webdiss/Dockerfile

FROM alpine:3.14.2 AS stage
LABEL maintainer="Nicolas Favre-Felix <n.favrefelix@gmail.com>"

RUN apk update && apk add wget make gcc libevent-dev msgpack-c-dev musl-dev bsd-compat-headers jq
RUN wget -q https://api.github.com/repos/nicolasff/webdis/tags -O /dev/stdout | jq '.[] | .name' | head -1  | sed 's/"//g' > latest
RUN wget https://github.com/nicolasff/webdis/archive/$(cat latest).tar.gz -O webdis-latest.tar.gz
RUN tar -xvzf webdis-latest.tar.gz
RUN cd webdis-$(cat latest) && make && make install && cd ..
RUN sed -i -e 's/"daemonize":.*true,/"daemonize": false,/g' /etc/webdis.prod.json

# main image
FROM alpine:3.14.2
# Required dependencies, with versions fixing known security vulnerabilities
# RUN apk update && apk add libevent msgpack-c 'redis>5.1' 'apk-tools>2.12.6-r0'
RUN apk update && apk add libevent msgpack-c 'redis>6.2.6' 'apk-tools>2.12.6-r0'
COPY --from=stage /usr/local/bin/webdis /usr/local/bin/
COPY --from=stage /etc/webdis.prod.json /etc/webdis.prod.json
RUN echo "daemonize yes" >> /etc/redis.conf
CMD /usr/bin/redis-server /etc/redis.conf && /usr/local/bin/webdis /etc/webdis.prod.json

EXPOSE 7379
Update base image from alpine 3.12.7 to 3.14.2 3 years ago			`FROM alpine:3.14.2 AS stage`
Dockerfile updates * Bump alpine version from 3.11.3 to 3.12.3 * Use `LABEL` instead of `MAINTAINER` which is deprecated 4 years ago			`LABEL maintainer="Nicolas Favre-Felix <n.favrefelix@gmail.com>"`
Add Dockerfile 11 years ago
Update Dockerfile to no longer require the latest tag The Dockerfile used to refer to the latest published tag for Webdis. This meant updating the file every time a new release was published. This change uses the GitHub API to find the latest tag before downloading and building the corresponding release. 4 years ago			`RUN apk update && apk add wget make gcc libevent-dev msgpack-c-dev musl-dev bsd-compat-headers jq`
			`RUN wget -q https://api.github.com/repos/nicolasff/webdis/tags -O /dev/stdout \| jq '.[] \| .name' \| head -1 \| sed 's/"//g' > latest`
			`RUN wget https://github.com/nicolasff/webdis/archive/$(cat latest).tar.gz -O webdis-latest.tar.gz`
			`RUN tar -xvzf webdis-latest.tar.gz`
			`RUN cd webdis-$(cat latest) && make && make install && cd ..`
Update Dockerfile to Debian Jessie, enable MessagePack, fix RUN command + add Docker example to README 5 years ago			`RUN sed -i -e 's/"daemonize":.*true,/"daemonize": false,/g' /etc/webdis.prod.json`
Add Dockerfile 11 years ago
Update Dockerfile to use Alpine Linux (#169) * Change base image to Alpine 3.11.3 * Use multi-stage build (reducing size from 276 MB to 9.5 MB) * Change Makefile to build with -O3 instead of -O0 -ggdb 5 years ago			`# main image`
Update base image from alpine 3.12.7 to 3.14.2 3 years ago			`FROM alpine:3.14.2`
			`# Required dependencies, with versions fixing known security vulnerabilities`
Release 0.1.17.1 (Fixes Redis vulnerabilities) Security update: upgrading the version of Redis bundled in the Webdis image to fix a number of severe vulnerabilities. * Low severity vulnerability found in redis/redis Description: Integer Overflow or Wraparound Info: https://snyk.io/vuln/SNYK-ALPINE314-REDIS-1727801 Introduced through: redis/redis@6.2.5-r0 From: redis/redis@6.2.5-r0 Fixed in: 6.2.6-r0 * Medium severity vulnerability found in redis/redis Description: Out-of-bounds Read Info: https://snyk.io/vuln/SNYK-ALPINE314-REDIS-1727803 Introduced through: redis/redis@6.2.5-r0 From: redis/redis@6.2.5-r0 Fixed in: 6.2.6-r0 * High severity vulnerability found in redis/redis Description: Allocation of Resources Without Limits or Throttling Info: https://snyk.io/vuln/SNYK-ALPINE314-REDIS-1727783 Introduced through: redis/redis@6.2.5-r0 From: redis/redis@6.2.5-r0 Fixed in: 6.2.6-r0 * High severity vulnerability found in redis/redis Description: CVE-2021-32626 Info: https://snyk.io/vuln/SNYK-ALPINE314-REDIS-1727820 Introduced through: redis/redis@6.2.5-r0 From: redis/redis@6.2.5-r0 Fixed in: 6.2.6-r0 * High severity vulnerability found in redis/redis Description: Integer Overflow or Wraparound Info: https://snyk.io/vuln/SNYK-ALPINE314-REDIS-1727822 Introduced through: redis/redis@6.2.5-r0 From: redis/redis@6.2.5-r0 Fixed in: 6.2.6-r0 * High severity vulnerability found in redis/redis Description: Integer Overflow or Wraparound Info: https://snyk.io/vuln/SNYK-ALPINE314-REDIS-1727823 Introduced through: redis/redis@6.2.5-r0 From: redis/redis@6.2.5-r0 Fixed in: 6.2.6-r0 * High severity vulnerability found in redis/redis Description: Integer Overflow or Wraparound Info: https://snyk.io/vuln/SNYK-ALPINE314-REDIS-1727825 Introduced through: redis/redis@6.2.5-r0 From: redis/redis@6.2.5-r0 Fixed in: 6.2.6-r0 * High severity vulnerability found in redis/redis Description: Integer Overflow or Wraparound Info: https://snyk.io/vuln/SNYK-ALPINE314-REDIS-1727826 Introduced through: redis/redis@6.2.5-r0 From: redis/redis@6.2.5-r0 Fixed in: 6.2.6-r0 3 years ago			`# RUN apk update && apk add libevent msgpack-c 'redis>5.1' 'apk-tools>2.12.6-r0'`
			`RUN apk update && apk add libevent msgpack-c 'redis>6.2.6' 'apk-tools>2.12.6-r0'`
Update Dockerfile to use Alpine Linux (#169) * Change base image to Alpine 3.11.3 * Use multi-stage build (reducing size from 276 MB to 9.5 MB) * Change Makefile to build with -O3 instead of -O0 -ggdb 5 years ago			`COPY --from=stage /usr/local/bin/webdis /usr/local/bin/`
			`COPY --from=stage /etc/webdis.prod.json /etc/webdis.prod.json`
			`RUN echo "daemonize yes" >> /etc/redis.conf`
			`CMD /usr/bin/redis-server /etc/redis.conf && /usr/local/bin/webdis /etc/webdis.prod.json`
Add Dockerfile 11 years ago
			`EXPOSE 7379`