Skip to content

Tags: netbootxyz/docker-netbootxyz

Tags

0.7.6-nbxyz6

Toggle 0.7.6-nbxyz6's commit message

Verified

This commit was created on GitHub.com and signed with GitHub’s verified signature.
Merge pull request #98 from netbootxyz/renovate/aquasecurity-trivy-ac…

…tion-0.x

Update aquasecurity/trivy-action action to v0.32.0

0.7.6-nbxyz4

Toggle 0.7.6-nbxyz4's commit message

Verified

This commit was created on GitHub.com and signed with GitHub’s verified signature.
Merge pull request #95 from netbootxyz/remove-gosu

Let master process run as root to bind to 80, workers run as nbxyz

0.7.6-nbxyz3

Toggle 0.7.6-nbxyz3's commit message

Verified

This commit was created on GitHub.com and signed with GitHub’s verified signature.
Merge pull request #94 from netbootxyz/remove-gosu

Remove gosu so that ports can bind

0.7.6-nbxyz2

Toggle 0.7.6-nbxyz2's commit message
CI Workflow fixes

0.7.6-nbxyz1

Toggle 0.7.6-nbxyz1's commit message

Verified

This commit was created on GitHub.com and signed with GitHub’s verified signature.
Implement rootless Docker container with enhanced security and preser…

…ved TFTP logging (#87)

* Implement rootless Docker container with preserved TFTP logging

- Convert all processes to run as non-root user (nbxyz) for enhanced security
- Add customizable PUID/PGID environment variables for volume permission management
- Implement privilege dropping using gosu for secure initialization
- Optimize Dockerfile with multi-stage build and better caching
- Create dnsmasq wrapper script to ensure TFTP logs appear in docker logs
- Configure supervisord to properly forward dnsmasq output to container stdout
- Maintain full TFTP/PXE boot debugging functionality for users

Security improvements:
- All application processes (nginx, webapp, dnsmasq) run as nbxyz user
- Only supervisord initialization runs as root, then drops privileges
- Proper permission management for all service directories
- Configurable user/group IDs via PUID/PGID environment variables

Performance optimizations:
- Multi-stage Docker build reduces final image size
- Better layer caching for faster rebuilds
- Optimized package installation and cleanup

🤖 Generated with [Claude Code](https://claude.ai/code)

Co-Authored-By: Claude <noreply@anthropic.com>

* Update Dockerfile

Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>

* Update root/init.sh

Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>

---------

Co-authored-by: Claude <noreply@anthropic.com>
Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>

0.7.5-nbxyz9

Toggle 0.7.5-nbxyz9's commit message

Verified

This commit was created on GitHub.com and signed with GitHub’s verified signature.
Merge pull request #86 from netbootxyz/healthchecks

Add container healthchecks

0.7.5-nbxyz8

Toggle 0.7.5-nbxyz8's commit message

Verified

This commit was created on GitHub.com and signed with GitHub’s verified signature.
Merge pull request #85 from netbootxyz/renovate/aquasecurity-trivy-ac…

…tion-0.x

Update aquasecurity/trivy-action action to v0.31.0

0.7.5-nbxyz7

Toggle 0.7.5-nbxyz7's commit message

Verified

This commit was created on GitHub.com and signed with GitHub’s verified signature.
Merge pull request #84 from netbootxyz/renovate/alpine-3.x

Update alpine Docker tag to v3.22.0

0.7.5-nbxyz6

Toggle 0.7.5-nbxyz6's commit message

Verified

This commit was created on GitHub.com and signed with GitHub’s verified signature.
Merge pull request #72 from netbootxyz/renovate/anothrnick-github-tag…

…-action-1.x

Update anothrNick/github-tag-action action to v1.73.0

0.7.5-nbxyz5

Toggle 0.7.5-nbxyz5's commit message

Verified

This commit was created on GitHub.com and signed with GitHub’s verified signature.
Merge pull request #83 from netbootxyz/renovate/aquasecurity-trivy-ac…

…tion-0.x

Update aquasecurity/trivy-action action to v0.30.0