Skip to content

prepare v1.10.3 #97

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
wollomatic merged 17 commits into from
Feb 21, 2026
Merged

prepare v1.10.3 #97

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
17 commits
Select commit Hold shift + click to select a range
717af84
update examples
wollomatic Feb 21, 2026
85ec917
prepare new version in README
wollomatic Feb 21, 2026
5cf727b
add information about archived watchtower repo
wollomatic Feb 21, 2026
c60cef0
fix typo
wollomatic Feb 21, 2026
aa9bf49
Merge pull request #91 from wollomatic/update-examples
wollomatic Feb 21, 2026
4e3271b
[StepSecurity] Apply security best practices
step-security-bot Feb 21, 2026
ab13c1a
Merge pull request #92 from step-security-bot/chore/GHA-211746-stepse…
wollomatic Feb 21, 2026
00037a0
we use the default CodeQL configuration
wollomatic Feb 21, 2026
d1eba05
update tooling to Go 1.26, update Go syntax
wollomatic Feb 21, 2026
188ab35
don't use pre-commit in this repo
wollomatic Feb 21, 2026
aab9956
Merge pull request #93 from wollomatic/edit-actions
wollomatic Feb 21, 2026
e38f2b2
pin gosec to v2.23.0
wollomatic Feb 21, 2026
3dd4add
Merge pull request #94 from wollomatic/edit-actions
wollomatic Feb 21, 2026
0262553
pin gosec to v2.23.0 version - try to fix weird behaviour
wollomatic Feb 21, 2026
6fee505
Merge pull request #95 from wollomatic/edit-actions
wollomatic Feb 21, 2026
5e0a708
run gosec with Go 1.26
wollomatic Feb 21, 2026
172a27f
Merge pull request #96 from wollomatic/edit-actions
wollomatic Feb 21, 2026
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
27 changes: 27 additions & 0 deletions .github/workflows/dependency-review.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,27 @@
# Dependency Review Action
#
# This Action will scan dependency manifest files that change as part of a Pull Request,
# surfacing known-vulnerable versions of the packages declared or updated in the PR.
# Once installed, if the workflow run is marked as required,
# PRs introducing known-vulnerable packages will be blocked from merging.
#
# Source repository: https://github.com/actions/dependency-review-action
name: 'Dependency Review'
on: [pull_request]

permissions:
contents: read

jobs:
dependency-review:
runs-on: ubuntu-latest
steps:
- name: Harden the runner (Audit all outbound calls)
uses: step-security/harden-runner@5ef0c079ce82195b2a36a210272d6b661572d83e # v2.14.2
with:
egress-policy: audit

- name: 'Checkout Repository'
uses: actions/checkout@34e114876b0b11c390a56381ad16ebd13914f8d5 # v4.3.1
- name: 'Dependency Review'
uses: actions/dependency-review-action@05fe4576374b728f0c523d6a13d64c25081e0803 # v4.8.3
28 changes: 14 additions & 14 deletions .github/workflows/docker-image-release.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -17,17 +17,17 @@ jobs:

steps:
- name: Checkout
uses: actions/checkout@v6

- name: Run Gosec Security Scanner
uses: securego/gosec@master
with:
args: ./...
uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2

- name: Set up Go
uses: actions/setup-go@v6
uses: actions/setup-go@7a3fe6cf4cb3a834922a1244abfce67bcef6a0c5 # v6.2.0
with:
go-version: '1.25'
go-version: '1.26'

- name: Run Gosec Security Scanner
run: |
go install github.com/securego/gosec/v2/cmd/gosec@v2.23.0
gosec ./...

- name: Run Go tests
run: go test ./...
Expand All @@ -37,28 +37,28 @@ jobs:
run: echo "VERSION=${GITHUB_REF#refs/tags/}" >> "$GITHUB_OUTPUT"

- name: Install Cosign
uses: sigstore/cosign-installer@v4.0.0
uses: sigstore/cosign-installer@faadad0cce49287aee09b3a48701e75088a2c6ad # v4.0.0
with:
cosign-release: 'v2.6.1'

- name: Set up Docker Buildx
uses: docker/setup-buildx-action@v3
uses: docker/setup-buildx-action@8d2750c68a42422c14e847fe6c8ac0403b4cbd6f # v3.12.0

- name: Login to Docker Hub
uses: docker/login-action@v3
uses: docker/login-action@c94ce9fb468520275223c153574b00df6fe4bcc9 # v3.7.0
with:
username: ${{ secrets.DOCKERHUB_USERNAME }}
password: ${{ secrets.DOCKERHUB_TOKEN }}

- name: Login to GitHub Container Registry
uses: docker/login-action@v3
uses: docker/login-action@c94ce9fb468520275223c153574b00df6fe4bcc9 # v3.7.0
with:
registry: ghcr.io
username: ${{ github.actor }}
password: ${{ secrets.GITHUB_TOKEN }}

- name: Build and push Docker Hub image
uses: docker/build-push-action@v6
uses: docker/build-push-action@10e90e3645eae34f1e60eeb005ba3a3d33f178e8 # v6.19.2
id: push-dockerhub
with:
context: .
Expand All @@ -76,7 +76,7 @@ jobs:
COSIGN_PASSWORD: ${{ secrets.COSIGN_PASSWORD }}

- name: Build and push GHCR image
uses: docker/build-push-action@v6
uses: docker/build-push-action@10e90e3645eae34f1e60eeb005ba3a3d33f178e8 # v6.19.2
id: push-ghcr
with:
context: .
Expand Down
28 changes: 14 additions & 14 deletions .github/workflows/docker-image-testing.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -19,17 +19,17 @@ jobs:

steps:
- name: Checkout
uses: actions/checkout@v6

- name: Run Gosec Security Scanner
uses: securego/gosec@master
with:
args: ./...
uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2

- name: Set up Go
uses: actions/setup-go@v6
uses: actions/setup-go@7a3fe6cf4cb3a834922a1244abfce67bcef6a0c5 # v6.2.0
with:
go-version: '1.25'
go-version: '1.26'

- name: Run Gosec Security Scanner
run: |
go install github.com/securego/gosec/v2/cmd/gosec@v2.23.0
gosec ./...

- name: Run Go tests
run: go test ./...
Expand All @@ -40,23 +40,23 @@ jobs:
# cosign-release: 'v2.6.0'

- name: Set up Docker Buildx
uses: docker/setup-buildx-action@v3
uses: docker/setup-buildx-action@8d2750c68a42422c14e847fe6c8ac0403b4cbd6f # v3.12.0

- name: Login to Docker Hub
uses: docker/login-action@v3
uses: docker/login-action@c94ce9fb468520275223c153574b00df6fe4bcc9 # v3.7.0
with:
username: ${{ secrets.DOCKERHUB_USERNAME }}
password: ${{ secrets.DOCKERHUB_TOKEN }}

- name: Login to GitHub Container Registry
uses: docker/login-action@v3
uses: docker/login-action@c94ce9fb468520275223c153574b00df6fe4bcc9 # v3.7.0
with:
registry: ghcr.io
username: ${{ github.actor }}
password: ${{ secrets.GITHUB_TOKEN }}

- name: Build and push image to Docker Hub and GHCR
uses: docker/build-push-action@v6
uses: docker/build-push-action@10e90e3645eae34f1e60eeb005ba3a3d33f178e8 # v6.19.2
id: push-all
with:
context: .
Expand All @@ -70,7 +70,7 @@ jobs:
ghcr.io/wollomatic/socket-proxy:testing-${{ github.sha }}

# - name: Build and push Docker Hub image
# uses: docker/build-push-action@v6
# uses: docker/build-push-action@10e90e3645eae34f1e60eeb005ba3a3d33f178e8 # v6.19.2
# id: push-dockerhub
# with:
# context: .
Expand All @@ -88,7 +88,7 @@ jobs:
# COSIGN_PASSWORD: ${{ secrets.COSIGN_PASSWORD }}
#
# - name: Build and push GHCR image
# uses: docker/build-push-action@v6
# uses: docker/build-push-action@10e90e3645eae34f1e60eeb005ba3a3d33f178e8 # v6.19.2
# id: push-ghcr
# with:
# context: .
Expand Down
2 changes: 1 addition & 1 deletion Dockerfile
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -1,5 +1,5 @@
# syntax=docker/dockerfile:1
FROM --platform=$BUILDPLATFORM golang:1.26.0-alpine3.23 AS build
FROM --platform=$BUILDPLATFORM golang:1.26.0-alpine3.23@sha256:d4c4845f5d60c6a974c6000ce58ae079328d03ab7f721a0734277e69905473e5 AS build
WORKDIR /application
COPY . ./
ARG TARGETOS
Expand Down
2 changes: 1 addition & 1 deletion README.md
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -1,7 +1,7 @@
# socket-proxy

## Latest image
- `wollomatic/socket-proxy:1.11.2` / `ghcr.io/wollomatic/socket-proxy:1.11.2`
- `wollomatic/socket-proxy:1.11.3` / `ghcr.io/wollomatic/socket-proxy:1.11.3`
- `wollomatic/socket-proxy:1` / `ghcr.io/wollomatic/socket-proxy:1`

> [!IMPORTANT]
Expand Down
2 changes: 1 addition & 1 deletion examples/docker-compose/dozzle/compose.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -24,7 +24,7 @@ services:
- docker-proxynet

dozzle:
image: amir20/dozzle:v8.14 # make sure you use the most recent version
image: amir20/dozzle:v10.0 # make sure you use the most recent version
user: 65534:65534
read_only: true
mem_limit: 256M
Expand Down
6 changes: 5 additions & 1 deletion examples/docker-compose/watchtower/compose.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -10,6 +10,7 @@ services:
- '-allowGET=/v1\..{2}/(containers/.*|images/.*)'
- '-allowPOST=/v1\..{2}/(containers/.*|images/.*|networks/.*)'
- '-allowDELETE=/v1\..{2}/(containers/.*|images/.*)'
- '-allowHEAD=/_ping'
# check socket connection every hour and stop the proxy if it fails (will then be restarted by docker):
- '-watchdoginterval=3600'
- '-stoponwatchdog'
Expand All @@ -29,7 +30,10 @@ services:
- docker-proxynet

watchtower:
image: containrrr/watchtower:1.7.1
# image: containrrr/watchtower:1.7.1
# https://github.com/containrrr/watchtower was archived on December 17, 2025.
# https://github.com/nicholas-fedor/watchtower is a maintained fork.
image: ghcr.io/nicholas-fedor/watchtower:1.14.2 # the containrrr repo is no longer maintained
depends_on:
- dockerproxy
command:
Expand Down
2 changes: 1 addition & 1 deletion go.mod
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -1,3 +1,3 @@
module github.com/wollomatic/socket-proxy

go 1.22.6
go 1.26.0
3 changes: 1 addition & 2 deletions internal/docker/api/types/network/endpoint.go
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -20,6 +20,5 @@ type EndpointSettings struct {

// Copy makes a deep copy of `EndpointSettings`
func (es *EndpointSettings) Copy() *EndpointSettings {
epCopy := *es
return &epCopy
return new(*es)
}
9 changes: 3 additions & 6 deletions internal/docker/client/request.go
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -72,18 +72,15 @@ func (cli *Client) doRequest(req *http.Request) (*http.Response, error) {
return nil, err
}

var uErr *url.Error
if errors.As(err, &uErr) {
var nErr *net.OpError
if errors.As(uErr.Err, &nErr) {
if uErr, ok := errors.AsType[*url.Error](err); ok {
if nErr, ok2 := errors.AsType[*net.OpError](uErr.Err); ok2 {
if os.IsPermission(nErr.Err) {
return nil, errConnectionFailed{fmt.Errorf("permission denied while trying to connect to the Docker daemon socket at %v: %v", cli.host, err)}
}
}
}

var nErr net.Error
if errors.As(err, &nErr) {
if nErr, ok := errors.AsType[net.Error](err); ok {
if nErr.Timeout() {
return nil, connectionFailed(cli.host)
}
Expand Down
Loading