Commits · 7a22999f925728ab8c51a9e1a262307d73a1c156 · Pierre Boudes / mastodon · GitLab

Snippets Groups Projects

Jan 24, 2024
- Bump ruby version to 3.2.3 · 7a22999f
  Claire authored 1 year ago
  
  7a22999f
Sep 14, 2023
- Change Dockerfile to upgrade packages when building (#26922) · ef8ca2fd
  Renaud Chaput authored 1 year ago
  
  Unverified
  
  ef8ca2fd
Sep 08, 2023
- Use NodeJS v20 by default (#26830) · e9b528ea
  Renaud Chaput authored 1 year ago
  
  Unverified
  
  e9b528ea
Sep 05, 2023
- Migrate Dockerfile to Bookworm (#26802) · b749de76
  Michael Stanclift authored 1 year ago
  
  Unverified
  
  b749de76
Aug 25, 2023
- Change the pre-release versioning scheme and associated environment variables (#26653) · f3984747
  Claire authored 1 year ago
  
  Unverified
  
  f3984747
May 19, 2023
- Fix minor typos in comments and spec names (#21831) · 99e2e9b8
  Nick Schonning authored 1 year ago
  
  Unverified
  
  99e2e9b8
May 04, 2023
- Fixed mastodon version injection into containers via github actions (#24858) · ac41a971
  Tim Campbell authored 1 year ago
  
  Unverified
  
  ac41a971
- Add version suffixes to nightly & edge image builds (#24823) · 830e6cef
  Renaud Chaput authored 1 year ago
  
  Unverified
  
  830e6cef
Apr 07, 2023
- Update Node.js to 16.20.0 (#24316) · 86286106
  Nick Schonning authored 1 year ago
  
  Unverified
  
  86286106
- Remove duplicate ca-certificates Docker install (#24231) · 26682d4c
  Nick Schonning authored 1 year ago
  
  Unverified
  
  26682d4c
Mar 31, 2023
- Bump ruby to 3.2.2 due to ReDoS vulnerabilities (#24320) · f318f1ef
  Sai authored 1 year ago
  
  Unverified
  
  f318f1ef
Mar 23, 2023
- Use Yarn production install for asset compile (#24232) · e7e189fa
  Nick Schonning authored 1 year ago
  
  Unverified
  
  e7e189fa
Feb 15, 2023
- Upgrade to Ruby 3.2 (#22928) · fb8503e8
  Aaron Patterson authored 2 years ago
  
  Co-authored-by: Matthew Ford <matt@bitzesty.com>
  Unverified
  
  fb8503e8
Feb 13, 2023
- Update Ruby to 3.0.5 (#23544) · 841263a5
  Nick Schonning authored 2 years ago
  
  Unverified
  
  841263a5
- Sync Node.js to 16.19 patch release (#23554) · c6b7e041
  Nick Schonning authored 2 years ago
  
  Unverified
  
  c6b7e041
- Yarn cache cleanup right after install in Docker (#23557) · a1c0573b
  Nick Schonning authored 2 years ago
  
  Unverified
  
  a1c0573b
Dec 15, 2022

Add hadolint as Dockerfile linter (#20993) · a0813806

Moritz Heiber authored 2 years ago

* Added hadolint as Dockerfile linter in pipeline and resolved remaining hadolint issues in Dockerfile

* Use more specific version of hadolint Action

* Bumpt hadolint Action version to latest version to avoid deprecation notice

* Being _really_ specific now

a0813806

Dec 11, 2022
- Update Node 16.18.1 for latest security release (#22019) · 736b4283
  Nick Schonning authored 2 years ago
  
  * Update Node 16.18.1 for latest security release * Increase Yarn network timeout for build error
  Unverified
  
  736b4283
Nov 22, 2022

Add missing procps package to Dockerfile (#21028) · f343ed42

BtbN authored 2 years ago

The new Debian-Base does not come with this by default, making the ps based health-check in the compose file fail

f343ed42

Nov 17, 2022
- Remove blank line from start of Dockerfile breaking syntax declaration (#20948) · 231e3ec5
  Effy Elden authored 2 years ago
  
  Unverified
  
  231e3ec5
- Split off Dockerfile components for faster build times (#20933) · 1b5ed320
  Moritz Heiber authored 2 years ago
  
  Unverified
  
  1b5ed320
- Use buildx functions for faster build (#20692) · 92734e3d
  Kohei Ota (inductor) authored 2 years ago
  
  * Use buildx functions for faster build * move link * cannot use --link with --chown
  Unverified
  
  92734e3d
Sep 29, 2022
- Install python3 when building with Docker (#18072) · 5cf056fd
  Yamagishi Kazutoshi authored 2 years ago
  
  Unverified
  
  5cf056fd
Sep 23, 2022

Update Node to 16.17.1 (#19224) · 0c99c6c3

Daniel Jakots authored 2 years ago

See
https://nodejs.org/en/blog/vulnerability/september-2022-security-releases/
for the details.

0c99c6c3

Aug 15, 2022
- Bump Ruby version from 3.0.3 to 3.0.4 (#18028) · 113dd90a
  zunda authored 2 years ago
  
  https://www.ruby-lang.org/en/news/2022/04/12/ruby-3-0-4-released/
  Unverified
  
  113dd90a
- Update node to 16.16.0 (#18790) · 9f61f22a
  Daniel Jakots authored 2 years ago
  
  See https://nodejs.org/en/blog/vulnerability/july-2022-security-releases/
  Unverified
  
  9f61f22a
Jun 27, 2022
- Update Dockerfile (#18717) · 602f291d
  Shlee authored 2 years ago
  
  Unverified
  
  602f291d
Mar 19, 2022

Bump NODE_VER to 16.14.2 (#17825) · 8ee4fde1

Daniel Jakots authored 2 years ago

See the announcement
https://nodejs.org/en/blog/vulnerability/mar-2022-security-releases/

8ee4fde1

Feb 14, 2022
- Remove protobuf dependencies (#17539) · 298491a8
  Yamagishi Kazutoshi authored 3 years ago
  
  Unverified
  
  298491a8
Jan 30, 2022

Bump NODE_VER to 16.13.2, to solve security issues (#17399) · aa454045

Daniel Jakots authored 3 years ago

Fixes CVE-2021-44532, CVE-2021-44533, and CVE-2022-21824.
See: https://nodejs.org/en/blog/vulnerability/jan-2022-security-releases/

aa454045

Dec 25, 2021

Save bundle config as local (#17188) · fad37dd1

Jeong Arm authored 3 years ago

Some bundle options are saved as global user config and not project local.
Specially, `deployment` must be saved as local config to be run on copied environment

fad37dd1

Nov 24, 2021
- Upgrade Ruby to 3.0.3 (#17038) · 46e62fc4
  zunda authored 3 years ago
  
  https://www.ruby-lang.org/en/news/2021/11/24/ruby-3-0-3-released/
  Unverified
  
  46e62fc4
Nov 18, 2021
- Update Dockerfile (#16939) · d647f6ad
  Shlee authored 3 years ago
  
  Unverified
  
  d647f6ad
- Ruby 3.0.2 Upgrade (#16982) · c242c1d8
  Shlee authored 3 years ago
  
  * Update .ruby-version * Update Gemfile * Update Gemfile.lock * Update Dockerfile * Update check-i18n.yml * Update config.yml * Update config.yml
  Unverified
  
  c242c1d8
Nov 17, 2021

[Dockerfile] [Security] Update NodeJS to V16 (LTS) on docker. (#16856) · 03338d12

Shlee authored 3 years ago

* [Security] Update NodeJS on docker.

https://nodejs.org/en/blog/vulnerability/oct-2021-security-releases/

* Update Dockerfile

* Upgrade npm package

* Update Dockerfile

03338d12

Oct 14, 2021
- add bundle flag to suppress root warning (#16557) · f68772fd
  David Sterry authored 3 years ago
  
  Unverified
  
  f68772fd
Sep 13, 2021
- Update Dockerfile (#16696) · 12cb6ed4
  Shlee authored 3 years ago
  
  Unverified
  
  12cb6ed4
Aug 10, 2021

NodeJS 14 support - circleci/docker/.nvmrc (#16163) · 229f5d16

Shlee authored 3 years ago

* Update config.yml

* Update Dockerfile

* Update .nvmrc

* Update Dockerfile

* NodeJS 10 is EOL.

* Update package.json

* Update README.md

* Update Vagrantfile

* Update Dockerfile

* Update Dockerfile

229f5d16

Jul 09, 2021

Use ruby-2.7.4 (#16481) · 3d5183e9

Daigo 3 Dango authored 3 years ago

Stop using older version of resolv gem as the bug has been fixed.
https://bugs.ruby-lang.org/issues/17781

3d5183e9

May 04, 2021

Revert default Ruby version to 2.7.2 (#16154) · d95128c9

Claire authored 3 years ago

Ruby 2.7.3 introduced a new bug with Resolv::DNS, which we heavily use within
Mastodon: https://bugs.ruby-lang.org/issues/17781

Ruby 2.7.3 also included security fixes for two CVEs, but those do not seem
to apply to Mastodon:
https://github.com/tootsuite/mastodon/pull/16004#issuecomment-815125025

d95128c9