-
Notifications
You must be signed in to change notification settings - Fork 153
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
- Loading branch information
Showing
10 changed files
with
111 additions
and
44 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file was deleted.
Oops, something went wrong.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,38 @@ | ||
# Security Policy | ||
|
||
## Latest Versions | ||
|
||
We advise users to run or update to the most recent release of the NGINX Docker Unprivileged image. Older versions of the NGINX Docker Unprivileged image may not have all enhancements and/or bug fixes applied to them. | ||
|
||
## Reporting a Vulnerability | ||
|
||
### Docker NGINX Unprivileged Image | ||
|
||
If you find a security vulnerability that directly affects a direct NGINX library dependency we encourage you open an issue detailing the security vulnerability. | ||
|
||
For reference, the direct NGINX library dependencies are: | ||
|
||
- For Debian: | ||
- `libc6` | ||
- `libcrypt1` | ||
- `libpcre2` | ||
- `libssl` | ||
- `zlib1g` | ||
|
||
- For Alpine Linux: | ||
- `libc` | ||
- `libcrypto` | ||
- `libpcre2` | ||
- `libssl` | ||
- `libz` | ||
|
||
***Note: Only vulnerabilities related to direct NGINX library dependencies will be considered. Other security vulnerabilities should be addressed by the weekly Monday night build and as such will be promptly closed.*** | ||
|
||
### Codebase | ||
|
||
If you find a security vulnerability that affects the codebase, we encourage you to report it to the F5 Security Incident Response Team (F5 SIRT): | ||
|
||
- If you’re an F5 customer with an active support contract, please contact [F5 Technical Support](https://www.f5.com/services/support). | ||
- If you aren’t an F5 customer, please report any potential or current instances of security vulnerabilities with any F5 product to the F5 Security Incident Response Team at <F5SIRT@f5.com>. | ||
|
||
For more information visit [https://www.f5.com/services/support/report-a-vulnerability](https://www.f5.com/services/support/report-a-vulnerability). |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,37 @@ | ||
# Support | ||
|
||
## Ask a Question | ||
|
||
We use GitHub for tracking bugs and feature requests related to all the Docker NGINX images (including all variants and container registries). | ||
|
||
Don't know how something in this project works? Curious if this project can achieve your desired functionality? Please open an issue on GitHub with the label `question`. | ||
|
||
## NGINX Specific Questions and/or Issues | ||
|
||
This isn't the right place to get support for NGINX specific questions, but the following resources are available below. Thanks for your understanding! | ||
|
||
### Community Slack | ||
|
||
We have a community [Slack](https://nginxcommunity.slack.com/)! | ||
|
||
If you are not a member, click [here](https://community.nginx.org/joinslack) to sign up (and let us know if the link does not seem to be working!) | ||
|
||
Once you join, check out the `#beginner-questions` and `nginx-users` channels :) | ||
|
||
### Documentation | ||
|
||
For a comprehensive list of all NGINX directives, check out <https://nginx.org>. | ||
|
||
For a comprehensive list of admin and deployment guides for all NGINX products, check out <https://docs.nginx.com>. | ||
|
||
### Mailing List | ||
|
||
Want to get in touch with the NGINX development team directly? Try using the relevant mailing list found at <https://mailman.nginx.org/mailman3/lists/>! | ||
|
||
## Contributing | ||
|
||
Please see the [contributing guide](https://github.com/nginxinc/docker-nginx-unprivileged/blob/main/CONTRIBUTING.md) for guidelines on how to best contribute to this project. | ||
|
||
## Commercial Support | ||
|
||
Commercial support for this project may be available. Please get in touch with [NGINX sales](https://www.nginx.com/contact-sales/) or check your contract details for more info! |