docker-nginx
docker-nginx copied to clipboard
nginxinc
Official NGINX Dockerfiles
We see a lot of crudges and hacks to notify nginx or the nginx container informing it it needs to restart. While there certainly cases that require manual control, for...
Hello! We ran a twistlock scan and it showed the following CVE's: libtiff5- - [CVE-2022-1210](https://security-tracker.debian.org/tracker/CVE-2022-1210) - [CVE-2022-1622](https://security-tracker.debian.org/tracker/CVE-2022-1622) - [CVE-2022-1623](https://security-tracker.debian.org/tracker/CVE-2022-1623) - [CVE-2022-2056](https://security-tracker.debian.org/tracker/CVE-2022-2056) - [CVE-2022-2057](https://security-tracker.debian.org/tracker/CVE-2022-2057) - [CVE-2022-2058](https://security-tracker.debian.org/tracker/CVE-2022-2058) - [CVE-2022-34526](https://security-tracker.debian.org/tracker/CVE-2022-34526) - [CVE-2022-1355](https://security-tracker.debian.org/tracker/CVE-2022-1355) -...
Not sure if it is a bug but it is breaking change that is not well documented here. Related Nginx cyptic error is following ``` 2023/01/17 12:00:00 [crit] 21#21: *34751...
## Describe the problem The .envsh merged in #687 is a very nice solution, but the current implementation does not passed to nginx. This is due to bash/dash (POSIX spec?)....
close #745 Because pipeline is executed in a subshell, exported environment variables are not reflected in the parent shell.
Some k8s implentations (I use k0s v1.25.2+k0s.0) use symlinks when mounting ConfigMap as volume.  Following `find` supports symbolic linked contents. But the first `find` does not follow symlinks, it...
When trying to build the nginx image with **modsecurity** I am getting: ``` debconf: delaying package configuration, since apt-utils is not installed Fetched 14.4 MB in 5s (2925 kB/s) Selecting...
The CIS benchmark 2.3.3 for NGINX requires the `nginx.pid` file to be owned by `root:root` and readable by anyone else. According to best practices for Dockerfiles, one should run processes...
One of the multiple ways to avoid long-term CVE and bugs in my infrastructure is to use version-tagged Docker images along with tools such as [Dependabot](https://github.com/dependabot) or [Renovate bot](https://github.com/renovatebot), these...
### Proposed changes This is a follow-up to #894, given that in my eyes it seems most likely a new mainline release will precede a new stable release. Updates the...
