cn/dyndnsd
1
0
Fork 0
mirror of https://github.com/cmur2/dyndnsd.git synced 2025-08-08 08:33:56 +02:00
Code Releases Activity

Compare commits

base: cn:v3.1.0
Branches Tags
cn:master cn:renovate-aquasecurity-trivy-0.x cn:dependabot-bundler-async-gte-1.31-and-lt-2.28 cn:renovate-aquasecurity-trivy-0.61.x cn:dependabot-bundler-base64-gte-0.2-and-lt-0.4 cn:dependabot-bundler-async-dns-gte-1.3-and-lt-1.5 cn:dependabot-bundler-opentelemetry-instrumentation-rack-gte-0.22-and-lt-0.26 cn:dependabot-bundler-opentelemetry-sdk-gte-1.2-and-lt-1.5 cn:dependabot-bundler-opentelemetry-exporter-jaeger-gte-0.22-and-lt-0.24 cn:depfu-update-rubocop-rspec-2.29.2 cn:depfu-update-rubocop-1.63.5 cn:depfu-update-async-2.11.0 cn:update-3.3 cn:try-rbs cn:dyndnsd-2.x cn:try-s2 cn:try-sorbet cn:dyndnsd-1.x
cn:v3.10.0 cn:v3.9.2 cn:v3.9.1 cn:v3.9.0 cn:v3.8.2 cn:v3.8.1 cn:v3.8.0 cn:v3.7.3 cn:v3.7.2 cn:v3.7.1 cn:v3.7.0 cn:v3.6.2 cn:v3.6.1 cn:v3.6.0 cn:v3.5.3 cn:v3.5.2 cn:v3.5.1 cn:v3.5.0 cn:v3.4.8 cn:v3.4.7 cn:v3.4.6 cn:v3.4.5 cn:v3.4.4 cn:v3.4.3 cn:v3.4.2 cn:v3.4.1 cn:v3.4.0 cn:v3.3.3 cn:v3.3.2 cn:v3.3.2.rc1 cn:v3.3.1 cn:v3.3.0 cn:v3.2.0 cn:v3.1.3 cn:v3.1.2 cn:v3.1.1 cn:v3.1.0 cn:v3.1.0.rc1 cn:v3.0.0 cn:v2.3.1 cn:v2.3.0 cn:v2.2.0 cn:v2.1.1 cn:v2.1.0 cn:v2.0.0 cn:v2.0.0.rc2 cn:v2.0.0.rc1 cn:v1.6.1 cn:v1.6.0 cn:v1.5.0 cn:v1.4.0 cn:v1.3.0 cn:v1.2.2 cn:v1.2.1 cn:v1.2.0 cn:v1.1.0 cn:v1.0.0 cn:v0.0.4 cn:v0.0.3 cn:v0.0.2
..
compare: cn:v3.1.1
Branches Tags
cn:master cn:renovate-aquasecurity-trivy-0.x cn:dependabot-bundler-async-gte-1.31-and-lt-2.28 cn:renovate-aquasecurity-trivy-0.61.x cn:dependabot-bundler-base64-gte-0.2-and-lt-0.4 cn:dependabot-bundler-async-dns-gte-1.3-and-lt-1.5 cn:dependabot-bundler-opentelemetry-instrumentation-rack-gte-0.22-and-lt-0.26 cn:dependabot-bundler-opentelemetry-sdk-gte-1.2-and-lt-1.5 cn:dependabot-bundler-opentelemetry-exporter-jaeger-gte-0.22-and-lt-0.24 cn:depfu-update-rubocop-rspec-2.29.2 cn:depfu-update-rubocop-1.63.5 cn:depfu-update-async-2.11.0 cn:update-3.3 cn:try-rbs cn:dyndnsd-2.x cn:try-s2 cn:try-sorbet cn:dyndnsd-1.x
cn:v3.10.0 cn:v3.9.2 cn:v3.9.1 cn:v3.9.0 cn:v3.8.2 cn:v3.8.1 cn:v3.8.0 cn:v3.7.3 cn:v3.7.2 cn:v3.7.1 cn:v3.7.0 cn:v3.6.2 cn:v3.6.1 cn:v3.6.0 cn:v3.5.3 cn:v3.5.2 cn:v3.5.1 cn:v3.5.0 cn:v3.4.8 cn:v3.4.7 cn:v3.4.6 cn:v3.4.5 cn:v3.4.4 cn:v3.4.3 cn:v3.4.2 cn:v3.4.1 cn:v3.4.0 cn:v3.3.3 cn:v3.3.2 cn:v3.3.2.rc1 cn:v3.3.1 cn:v3.3.0 cn:v3.2.0 cn:v3.1.3 cn:v3.1.2 cn:v3.1.1 cn:v3.1.0 cn:v3.1.0.rc1 cn:v3.0.0 cn:v2.3.1 cn:v2.3.0 cn:v2.2.0 cn:v2.1.1 cn:v2.1.0 cn:v2.0.0 cn:v2.0.0.rc2 cn:v2.0.0.rc1 cn:v1.6.1 cn:v1.6.0 cn:v1.5.0 cn:v1.4.0 cn:v1.3.0 cn:v1.2.2 cn:v1.2.1 cn:v1.2.0 cn:v1.1.0 cn:v1.0.0 cn:v0.0.4 cn:v0.0.3 cn:v0.0.2

11 Commits
v3.1.0 ... v3.1.1

Author SHA1 Message Date
cn
156557c6d7 release: 3.1.1 2020-10-03 10:59:52 +02:00
cn
fd1d58abd6 gems: update webrick to version 1.6.1 
- explicitly use webrick gem version with patch against CVE-2020-25613
- https://www.ruby-lang.org/en/news/2020/09/29/http-request-smuggling-cve-2020-25613/
- webrick versions bundled with ruby are vulnerable at this point
 2020-10-02 00:50:23 +02:00
depfu[bot]
fc4d731434 gems: update rubocop to version 0.92.0 2020-09-26 12:39:42 +02:00
depfu[bot]
8b42a916d0 gems: update rubocop to version 0.91.0 2020-09-16 09:31:58 +02:00
depfu[bot]
e899488fa9 gems: update rubocop to version 0.90.0 2020-09-02 10:34:03 +02:00
Christian Nicolai
6ed0799f49 ci: improve ignore of false-positives on 3rd party lockfiles 
- amends 5b332d8f57
 2020-08-30 11:41:23 +02:00
Christian Nicolai
5b332d8f57 ci: ignore false-positive 3rd party lockfiles for trivy 
- uses newly released `--skip-dirs` flag of Trivy 0.11.0
 2020-08-30 11:34:26 +02:00
cn
0de5078d9d ci: add Dockerfile linting 2020-08-22 12:50:55 +02:00
depfu[bot]
72c8dda7dd gems: update jaeger-client to version 1.1.0 
Update jaeger-client to version 1.1.0 (#62)

Co-authored-by: depfu[bot] <23717796+depfu[bot]@users.noreply.github.com>
 2020-08-22 11:27:57 +02:00
cn
e36b210f66 ci: update github actions versions 2020-08-21 16:39:11 +02:00
cn
fcc3f12284 ci: fix vulnscan behavior to scan most-recent semver 2020-08-19 14:33:26 +02:00
7 changed files with 34 additions and 14 deletions
Expand all files Collapse all files

2
.github/workflows/cd.yml vendored
View File

@@ -10,7 +10,7 @@ jobs:
release-dockerimage:
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@v1
- uses: actions/checkout@v2
- name: Extract dyndnsd version from tag name
run: |
echo ::set-env name=DYNDNSD_VERSION::${GITHUB_REF#refs/*/v}

7
.github/workflows/vulnscan.yml vendored
View File

@@ -23,16 +23,19 @@ jobs:
run: |
trivy image --download-db-only
- name: Scan vulnerabilities using Trivy
env:
TRIVY_SKIP_DIRS: '/usr/lib/ruby/gems/2.7.0/gems/jaeger-client-0.10.0/crossdock,/usr/lib/ruby/gems/2.7.0/gems/jaeger-client-1.0.0/crossdock'
run: |
trivy --version
ALL_IMAGES="$(curl -s https://hub.docker.com/v2/repositories/cmur2/dyndnsd/tags?page_size=1000 | jq -r '.results[].name | "cmur2/dyndnsd:" + .' | grep -e 'cmur2/dyndnsd:v' | sort -r)"
# semver sorting as per https://stackoverflow.com/a/40391207/2148786
ALL_IMAGES="$(curl -s https://hub.docker.com/v2/repositories/cmur2/dyndnsd/tags?page_size=1000 | jq -r '.results[].name | "cmur2/dyndnsd:" + .' | grep -e 'cmur2/dyndnsd:v' | sed '/-/!{s/$/_/}' | sort -r -V | sed 's/_$//')"
EXIT_CODE=0
set -e
for major_version in $(seq 1 10); do
for image in $ALL_IMAGES; do
if [[ "$image" = cmur2/dyndnsd:v$major_version.* ]]; then
echo -n "\nScanning newest patch release $image of major v$major_version...\n"
echo -e "\nScanning newest patch release $image of major v$major_version...\n"
if ! trivy image --skip-update --exit-code 1 "$image"; then
EXIT_CODE=1
fi

3
.travis.yml
View File

@@ -6,5 +6,8 @@ rvm:
- 2.6
- 2.5
services:
- docker
script:
- bundle exec rake travis

6
CHANGELOG.md
View File

@@ -1,5 +1,11 @@
# Changelog
## 3.1.1 (october 3, 2020)
IMPROVEMENTS:
- Use webrick gem which contains fixes against [CVE-2020-25613](https://www.ruby-lang.org/en/news/2020/09/29/http-request-smuggling-cve-2020-25613/)
## 3.1.0 (August 19, 2020)
IMPROVEMENTS:

23
Rakefile
View File

@@ -9,16 +9,23 @@ RSpec::Core::RakeTask.new(:spec)
RuboCop::RakeTask.new
Bundler::Audit::Task.new
desc 'Should be run by developer once to prepare initial solargraph usage (fill caches etc.)'
task :'solargraph:init' do
sh 'solargraph download-core'
end
desc 'Run experimental solargraph type checker'
task :'solargraph:tc' do
task :solargraph do
sh 'solargraph typecheck'
end
task default: [:rubocop, :spec, 'bundle:audit']
namespace :solargraph do
desc 'Should be run by developer once to prepare initial solargraph usage (fill caches etc.)'
task :init do
sh 'solargraph download-core'
end
end
task travis: [:default, :'solargraph:init', :'solargraph:tc']
desc 'Run hadolint for Dockerfile linting'
task :hadolint do
sh 'docker run --rm -i hadolint/hadolint:v1.18.0 hadolint --ignore DL3018 - < docker/Dockerfile'
end
task default: [:rubocop, :spec, 'bundle:audit', :solargraph]
task travis: ['solargraph:init', :default, :hadolint]

5
dyndnsd.gemspec
View File

@@ -28,17 +28,18 @@ Gem::Specification.new do |s|
s.required_ruby_version = '>= 2.5'
s.add_runtime_dependency 'async-dns', '~> 1.2.0'
s.add_runtime_dependency 'jaeger-client', '~> 1.0.0'
s.add_runtime_dependency 'jaeger-client', '~> 1.1.0'
s.add_runtime_dependency 'metriks'
s.add_runtime_dependency 'opentracing', '~> 0.5.0'
s.add_runtime_dependency 'rack', '~> 2.0'
s.add_runtime_dependency 'rack-tracer', '~> 0.9.0'
s.add_runtime_dependency 'webrick', '>= 1.6.1'
s.add_development_dependency 'bundler'
s.add_development_dependency 'bundler-audit', '~> 0.7.0'
s.add_development_dependency 'rack-test'
s.add_development_dependency 'rake'
s.add_development_dependency 'rspec'
s.add_development_dependency 'rubocop', '~> 0.89.0'
s.add_development_dependency 'rubocop', '~> 0.92.0'
s.add_development_dependency 'solargraph'
end

2
lib/dyndnsd/version.rb
View File

@@ -1,5 +1,5 @@
# frozen_string_literal: true
module Dyndnsd
VERSION = '3.1.0'
VERSION = '3.1.1'
end