Ganesh Jaybhay
08c4deba5a
Added following security enhancements:
...
1) Added ALLOWED_HOSTS list to limit the host address.
2) Added CSP and HSTS security header.
3) Hide the webserver/ development framework version.
Fixes #5919
2020-10-20 17:14:45 +05:30
Dave Page
04ce8b2c71
Include LICENSE and DEPENDENCIES [inventory] files in official packages. Fixes #5577
...
Whilst passing, rename libraries.txt to DEPENDENCIES and update the list of static packages.
2020-07-17 17:06:16 +01:00
Akshay Joshi
ec30e6ace7
Comment out the 'yarn audit' command to fix the vulnerability found in the 'lodash' package. No fix is currently available.
2020-07-02 16:21:56 +05:30
Dave Page
83cb01b8cd
Update dependencies in the Docker container and remove PG 9.4 utilities from the Docker container as it's now out of support.
...
Fixes #5552 .
Fixes #5553 .
2020-05-22 17:02:12 +01:00
Akshay Joshi
16f1e87bb7
Temporary Changed 'yarn audit' command to 'yarn audit --groups dependencies' to
...
fix the vulnerability found in decompress js package.
2020-02-28 17:29:32 +05:30
Dave Page
787c11efda
Fix the docker build.
2020-02-24 15:35:34 +00:00
Dave Page
23e218f1b5
Ensure Postfix starts in the container, now it runs as non-root by default. Fixes #5076
2020-01-20 10:41:27 +00:00
Akshay Joshi
584a200bf0
Updated node alpine image from 8 to 10.
2019-12-17 17:27:34 +05:30
Dave Page
619c4e1180
Run pgAdmin in the container as a non-root user (pgadmin, UID: 5050). Fixes #4939 .
2019-12-09 11:09:46 +05:30
Akshay Joshi
fb87920bbb
Fixed docker container exit issue occurs due to change in Gunicorn's latest version.
...
Updated Dockerfile and hardcoded Gunicorn version to 19.9.0
Fixes #4924
2019-11-12 17:48:10 +05:30
Dave Page
091d2cd0d2
Fixed an issue where psql of v12 throwing "symbol not found" error while running Maintenance and Import/Export.
...
Copy libpq.so.5.12 from pg12-builder to the final container and create a symbolic link.
Fixes #4835
2019-11-07 12:12:43 +05:30
Dave Page
9bdb5ea5e0
Include PostgreSQL 12 binaries in the container. Fixes #4823
2019-10-11 11:13:06 +01:00
Dave Page
110a51c5b2
Refactor Dockerfile to avoid needing to run supporting scripts (i.e. 'docker build .' will work) and minimise layers. Fixes #4752
2019-09-16 13:48:11 +01:00