Skip to content

General Fixes #56

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 78 commits into
base: main
Choose a base branch
from
Open

General Fixes #56

wants to merge 78 commits into from

Conversation

SimplicityGuy
Copy link
Collaborator

@SimplicityGuy SimplicityGuy commented Jul 16, 2022
edited
Loading

  • cleanup of script based on shellcheck.net
  • general reformatting
  • updated alpine version
  • addressed issues:
    • top-level script name is not picked up
    • jq parsing errors if some properties are not set

@SimplicityGuy
chore: update alpine image.
653dcb4
@SimplicityGuy
fix: SC2086 shellcheck fixes.
9701554
@SimplicityGuy
fix: SC2004 shellcheck fixes.
82875ab
@SimplicityGuy
fix: SC2006 shellcheck fixes.
8c8e19c
@SimplicityGuy
fix: SC2236 shellcheck fixes.
4d94552
@SimplicityGuy
fix: SC2162 shellcheck fixes.
96e699c
@SimplicityGuy
fix: SC2166 shellcheck fixes.
dcd3e42
@SimplicityGuy
fix: SC2005 and SC2046 shellcheck fixes.
6d92c31
@SimplicityGuy
fix: SC1001, SC2018, SC2019 shellcheck fixes.
882fb13
@SimplicityGuy
fix: simplifying logic.
f18275e
@SimplicityGuy
chore: whitespace and dead code cleanup.
99aa59d
@SimplicityGuy
chore: reorganization.
dc18a51
@SimplicityGuy
chore: rename function to better describe what it does.
c685687
@SimplicityGuy
chore: adding error handling.
8426541
@SimplicityGuy
chore: standardize on {}.
f0c3063
@SimplicityGuy
chore: standardizing on env vars.
7f29f06
@SimplicityGuy
chore: missed one spot using previously set env var.
1d844f8
@SimplicityGuy
Merge pull request #1 from SimplicityGuy/fixes
2b1c209 
fix: shellcheck fixes
@SimplicityGuy
chore: tabs to spaces.
8f1d920
@SimplicityGuy
fix: addressing issue with parsing json.
c4da20c
@SimplicityGuy
chore: omit additional items.
36ef24f
@SimplicityGuy
fix: reset COMMENT.
a523ad7
@SimplicityGuy
fix: address jq parsing errors when some properties are not set.
9316c9f
@SimplicityGuy
chore: moving line to be consistent.
0643e9c
@SimplicityGuy
fix: cleaning script creation.
08bbcef
@SimplicityGuy
chore: nicer formatting.
e69b276
@SimplicityGuy
chore: cleaning up echos.
31d0b73
@SimplicityGuy
fix: moving the top level key name to the "name" property.
9da4249
@SimplicityGuy
Merge pull request #2 from SimplicityGuy/additional-fixes
c530324 
fix: additional fixes
@SimplicityGuy SimplicityGuy mentioned this pull request Jul 16, 2022
Open
SimplicityGuy and others added 30 commits January 5, 2025 10:58
@SimplicityGuy
fix: permissions for /opt/crontab.
799ccc8
@SimplicityGuy
fix: move back to root user to debug permissions more completely.
176cb2e
@SimplicityGuy
fix: handle users at Dockerfile instead of in entrypoint script.
7725e2f
@SimplicityGuy
chore: update pre-commit.
165ea6a
@SimplicityGuy
fix: use rootless.
495c98f
@SimplicityGuy
fix: using docker user and back to dind.
8cd6616
@SimplicityGuy
fix: trying out gosu.
903fb60
@SimplicityGuy
fix: change group.
7b24975
@snyk-bot
fix: Dockerfile to reduce vulnerabilities
0338bed
@SimplicityGuy
chore: update pre-commit.
a2c6492
@SimplicityGuy
fix: attempt to fix startup issues.
3a01924
@SimplicityGuy
Merge pull request #7 from SimplicityGuy/snyk-fix-0d72670c2bce0340446…
e333194 
…829bf9a575aa3

[Snyk] Security upgrade docker from latest to 27.5.0-dind-alpine3.21
@snyk-bot
fix: Dockerfile to reduce vulnerabilities
23e4961 
The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-ALPINE321-EXPAT-9459843
- https://snyk.io/vuln/SNYK-ALPINE321-OPENSSH-8732740
- https://snyk.io/vuln/SNYK-ALPINE321-OPENSSH-8732740
- https://snyk.io/vuln/SNYK-ALPINE321-OPENSSH-8732743
- https://snyk.io/vuln/SNYK-ALPINE321-OPENSSH-8732743
@SimplicityGuy
fix: fix docker build.
243d4a3
@SimplicityGuy
Merge branch 'main' of github.com:SimplicityGuy/docker-crontab into s…
738857a 
…nyk-fix-8994dbf363bbd972bbd011ca325305dd
@SimplicityGuy
Merge pull request #8 from SimplicityGuy/snyk-fix-8994dbf363bbd972bbd…
a2a7754 
…011ca325305dd

[Snyk] Security upgrade docker from 27.5.0-dind-alpine3.21 to 27.5.1-dind-alpine3.21
@snyk-bot
fix: Dockerfile to reduce vulnerabilities
fc27569 
The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-ALPINE321-EXPAT-9459843
- https://snyk.io/vuln/SNYK-ALPINE321-OPENSSH-8732740
- https://snyk.io/vuln/SNYK-ALPINE321-OPENSSH-8732740
- https://snyk.io/vuln/SNYK-ALPINE321-OPENSSH-8732743
- https://snyk.io/vuln/SNYK-ALPINE321-OPENSSH-8732743
@SimplicityGuy
Merge pull request #9 from SimplicityGuy/snyk-fix-ff09303c15dc246c2ac…
c12805e 
…181d828d64a0d

[Snyk] Security upgrade docker from 27.5.1-dind-alpine3.21 to 28.2.2-dind-alpine3.21
@SimplicityGuy
fix: add su-exec.
9052ef7
@SimplicityGuy
chore: update claude docs.
8fb0222
@SimplicityGuy
chore: update pre-commit.
48f67b1
@SimplicityGuy
fix: permission error.
60bc7f4
@SimplicityGuy
fix: fix the error 'can't set groups: Operation not permitted'.
598be37
@SimplicityGuy @claude
fix: use crond -s flag to prevent user switching errors
05710ab 
Replace -S flag with -s flag to run crond in single-user mode.
This prevents "can't set groups: Operation not permitted" errors
since su-exec already handles the user switching to docker user.

🤖 Generated with [Claude Code](https://claude.ai/code)

Co-Authored-By: Claude <[email protected]>
@SimplicityGuy @claude
fix: correct scripts and update dependencies
c5a802c 
- Fix shellcheck warning in entrypoint.sh (add -r flag to read command)
- Fix incorrect source URL in Dockerfile (was pointing to alertmanager-discord)
- Update docker-compose.yml to version 3.8 and change config volume to read-only
- Update GitHub Actions to use latest action versions for better security and features
- Remove invalid -s flag from crond CMD (already fixed in previous commit)

🤖 Generated with [Claude Code](https://claude.ai/code)

Co-Authored-By: Claude <[email protected]>
@SimplicityGuy @claude
fix: filter out unsupported -s flag for BusyBox crond
c637f74 
BusyBox v1.37.0 crond doesn't support the -s flag that was attempted
in previous versions. This fix adds argument filtering in entrypoint.sh
to gracefully handle and remove any -s flags passed to crond, preventing
the "unrecognized option: s" error.

The solution maintains all previous fixes including proper user switching
via su-exec and running crond as root for cron job execution.

🤖 Generated with [Claude Code](https://claude.ai/code)

Co-Authored-By: Claude <[email protected]>
@SimplicityGuy
fix: moving the CRONTAB_FILE.
26f5591
@SimplicityGuy
fix: Issue was that the environment variable wasn't being expanded in…
6d8f92f 
… the CMD instruction. Docker doesn't perform shell variable expansion in the exec form of CMD.
@SimplicityGuy
chore: update pre-commit.
26afa4f
@SimplicityGuy @claude
fix: BusyBox crond crontab directory configuration
1d28255 
The issue was that BusyBox crond was trying to interpret subdirectories
in /opt/crontab as usernames. This fix:

- Installs the generated crontab to /etc/crontabs/docker where BusyBox
  expects user crontab files
- Updates the crond command to use /etc/crontabs instead of /opt/crontab
- Ensures proper permissions (600) on the crontab file

This resolves the "no such user" errors for 'crontab' and 'jobs' directories.

🤖 Generated with [Claude Code](https://claude.ai/code)

Co-Authored-By: Claude <[email protected]>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@SimplicityGuy @RoboMagus @snyk-bot