mirror of
https://github.com/hoellen/docker-nextcloud.git
synced 2026-01-16 20:07:07 +00:00
Compare commits
3 Commits
fef4cd4a28
...
version-31
| Author | SHA1 | Date | |
|---|---|---|---|
|
50c30a97bf | ||
|
|
ccb24c5fdc | ||
|
|
5d880cf60e |
24
.github/workflows/build.yml
vendored
24
.github/workflows/build.yml
vendored
@@ -62,28 +62,12 @@ jobs:
|
||||
${{ env.FULL_VERSION }}
|
||||
${{ env.MAJOR_VERSION }}
|
||||
|
||||
- name: Build and export Docker image to Docker
|
||||
id: build
|
||||
uses: docker/build-push-action@v2
|
||||
with:
|
||||
load: true
|
||||
tags: ${{ env.REGISTRY }}/${{ env.IMAGE_NAME }}:testing
|
||||
context: .
|
||||
|
||||
- name: Test Docker image
|
||||
id: test
|
||||
run: |
|
||||
docker run -d -p 8888:8888 --name nextcloud --rm ${{ env.REGISTRY }}/${{ env.IMAGE_NAME }}:testing && \
|
||||
docker exec nextcloud occ status && \
|
||||
nc -z localhost 8888
|
||||
|
||||
- name: Push Docker image
|
||||
id: push
|
||||
if: github.event_name != 'pull_request'
|
||||
- name: Build and push Docker image
|
||||
id: build-and-push
|
||||
uses: docker/build-push-action@v2
|
||||
with:
|
||||
context: .
|
||||
push: true
|
||||
push: ${{ github.event_name != 'pull_request' }}
|
||||
tags: ${{ steps.meta.outputs.tags }}
|
||||
labels: ${{ steps.meta.outputs.labels }}
|
||||
|
||||
@@ -91,4 +75,4 @@ jobs:
|
||||
if: ${{ github.event_name != 'pull_request' }}
|
||||
env:
|
||||
COSIGN_EXPERIMENTAL: "true"
|
||||
run: cosign sign --yes ${{ env.REGISTRY }}/${{ env.IMAGE_NAME }}@${{ steps.push.outputs.digest }}
|
||||
run: cosign sign --yes ${{ env.REGISTRY }}/${{ env.IMAGE_NAME }}@${{ steps.build-and-push.outputs.digest }}
|
||||
|
||||
@@ -1,5 +1,5 @@
|
||||
# -------------- Build-time variables --------------
|
||||
ARG NEXTCLOUD_VERSION=32.0.3
|
||||
ARG NEXTCLOUD_VERSION=31.0.12
|
||||
ARG PHP_VERSION=8.3
|
||||
ARG NGINX_VERSION=1.28
|
||||
|
||||
@@ -10,8 +10,8 @@ ARG SNUFFLEUPAGUS_VERSION=0.10.0
|
||||
ARG UID=1000
|
||||
ARG GID=1000
|
||||
|
||||
# nextcloud-32.0.3.tar.bz2
|
||||
ARG SHA256_SUM="9b71ac96c910b4a350d986bd3a92ea06f02a161fa586334b56d87d8acafc62d4"
|
||||
# nextcloud-31.0.12.tar.bz2
|
||||
ARG SHA256_SUM="b29089d0abc3918f73f2be2d75685b8d700b8fd8bef416297f25434325f09c36"
|
||||
|
||||
# Nextcloud Security <security@nextcloud.com> (D75899B9A724937A)
|
||||
ARG GPG_FINGERPRINT="2880 6A87 8AE4 23A2 8372 792E D758 99B9 A724 937A"
|
||||
|
||||
@@ -58,8 +58,8 @@ Verifying the signature isn't a requirement, and might not be as seamless as usi
|
||||
## Tags
|
||||
|
||||
- `latest` : latest Nextcloud version
|
||||
- `x` : latest Nextcloud x.x (e.g. `32`)
|
||||
- `x.x.x` : Nextcloud x.x.x (e.g. `32.0.0`)
|
||||
- `x` : latest Nextcloud x.x (e.g. `31`)
|
||||
- `x.x.x` : Nextcloud x.x.x (e.g. `31.0.0`)
|
||||
|
||||
You can always have a glance [here](https://github.com/users/hoellen/packages/container/package/nextcloud).
|
||||
Only the **latest stable version** will be maintained by myself.
|
||||
|
||||
14
SECURITY.md
14
SECURITY.md
@@ -2,14 +2,13 @@
|
||||
|
||||
## Supported versions
|
||||
|
||||
All versions of the Nextcloud community version which still receive updates will be supported
|
||||
All versions of the Nextcloud community version which still receive updates will be supported
|
||||
and will receive the minor version updates and security patches.
|
||||
|
||||
| Version | Supported |
|
||||
| ------- | ----------------------------- |
|
||||
| 32. x | :white_check_mark: |
|
||||
| 31. x | :white_check_mark: |
|
||||
| 30. x | :negative_squared_cross_mark: |
|
||||
| Version | Supported |
|
||||
| ------- | ------------------ |
|
||||
| 31. x | :white_check_mark: |
|
||||
| 30. x | :white_check_mark: |
|
||||
| 29. x | :negative_squared_cross_mark: |
|
||||
| 28. x | :negative_squared_cross_mark: |
|
||||
| 27. x | :negative_squared_cross_mark: |
|
||||
@@ -28,10 +27,9 @@ Uploaded images are regularly scanned for [OS vulnerabilities](https://github.co
|
||||
|
||||
## Reporting a vulnerability
|
||||
|
||||
_Upstream_ vulnerabilities should be reported to _upstream_ projects according to their own security policies.
|
||||
*Upstream* vulnerabilities should be reported to *upstream* projects according to their own security policies.
|
||||
|
||||
Regarding vulnerabilities specific to this project:
|
||||
|
||||
- Faulty configuration files
|
||||
- Unsafe defaults
|
||||
- Dependencies security updates
|
||||
|
||||
@@ -78,7 +78,7 @@ server {
|
||||
access_log off;
|
||||
}
|
||||
|
||||
location ~ \.(?:png|html|ttf|ico|jpg|jpeg|bcmap|mp4|webm)$ {
|
||||
location ~ \.(?:png|html|ttf|ico|jpg|jpeg|bcmap)$ {
|
||||
try_files $uri /index.php$uri$is_args$args;
|
||||
access_log off;
|
||||
}
|
||||
|
||||
Reference in New Issue
Block a user