james.e@gmail.com>
 2023-12-08 01:52:14 +01:00
Sonu Kumar Singh
6152695c78
images: upgrade to Alpine 3.18.5 (#10722) 2023-12-07 15:57:33 +01:00
James Strong
a75db69c2e
Revert "upgrade nginx" 2023-11-29 11:44:48 -05:00
James Strong
3a9cd1bd7e sremove the v 2023-11-21 13:23:04 -05:00
James Strong
1adb1116a4 remove unneeded patches 
Signed-off-by: James Strong <strong.james.e@gmail.com>
 2023-11-21 12:19:02 -05:00
James Strong
4e39571ed4 upgrade nginx 
Signed-off-by: James Strong <strong.james.e@gmail.com>
 2023-11-21 11:44:54 -05:00
Jintao Zhang
0a054d1f58
chore(dep): change lua-resty-cookie's repo (#10630) 
since cloudflare has archived the upstream repo,
we choose a more active forked repo to use.

Signed-off-by: Jintao Zhang <zhangjintao9020@gmail.com>
 2023-11-19 22:14:57 +01:00
Jintao Zhang
0055ba3ea6
Remove legacy GeoIP from image (#10500) 
Signed-off-by: Jintao Zhang <zhangjintao9020@gmail.com>
Co-authored-by: Ricardo Katz <rikatz@users.noreply.github.com>
 2023-10-16 00:41:51 +02:00
Ricardo Katz
8b53cabe03
Bump curl and Go version (#10503) 
* Bump curl and Go version

* Add NGINX BAse image scanning

* Try again
 2023-10-11 16:16:11 +02:00
Mark D. Gray
86f1cedcad
add upstream patch for CVE-2023-44487 (#10494) 
* add upstream patch

* add source

* remove auto-added depend
 2023-10-11 02:36:13 +02:00
Ricardo Katz
3e26fc3740
Revert "Remove curl from nginx base image (#10477)" (#10479) 
This reverts commit 8bd33d29e7.
 2023-10-07 04:04:58 +02:00
Ricardo Katz
8bd33d29e7
Remove curl from nginx base image (#10477) 2023-10-04 21:48:34 +02:00
James Strong
3a28016a64
fix brotli build issues 
Signed-off-by: James Strong <strong.james.e@gmail.com>
 2023-10-01 14:51:48 -04:00
Nicolas Woerner
362ec37778
images: upgrade to Alpine 3.18.4 (#10466) 2023-10-01 11:18:44 -07:00
Rashad Mammadli
c3194dd388
upgrade owasp modsecurity core rule set to v3.3.5 (#10323) 2023-09-24 07:54:56 -07:00
Son Bui
4664b741ff
fix: remove curl on base container #9716 (#10306) 
* fix: remove curl on base container #9716

* fix: remove curl on chroot container #9716

Signed-off-by: Son Bui <sonbv00@gmail.com>

* fix: remove curl on test runner image #9716

Signed-off-by: Son Bui <sonbv00@gmail.com>

* fix: remove curl on e2e runner container #9716

Signed-off-by: Son Bui <sonbv00@gmail.com>

---------

Signed-off-by: Son Bui <sonbv00@gmail.com>
 2023-09-08 10:34:15 -07:00
Jintao Zhang
c83422fd65 fix deps sha 
Signed-off-by: Jintao Zhang <zhangjintao9020@gmail.com>
 2023-07-22 06:41:22 +08:00
James Strong
24fda9da20
Golang 1.20.6 for test runner (#10230) 
* Golang 1.20.6 for test runner

* alpine 3.18.2 as well

Signed-off-by: James Strong <strong.james.e@gmail.com>

---------

Signed-off-by: James Strong <strong.james.e@gmail.com>
 2023-07-20 14:34:12 -07:00
Jintao Zhang
6416ed821d
chore: bump OpenResty to v1.21.4.2 (#10219) 
Signed-off-by: Jintao Zhang <zhangjintao9020@gmail.com>
 2023-07-20 08:36:09 -07:00
Ricardo Katz
ebb6314494
Deprecate and remove AJP support (#10158) 2023-07-02 02:26:49 -07:00
James Strong
58650d6aaa
rebuild nginx base container image 
Signed-off-by: James Strong <strong.james.e@gmail.com>
 2023-06-23 15:29:48 -04:00
David Goffredo
05e5956545
tracing: upgrade to dd-opentracing-cpp v1.3.7 (#10031) 2023-06-11 11:45:47 -07:00
James Strong
9e125c597e
adding a tag here so we force nginx builds to cloudbuild 
Signed-off-by: James Strong <james.strong@chainguard.dev>
 2023-06-01 13:33:20 -04:00
Jintao Zhang
c2e1f34cbe
images: upgrade to Alpine 3.18 (#9997) 
Alpine Linux 3.18 was released
https://alpinelinux.org/posts/Alpine-3.18.0-released.html

Signed-off-by: Jintao Zhang <zhangjintao9020@gmail.com>
 2023-05-26 17:54:49 -07:00
Ricardo Katz
297036e169
Deprecate and remove influxdb feature (#9861) 2023-04-16 17:26:43 -07:00
James Strong
24e0e29386
add short sha to gcloud build and makefiles 
Signed-off-by: James Strong <strong.james.e@gmail.com>
 2023-04-07 10:42:37 -04:00
James Strong
26d83d1b20
update all container tags with date and sha, upgrade all containers (#9834) 
Signed-off-by: James Strong <strong.james.e@gmail.com>
 2023-04-06 10:25:48 -07:00
sarab
ddde3b0d60 Switched from N1 to E2 machine 2023-04-02 03:03:12 +05:30
James Strong
66a760794f
update to golang 1.20 (#9690) 
update alpine and golang
remove nano
update go modules
remove need for openssl external cli
fix stale

Signed-off-by: James Strong <james.strong@chainguard.dev>
 2023-03-11 20:38:39 -08:00
James Strong
f685c9b379
force rebuild for curl cve 
Signed-off-by: James Strong <james.strong@chainguard.dev>
 2022-12-21 12:36:20 -05:00
James Strong
c648595cd7
update the nginx run container for alpine:3.17.0 (#9430) 
Signed-off-by: James Strong <james.strong@chainguard.dev>

Signed-off-by: James Strong <james.strong@chainguard.dev>
 2022-12-20 19:55:25 -08:00
James Strong
e3e0d9c1f4
start upgrade to golang 1.19.4 and alpine 3.17.0 (#9417) 
* start upgrade to 1.19.4

Signed-off-by: James Strong <james.strong@chainguard.dev>

* add matrix to image test-image

Signed-off-by: James Strong <james.strong@chainguard.dev>

* update to alpine 3.17

Signed-off-by: James Strong <james.strong@chainguard.dev>

* remove need for curl

Signed-off-by: James Strong <james.strong@chainguard.dev>

Signed-off-by: James Strong <james.strong@chainguard.dev>
 2022-12-18 17:07:43 -08:00
Adam Hukalowicz
49bd5dd763
ModSecurity dependencies update to avoid Memory Leaks (#9330) 
* Update ModSecurity to latest head

* modsecurity version pinned
 2022-12-04 11:39:54 -08:00
Jintao Zhang
0b5e068511
chore: update NGINX to 1.21.6 (#9231) 
Signed-off-by: Jintao Zhang <zhangjintao9020@gmail.com>

Signed-off-by: Jintao Zhang <zhangjintao9020@gmail.com>
 2022-10-31 07:10:45 -07:00
Jintao Zhang
bf8362cb50
chore: bump NGINX version v1.21.4 (#8889) 
* chore: bump NGINX version v1.21.4

Signed-off-by: Jintao Zhang <zhangjintao9020@gmail.com>

* chore: bump all others

Signed-off-by: Jintao Zhang <zhangjintao9020@gmail.com>

* apply all patches

Signed-off-by: Jintao Zhang <zhangjintao9020@gmail.com>

* fix files hash

Signed-off-by: Jintao Zhang <zhangjintao9020@gmail.com>

* fix ajp module

Signed-off-by: Jintao Zhang <zhangjintao9020@gmail.com>

Signed-off-by: Jintao Zhang <zhangjintao9020@gmail.com>
 2022-10-28 16:40:39 -07:00
Nicolas Julian
855bcbce34
Update Version ModSecurity and Coreruleset (#9086) 
This is related to some new bugs that found in LiveHackingEvent 1337up0522. The latest coreruleset need *ModSecurity version 2.9.6 or 3.0.8*

- https://terjanq.medium.com/waf-bypasses-via-0days-d4ef1f212ec
- https://coreruleset.org/20220920/crs-version-3-3-4-and-3-2-3/
- https://coreruleset.org/20220919/crs-version-3-3-3-and-3-2-2-covering-several-cves/
- https://github.com/coreruleset/coreruleset/releases/tag/v3.3.4
 2022-09-27 06:59:51 -07:00
Long Wu Yuan
9fdbef829c
bump alpine to v3.16.2 (#8934) 2022-08-18 05:54:36 -07:00
Jintao Zhang
f0490cbfbf
fix: change all cloudbuild jobs configuration (#8870) 
Signed-off-by: Jintao Zhang <zhangjintao9020@gmail.com>
 2022-07-26 14:43:11 -07:00
Long Wu Yuan
1c03a88661
update baseimage after bump of opentracing-cpp (#8861) 2022-07-24 09:00:57 -07:00
Long Wu Yuan
c5766dc011
changed baseimage sha & bumped ginkgo to 2.1.4 in test (#8860) 2022-07-23 18:54:57 -07:00
David Goffredo
18ee046b43
update dd-opentracing-cpp version in nginx build script (#8848) 
* update dd-opentracing-cpp version in nginx build script

* idiomatic placement of "v" prefix in Datadog plugin version tag
 2022-07-23 11:02:57 -07:00
Long Wu Yuan
f0ff7e841d
bump to alpine-3.16.1 (#8858) 2022-07-23 07:24:57 -07:00
Guilhem Lettron
0049796682
feat: update mimalloc to 1.7.6 (#8827) 
Signed-off-by: Guilhem Lettron <guilhem@barpilot.io>
 2022-07-17 12:13:20 -07:00
James Strong
e1a16f6e74
Update nginx base image in one place (#8400) 
* update files to use one base image file

Signed-off-by: James Strong <strong.james.e@gmail.com>

* add chart test as well

Signed-off-by: James Strong <strong.james.e@gmail.com>

* update e2e-test image building

Signed-off-by: James Strong <strong.james.e@gmail.com>

* update e2e base image arg

Signed-off-by: James Strong <strong.james.e@gmail.com>

* add current e2e so test run

Signed-off-by: James Strong <strong.james.e@gmail.com>

* working on fixing build

* getting dev-env and make release to work

* test

* i think buildx is working on mac

* updates

* why docker for mac and linux cli differ

* fix target arch

* fix target arch

* fix loag issue

* fix issue

* update the chroot docker file

* fix docker base build

* mac is the issue

* env not getting to the e2e deployment.go file

* fix pull issue

* fix pull issue

* move test scripts into test folder

* clean up ci

* updates for PR

* remove unnesscary var
 2022-07-08 09:27:47 -07:00