Tags: serversideup/docker-php
Tags
Release 4.4: NGINX upgrade and security improvements (#676) * Update nginx version for Alpine and Debian configurations in php-versions-base-config.yml - Changed nginx version from 1.28.3 to 1.30.1 for Alpine 3.21, 3.22, and 3.23. - Updated nginx version from 1.28.3-1 to 1.30.1-1 for Debian Bullseye, Bookworm, and Trixie. - These updates ensure compatibility with the latest nginx features and security improvements. * Enhance security policy and documentation updates - Expanded the SECURITY.md file to clarify the reporting process for vulnerabilities, including what is in and out of scope for reporting. - Added detailed guidelines on how to handle end-of-life (EOL) software and the implications of using EOL operating systems. - Updated the documentation on choosing an image to include notes on floating vs. version-pinned tags, emphasizing the importance of selecting supported OS releases. - Revised the Upgrade Guide to explain the release process and update strategies, ensuring users understand the implications of their choices regarding image tags.
Integrate Depot CLI setup and update Docker build action in GitHub wo… …rkflow (#651) - Added step to set up Depot CLI in the Docker build and publish workflow. - Replaced Docker build-push-action with Depot's version for improved integration. - Removed unnecessary QEMU and Buildx setup steps.
Add security measures to block PHP execution in storage directory (#641) Implemented restrictions across Apache, NGINX, and FrankenPHP configurations to prevent the execution of PHP files in the /storage directory, addressing potential vulnerabilities related to arbitrary file uploads (GHSA-29cq-5w36-x7w3).
Add security measures to block PHP execution in storage directory (#641) Implemented restrictions across Apache, NGINX, and FrankenPHP configurations to prevent the execution of PHP files in the /storage directory, addressing potential vulnerabilities related to arbitrary file uploads (GHSA-29cq-5w36-x7w3).
PreviousNext