jennie/wiki_ghostguild
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

Block dotfile access, remove custom CSS, fix cron npm install

Browse source 
- nginx: deny all requests to hidden files (/.git/config was publicly readable)
- nginx: remove CSS injection and /custom/ static file serving
- cron: install script deps at build time into /opt to avoid ro mount conflict
- docker-compose: widen cron build context for package.json COPY
- Delete unused theme/ghost-guild.css
This commit is contained in:
Jennie Robinson Faber 2026-03-31 17:53:50 +01:00
parent 1984e64ccd
commit ed05044464
5 changed files with 9 additions and 85 deletions
Download patch file Download diff file Expand all files Collapse all files

9
cron/Dockerfile
View file

@ -11,8 +11,13 @@ RUN apk add --no-cache \
WORKDIR /app
COPY crontab /etc/crontabs/root
COPY entrypoint.sh /entrypoint.sh
# Install script dependencies at build time (into /opt so the ro volume mount doesn't shadow them)
COPY scripts/package*.json /opt/scripts-deps/
RUN cd /opt/scripts-deps && npm install --omit=dev
ENV NODE_PATH=/opt/scripts-deps/node_modules
COPY cron/crontab /etc/crontabs/root
COPY cron/entrypoint.sh /entrypoint.sh
RUN chmod +x /entrypoint.sh
ENTRYPOINT ["/entrypoint.sh"]