dangeroustech/zerotierbridge
1
0
Fork 0
mirror of https://github.com/dangeroustech/ZeroTierBridge.git synced 2025-12-06 09:06:58 +00:00
Code Issues Packages Projects Releases Wiki Activity

Compare commits

base: dangeroustech:v1.0.5
Branches Tags
dangeroustech:main dangeroustech:dependabot/github_actions/actions/checkout-6 dangeroustech:dependabot/docker/debian-13.2 dangeroustech:general-updates dangeroustech:snyk-fix-f90aabd13909b800da4cbba22c1d62d2
dangeroustech:v1.2.4 dangeroustech:v1.2.3 dangeroustech:v1.2.2 dangeroustech:v1.2.1 dangeroustech:v1.2.0 dangeroustech:v1.1.2 dangeroustech:v1.1.1 dangeroustech:v1.1.0 dangeroustech:v1.0.13 dangeroustech:v1.0.12 dangeroustech:v1.0.11 dangeroustech:v1.0.10 dangeroustech:v1.0.9 dangeroustech:v1.0.8 dangeroustech:v1.0.7 dangeroustech:v0.0.1 dangeroustech:v1.0.6 dangeroustech:v1.0.5 dangeroustech:v1.0.4 dangeroustech:v1.0.3 dangeroustech:v1.0.2 dangeroustech:v1.0.1 dangeroustech:v1.0.0 dangeroustech:v0.1
..
compare: dangeroustech:v1.1.0
Branches Tags
dangeroustech:dependabot/github_actions/actions/checkout-6 dangeroustech:dependabot/docker/debian-13.2 dangeroustech:main dangeroustech:general-updates dangeroustech:snyk-fix-f90aabd13909b800da4cbba22c1d62d2
dangeroustech:v1.2.4 dangeroustech:v1.2.3 dangeroustech:v1.2.2 dangeroustech:v1.2.1 dangeroustech:v1.2.0 dangeroustech:v1.1.2 dangeroustech:v1.1.1 dangeroustech:v1.1.0 dangeroustech:v1.0.13 dangeroustech:v1.0.12 dangeroustech:v1.0.11 dangeroustech:v1.0.10 dangeroustech:v1.0.9 dangeroustech:v1.0.8 dangeroustech:v1.0.7 dangeroustech:v0.0.1 dangeroustech:v1.0.6 dangeroustech:v1.0.5 dangeroustech:v1.0.4 dangeroustech:v1.0.3 dangeroustech:v1.0.2 dangeroustech:v1.0.1 dangeroustech:v1.0.0 dangeroustech:v0.1

23 Commits
v1.0.5 ... v1.1.0

Author SHA1 Message Date
Conventional Changelog Action
74c33dff3e chore 🤖: Release v1.1.0 [skip ci] 2023-09-23 21:07:49 +00:00
josh
aab5c079dc feat: multi-platform builds 2023-09-23 21:06:25 +00:00
Conventional Changelog Action
344e30a1f0 chore 🤖: Release v1.0.13 [skip ci] 2023-09-22 21:10:45 +00:00
josh
d3f10891c8 sec: lower vuln threshold 2023-09-22 21:09:20 +00:00
Conventional Changelog Action
7eb72f78f3 chore 🤖: Release v1.0.12 [skip ci] 2023-09-22 21:04:55 +00:00
josh
6e3c2690fc fix: correct double message 2023-09-22 21:03:32 +00:00
Conventional Changelog Action
b651c5f8e9 chore 🤖: Release v1.0.11 [skip ci] [skip ci] 2023-09-22 20:59:18 +00:00
Josh J
9908f656e7 Merge pull request #21 from dangeroustech/biodrone/issue20 
Biodrone/issue20
 2023-09-22 21:57:40 +01:00
josh
977df48644 fix: only alert on CVEs that have a fix 2023-09-22 20:54:49 +00:00
josh
fed1c28602 fix: pull correct deb package 2023-09-22 20:50:14 +00:00
josh
b5e79ae24d Fix Grype Detected Security Problemos 
Fixes #20
 2023-09-22 20:49:29 +00:00
Conventional Changelog Action
09370a89a7 chore 🤖: Release v1.0.10 [skip ci] [skip ci] 2023-09-22 20:46:03 +00:00
Josh J
1c41eb9e1b Merge pull request #19 from dangeroustech/biodrone/issue11 
Integrate Grype for Scanning
 2023-09-22 21:44:42 +01:00
josh
89e29531f0 fix: upload sarif file 2023-09-22 20:37:00 +00:00
josh
ec84d91bc3 Integrate Grype for Scanning 
Fixes #11
 2023-09-22 20:31:11 +00:00
Conventional Changelog Action
9cc7d36434 chore 🤖: Release v1.0.9 [skip ci] [skip ci] 2023-09-22 20:27:17 +00:00
josh
ab9c1c4816 ci: remove duplicate artifact upload 2023-09-22 20:26:27 +00:00
Conventional Changelog Action
f94f69a8f7 chore 🤖: Release v1.0.8 [skip ci] [skip ci] 2023-09-22 20:25:23 +00:00
josh
24c26bea0d ci: specify file output 2023-09-22 20:24:38 +00:00
Conventional Changelog Action
3b4b067420 chore 🤖: Release v1.0.7 [skip ci] [skip ci] 2023-09-22 20:22:45 +00:00
josh
8e6724ef25 ci: simplify sbom 2023-09-22 20:21:51 +00:00
Conventional Changelog Action
dfc86697e4 chore 🤖: Release v1.0.6 [skip ci] [skip ci] 2023-09-22 20:12:09 +00:00
josh
3a0be9b7dd ci: running on published instead of just created 2023-09-22 20:11:06 +00:00
8 changed files with 99776 additions and 28 deletions
Expand all files Collapse all files

41
.github/workflows/docker-build.yml vendored
View File

@@ -7,8 +7,14 @@ on:
- "main"
jobs:
DockerBuildAndRelease:
Docker_Release:
name: "Docker Build And Release"
runs-on: ubuntu-latest
strategy:
fail-fast: true
matrix:
arch: ["amd64", "arm64"]
version: ["1.12.2"]
steps:
- name: Checkout Repository
uses: actions/checkout@v4
@@ -32,16 +38,45 @@ jobs:
uses: docker/build-push-action@v5
with:
context: .
build-args: |
ARCH=${{ matrix.arch }}
VERSION=${{ matrix.version }}
push: true
platforms: linux/${{ matrix.arch }}
tags: registry.dangerous.tech/dangeroustech/zerotierbridge:latest
- name: Generate SBOM
uses: anchore/sbom-action@v0
id: sbom
with:
image: registry.dangerous.tech/dangeroustech/zerotierbridge:latest
registry-username: ${{ secrets.REGISTRY_USERNAME }}
registry-password: ${{ secrets.REGISTRY_PASSWORD }}
format: spdx-json
output-file: ./sbom.spdx.json
- name: Scan SBOM
uses: anchore/scan-action@v3
id: scan
with:
sbom: sbom.spdx.json
severity-cutoff: medium
fail-build: false
only-fixed: true
by-cve: true
- name: upload Anchore scan SARIF report
uses: github/codeql-action/upload-sarif@v2
with:
sarif_file: ${{ steps.scan.outputs.sarif }}
- name: Changelog
uses: TriPSs/conventional-changelog-action@v3
id: changelog
if: ${{ github.event_name != 'pull_request' }}
with:
github-token: ${{ secrets.GITHUB_TOKEN }}
git-message: "chore 🤖: Release {version} [skip ci]"
git-message: "chore 🤖: Release {version}"
output-file: "CHANGELOG.md"
tag-prefix: "v"
fallback-version: "1.0.0"
@@ -58,3 +93,5 @@ jobs:
tag_name: ${{ steps.changelog.outputs.tag }}
name: ${{ steps.changelog.outputs.tag }}
body: ${{ steps.changelog.outputs.clean_changelog }}
files: |
sbom.spdx.json

17
.github/workflows/sbom.yml vendored
View File

@@ -1,17 +0,0 @@
name: Generate SBOM
on:
release:
types: [created]
jobs:
GenerateSBOM:
runs-on: ubuntu-latest
steps:
- name: Generate SBOM
uses: anchore/sbom-action@v0
id: sbom
with:
image: registry.dangerous.tech/dangeroustech/zerotierbridge:latest
registry-username: ${{ secrets.REGISTRY_USERNAME }}
registry-password: ${{ secrets.REGISTRY_PASSWORD }}

57
CHANGELOG.md
View File

@@ -1,3 +1,60 @@
# [1.1.0](https://github.com/dangeroustech/ZeroTierBridge/compare/v1.0.13...v1.1.0) (2023-09-23)
### Features
* multi-platform builds ([aab5c07](https://github.com/dangeroustech/ZeroTierBridge/commit/aab5c079dcd559b7c3123aa72d02f7691827083e))
## [1.0.13](https://github.com/dangeroustech/ZeroTierBridge/compare/v1.0.12...v1.0.13) (2023-09-22)
## [1.0.12](https://github.com/dangeroustech/ZeroTierBridge/compare/v1.0.11...v1.0.12) (2023-09-22)
### Bug Fixes
* correct double message ([6e3c269](https://github.com/dangeroustech/ZeroTierBridge/commit/6e3c2690fc612e42c1d2818cc8d4bdfb9d5e39ba))
## [1.0.11](https://github.com/dangeroustech/ZeroTierBridge/compare/v1.0.10...v1.0.11) (2023-09-22)
### Bug Fixes
* only alert on CVEs that have a fix ([977df48](https://github.com/dangeroustech/ZeroTierBridge/commit/977df48644e0a7112dc25f9f04afa6d84ce87db9))
* pull correct deb package ([fed1c28](https://github.com/dangeroustech/ZeroTierBridge/commit/fed1c2860230d39aeb80178c79697c1c41fed23d))
## [1.0.10](https://github.com/dangeroustech/ZeroTierBridge/compare/v1.0.9...v1.0.10) (2023-09-22)
### Bug Fixes
* upload sarif file ([89e2953](https://github.com/dangeroustech/ZeroTierBridge/commit/89e29531f070539935a93b6f55d791170ea42e72))
## [1.0.9](https://github.com/dangeroustech/ZeroTierBridge/compare/v1.0.8...v1.0.9) (2023-09-22)
## [1.0.8](https://github.com/dangeroustech/ZeroTierBridge/compare/v1.0.7...v1.0.8) (2023-09-22)
## [1.0.7](https://github.com/dangeroustech/ZeroTierBridge/compare/v1.0.6...v1.0.7) (2023-09-22)
## [1.0.6](https://github.com/dangeroustech/ZeroTierBridge/compare/v0.0.1...v1.0.6) (2023-09-22)
## [1.0.5](https://github.com/dangeroustech/ZeroTierBridge/compare/v1.0.4...v1.0.5) (2023-09-22)

6
Dockerfile
View File

@@ -1,11 +1,11 @@
FROM debian:buster as stage
ARG PACKAGE_BASEURL=https://download.zerotier.com/debian/buster/pool/main/z/zerotier-one
FROM debian:bookworm as stage
ARG PACKAGE_BASEURL=https://download.zerotier.com/debian/bookworm/pool/main/z/zerotier-one
ARG ARCH=amd64
ARG VERSION=1.12.2
RUN apt-get update -qq && apt-get install -qq --no-install-recommends -y ca-certificates curl
RUN curl -sSL -o zerotier-one.deb "${PACKAGE_BASEURL}/zerotier-one_${VERSION}_${ARCH}.deb"
FROM debian:buster
FROM debian:bookworm
RUN mkdir /app
WORKDIR /app
COPY --from=stage zerotier-one.deb .

6
README.md
View File

@@ -42,14 +42,10 @@ Disable bridging by passing `ZT_BRIDGE=false`. This can be done after the initia
If you would like the container to retain the same ZeroTier client ID on reboot, attach a volume as per the below.
`docker run --privileged -e ZT_NETWORKS=NETWORK_ID_HERE ZT_BRIDGE=true --volume zt1:/var/lib/zerotier-one/ zerotierbridge:latest`
`docker run --privileged -e ZT_NETWORKS=NETWORK_ID_HERE ZT_BRIDGE=true --volume zt_config:/var/lib/zerotier-one/ zerotierbridge:latest`
#### Caveat: Architecture
If you need to run this on a device with different architecture (a raspberry pi, for instance), then just edit line 3 of the Dockerfile.
If you were using a Raspberry Pi 4, you would change this to `ARCH=arm64` and the container will pull the correct ZeroTier installer.
## TODO
- Add kubernetes deployment YAML

2
package.json
View File

@@ -1,3 +1,3 @@
{
"version": "1.0.5"
"version": "1.1.0"
}

16
results.sarif Normal file
View File

@@ -0,0 +1,16 @@
{
"version": "2.1.0",
"$schema": "https://json.schemastore.org/sarif-2.1.0-rtm.5.json",
"runs": [
{
"tool": {
"driver": {
"name": "Grype",
"version": "0.63.0",
"informationUri": "https://github.com/anchore/grype"
}
},
"results": []
}
]
}

99659
sbom.spdx.json Normal file
View File

File diff suppressed because it is too large Load Diff