cache dev container images, fix CVE-2023-35945 and force scheduler to reload when instances change

2023-08-02 15:59:23 +02:00 · 2023-08-02 15:59:23 +02:00 · e93b2f65ff
parent f3ba16be9d
commit e93b2f65ff
3 changed files with 3 additions and 1 deletions
--- a/.github/workflows/dev.yml
+++ b/.github/workflows/dev.yml
@ -24,6 +24,7 @@ jobs:
    uses: ./.github/workflows/container-build.yml
    with:
      RELEASE: dev
+      CACHE: true
      ARCH: linux/amd64
      IMAGE: ${{ matrix.image }}
      DOCKERFILE: ${{ matrix.dockerfile }}
--- a/src/bw/Dockerfile
+++ b/src/bw/Dockerfile
@ -73,7 +73,7 @@ RUN apk add --no-cache pcre bash python3 && \
 	ln -s /proc/1/fd/1 /var/log/bunkerweb/access.log

 # Fix CVEs
-RUN apk add "libx11>=1.8.4-r1" "tiff>=4.4.0-r4" "libcrypto3>=3.0.9-r2" "libssl3>=3.0.9-r2"
+RUN apk add "libx11>=1.8.4-r1" "tiff>=4.4.0-r4" "libcrypto3>=3.0.9-r2" "libssl3>=3.0.9-r2" "nghttp2-libs>=1.51.0-r1"

 VOLUME /data /etc/nginx

--- a/src/scheduler/main.py
+++ b/src/scheduler/main.py
@ -664,6 +664,7 @@ if __name__ == "__main__":
                if changes["instances_changed"]:
                    logger.info("Instances changed, generating ...")
                    INSTANCES_NEED_GENERATION = True
+                    NEED_RELOAD = True

            FIRST_RUN = False