fix(docker): 升级 nginx 至 1.30.1 以修复安全漏洞 并添加构建工作流#210
Open
KKKKeybird wants to merge 5 commits into
Open
Conversation
nginx版本修改为1.30.1-r0
Updated the Docker CI workflow to include steps for building JAR artifacts and handling workflow triggers.
Agent-Logs-Url: https://github.com/KKKKeybird/nginxWebUI/sessions/921c3058-6f46-415f-8d5a-e7c7a3d63526 Co-authored-by: KKKKeybird <85860208+KKKKeybird@users.noreply.github.com>
Fix Docker image workflow failure after nginx 1.30.1 upgrade
KKKKeybird
changed the title
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
概要
本 PR 将 Docker 镜像中的 nginx 升级到 Alpine edge/main 中的
1.30.1-r0,并新增 GitHub Actions 工作流,用于自动编译 JAR 和构建 Docker 镜像。此次升级主要用于修复 nginx
1.30.1之前版本中存在的高危安全漏洞,同时改善项目的自动化构建流程。Related to #209
主要修改
target/nginxWebUI-*.jar作为构建产物1.30.1-r0nginx-mod-*动态模块同步固定到1.30.1-r0nginx-mod-http-upstream-jdomain1.30.1-r0版本兼容性说明
nginx-mod-http-upstream-jdomain是一个第三方 nginx 可选模块,主要用于 upstream 域名动态解析。它并不是 nginxWebUI 本体启动所必需的依赖,也不影响常见的反向代理、SSL 证书、静态站点、负载均衡和 stream 转发等功能。由于 nginx 动态模块通常需要与 nginx 主程序版本保持一致,因此本 PR 选择移除该模块,而不是混用旧版本模块。
测试情况
nginx -v显示版本为nginx/1.30.1