nodiscc
5a6515c988
Merge pull request #2014 from nodiscc/build-docker-pr
...
tools: github actions: build docker images on pull requests
2023-08-19 11:48:29 +00:00
nodiscc
ea57088177
tools: github actions: build docker images on pull requests
...
- fixes https://github.com/shaarli/Shaarli/issues/1800
- do not push, only check that the image builds correctly
- tag the image as :pr-PR_NUMBER
2023-08-19 13:44:58 +02:00
nodiscc
638a7c5141
Merge pull request #2012 from nodiscc/update-trivy
...
tools/tests: update trivy to v0.44.0
2023-08-01 13:22:05 +00:00
nodiscc
c937d3e184
tools/tests: update trivy to v0.44.0
...
- https://github.com/aquasecurity/trivy/releases/tag/v0.44.0
2023-08-01 15:10:57 +02:00
nodiscc
4cbba2fe64
Merge pull request #2010 from shaarli/dependabot/npm_and_yarn/word-wrap-1.2.4
...
build(deps): bump word-wrap from 1.2.3 to 1.2.4
2023-07-19 13:47:28 +00:00
dependabot[bot]
949e03ca1f
build(deps): bump word-wrap from 1.2.3 to 1.2.4
...
Bumps [word-wrap](https://github.com/jonschlinkert/word-wrap ) from 1.2.3 to 1.2.4.
- [Release notes](https://github.com/jonschlinkert/word-wrap/releases )
- [Commits](https://github.com/jonschlinkert/word-wrap/compare/1.2.3...1.2.4 )
---
updated-dependencies:
- dependency-name: word-wrap
dependency-type: indirect
...
Signed-off-by: dependabot[bot] <support@github.com>
2023-07-19 00:03:56 +00:00
nodiscc
e91984b507
Merge pull request #2008 from clach04/patch-1
...
Doc update, WebSub (formerly PubSubHubbub) plugin
2023-07-15 12:31:18 +00:00
clach04
f812581234
Doc update, WebSub (formerly PubSubHubbub) plugin
...
Clarify old and new name along with Wikipedia link.
2023-07-15 02:11:57 -07:00
nodiscc
5af1c9dbae
Merge pull request #2006 from shaarli/dependabot/npm_and_yarn/semver-5.7.2
...
build(deps): bump semver from 5.7.1 to 5.7.2
2023-07-11 11:00:35 +00:00
nodiscc
e7ff18c864
Merge pull request #2005 from nodiscc/update-trivy
...
tools/Makefile: update trivy to v0.43.1
2023-07-11 10:53:05 +00:00
dependabot[bot]
66982b6f79
build(deps): bump semver from 5.7.1 to 5.7.2
...
Bumps [semver](https://github.com/npm/node-semver ) from 5.7.1 to 5.7.2.
- [Release notes](https://github.com/npm/node-semver/releases )
- [Changelog](https://github.com/npm/node-semver/blob/v5.7.2/CHANGELOG.md )
- [Commits](https://github.com/npm/node-semver/compare/v5.7.1...v5.7.2 )
---
updated-dependencies:
- dependency-name: semver
dependency-type: indirect
...
Signed-off-by: dependabot[bot] <support@github.com>
2023-07-11 03:32:45 +00:00
nodiscc
6d16b6c8a8
tools/Makefile: update trivy to v0.43.1
...
è https://github.com/aquasecurity/trivy/releases/tag/v0.43.1
2023-07-08 21:18:37 +02:00
nodiscc
910b695d4d
correct usage of hyphens in all occurences of 'super fast, database-free'
...
- fixes https://github.com/shaarli/Shaarli/issues/1758
2023-07-06 18:57:22 +02:00
nodiscc
d24fc65695
Merge pull request #1998 from nodiscc/trivy-repo-scan
...
tools/CI: scan repository with trivy security scanner (yarn.lock, composer.lock)
2023-07-06 16:37:13 +00:00
Amadeous
c44a0d200d
Expose tags_separator config through /info API ( #1997 )
2023-06-30 22:15:41 +00:00
Alistair Young
9fd6739a1f
docker: nginx: listen on IPv6 in addition to IPv4 ( #1983 )
2023-06-30 22:08:02 +00:00
nodiscc
3b5923b7e1
tools/CI: scan repository with trivy security scanner (yarn.lock, composer.lock)
...
- run scan on each push/pull request update
- can be run locally using make test_trivy_repo
- exit with error code 0/success when vulnerabilities are found, as not to make the workflow fail, a separate periodic run that exits with code 1 should be added in parallel
- update trivy to v0.43.0
- https://github.com/aquasecurity/trivy/releases/tag/v0.43.0
- also consider TRIVY_EXIT_CODE when running trivy on the latest docker image
- ref. https://github.com/shaarli/Shaarli/issues/1531
2023-06-30 23:56:09 +02:00
nodiscc
467b28c237
Merge pull request #1989 from nodiscc/trivy-fix-target-docker-image
...
gihub actions: fix value of TRIVY_TARGET_DOCKER_IMAGE
2023-05-21 19:10:36 +00:00
nodiscc
0eee6a2ba1
gihub actions: fix value of TRIVY_TARGET_DOCKER_IMAGE
...
- fixes Error response from daemon: no such image: ghcr.io/***:trivy: No such image: ghcr.io/***:trivy
- introduced in https://github.com/shaarli/Shaarli/pull/1980 but the test target branch/tag was never reverted to 'latest'
2023-05-21 21:08:36 +02:00
nodiscc
27db81ab07
Merge pull request #1987 from nodiscc/doc-or-operator
...
doc: improve docs on usage of OR operator in tags search
2023-05-21 18:30:57 +00:00
nodiscc
f64b4666ea
Merge pull request #1980 from nodiscc/trivy
...
tools: run trivy vulnerability scanner on the 'latest' docker image
2023-05-21 18:29:11 +00:00
nodiscc
a1c6460077
doc: improve docs on usage of OR operator in tags search
...
- fixes https://github.com/shaarli/Shaarli/issues/1982
2023-05-21 20:27:12 +02:00
nodiscc
a8c7c5c4bf
Merge pull request #1984 from nlegaillart/patch-1
...
Update Community-and-related-software.md
2023-05-21 18:24:44 +00:00
Nicolas Le Gaillart
eb340c7eb6
Update Community-and-related-software.md
...
Hi, here are my two little plugins for Shaarli.
2023-05-17 22:33:36 +02:00
nodiscc
22b4044986
tools/github actions: revert temporary changes used for trivy tests on fork/branch
2023-05-02 12:27:49 +02:00
nodiscc
d48e06f438
run trivy vulnerability scanner on the 'latest' docker image
...
- run trivy from makefile so that it can be run both locally and through github actions
- usage: make test_trivy TRIVY_TARGET_DOCKER_IMAGE=regist.ry/user/image:tag
- tested by downgrading the base image to alpine 3.15.7 and verifying that vulnerabilities are reported (https://github.com/nodiscc/Shaarli/actions/runs/4860040980/jobs/8663400103 )
- TEMP/TESTING only push image to ghcr.io, run trivy on trivy branch/docker tag as well as master
- ref. https://github.com/shaarli/Shaarli/issues/1531
2023-05-02 12:24:50 +02:00
ArthurHoaro
88b76c44f7
Fix autofocus: load bulk action input on linklist only ( #1976 )
2023-04-15 12:46:09 -04:00
ArthurHoaro
1cd642619f
Documentation: fix broken link to 3rd party plugins ( #1975 )
2023-04-15 12:01:50 -04:00
Gregory
5f69e17310
Update Server-configuration.md ( #1973 )
2023-04-15 09:02:48 -04:00
ArthurHoaro
e0a8f961ba
Support: ignore disk_free_space if the function is unavailable ( #1970 )
2023-04-08 10:10:29 -04:00
bschwede
739776a754
Update german translation ( #1969 )
2023-04-08 15:26:27 +02:00
nodiscc
08d9347e9a
Merge pull request #1958 from ArthurHoaro/php-drop-7.3-and-less
...
Drop support for PHP 7.1, 7.2 and 7.3
2023-04-03 15:43:07 +00:00
ArthurHoaro
050bb50cdf
Update compatibility matrix
2023-03-25 09:42:42 -04:00
ArthurHoaro
ef9d019ccd
Docker build: add ARM64 platform and bump Github action version ( #1965 )
2023-03-25 09:35:58 -04:00
nodiscc
a7e361e22a
Merge pull request #1962 from nodiscc/docker-armv7
...
github actions: build OCI images that contain both amd64 and armv7
2023-03-21 17:22:24 +00:00
nodiscc
9a1ad45e90
remove ununsed Dockerfile.armhf
2023-03-21 18:18:12 +01:00
nodiscc
fd4379992d
github actions: build OCI images that contin both amd64 and armv7
...
- ref. https://docs.docker.com/engine/reference/commandline/buildx_build/#platform
- ref. https://docs.docker.com/build/ci/github-actions/multi-platform/
- replaces https://github.com/shaarli/Shaarli/pull/1496
- make docker image name configurable through CI variables for easier testing
2023-03-21 18:10:37 +01:00
nodiscc
9c9d6298bf
Merge pull request #1960 from nodiscc/doc-updte-release-branch
...
doc: update release procedure (merge the latest release to the release branch) + use the release branch for latest release version detection
2023-03-20 17:23:34 +00:00
nodiscc
625235787e
admin/server: use the 'release' branch as reference for latest release version number detection
...
- ref. https://github.com/shaarli/Shaarli/issues/1961
2023-03-20 18:17:13 +01:00
nodiscc
062698c123
doc: update release procedure (merge the latest release to the release branch)
...
- ref. https://github.com/shaarli/Shaarli/pull/1959
2023-03-20 18:08:02 +01:00
ArthurHoaro
0a47d89193
Drop support for PHP 7.1, 7.2 and 7.3
...
This commit doesn't yet enforce the new requirement since previous version will continue to work for a short while.
2023-03-18 14:27:41 -04:00
ArthurHoaro
6624f00c05
Makefile: Use GNU tar if available ( #1957 )
2023-03-18 14:03:34 -04:00
ArthurHoaro
c0c743f9c6
Bump badge version
2023-03-18 13:41:03 -04:00
ArthurHoaro
9e24bb317c
Changelog v0.12.2 ( #1956 )
2023-03-18 13:24:16 -04:00
ArthurHoaro
ebe9417981
Rename authors makefile target to avoid conflicts with filename ( #1955 )
2023-03-18 13:19:37 -04:00
ArthurHoaro
8cd369aee7
Fix Logger exception: gracefully handle permission issue ( #1954 )
2023-03-18 12:13:48 -04:00
ArthurHoaro
b858332f9f
Fix a bug when using '/' as a tag separator ( #1953 )
2023-03-18 11:59:00 -04:00
ArthurHoaro
8457001294
Do not display deprecated warnings by default ( #1952 )
2023-03-18 11:01:33 -04:00
nodiscc
f15ac5957a
Merge pull request #1951 from nodiscc/doc-ghcrio
...
doc: move OCI images hosting to ghcr.io
2023-03-18 14:10:28 +00:00
nodiscc
721c090198
doc: move OCI images hosting to ghcr.io
...
- dockerhub free team accounts will be deleted in < 30 days (https://www.docker.com/blog/we-apologize-we-did-a-terrible-job-announcing-the-end-of-docker-free-teams/ ), this affects the Shaarli team account
- automated builds will keep pushing latest builds to dockerhub in addition to gchr.io, until the account is deleted
- **users relying on `shaarli/shaarli` OCI images are advised to migrate to `ghcr.io/shaarli/shaarli` as soon as possible**
- existing tagged images have been copied from https://hub.docker.com/r/shaarli/shaarli/ to https://github.com/shaarli/Shaarli/pkgs/container/shaarli/versions?filters%5Bversion_type%5D=tagged
- prepend `ghcr.io/` to all references to OCI images
- update all references to dockerhub -> github packages registry, update developer documentation, cleanup dead links
- ref. https://github.com/shaarli/Shaarli/issues/1948
2023-03-17 16:17:37 +01:00