github/tor-guard-relay
1
1
Fork 0
mirror of https://github.com/r3bo0tbx1/tor-guard-relay.git synced 2026-04-06 00:32:04 +02:00
Code Issues Packages Projects Releases Wiki Activity
145 Commits 1 Branch 2 Tags
17ca6cf5df06f67722c23d0fbfff551f1ada23bf
Commit Graph

145 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
dependabot[bot]
17ca6cf5df 🏗️ build(deps): bump golang from 1.25.6-alpine to 1.26rc3-alpine 
Bumps golang from 1.25.6-alpine to 1.26rc3-alpine.

---
updated-dependencies:
- dependency-name: golang
  dependency-version: 1.26rc3-alpine
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: rE-Bo0t.bx1 <54429050+r3bo0tbx1@users.noreply.github.com>
 2026-02-05 17:24:40 +05:30
rE-Bo0t.bx1
0b20741978 👷 feat(ci): auto-assign reviewer to Dependabot PRs 2026-02-05 17:15:48 +05:30
rE-Bo0t.bx1
899ed60af0 📄 chore: restore LICENSE file with MIT License text 2026-02-05 17:04:01 +05:30
rE-Bo0t.bx1
644c81f927 📄 chore: add SPDX-License-Identifier to LICENSE file 2026-02-04 23:04:32 +05:30
rE-Bo0t.bx1
a9a37662d2 📄 chore: restore LICENSE file with MIT License text 2026-02-04 23:01:56 +05:30
rE-Bo0t.bx1
c5f0d3bbc6 📄 chore: restore LICENSE file with MIT License text 2026-02-04 22:54:56 +05:30
rE-Bo0t.bx1
552c3148e8 feat(v1.1.5): security patch CVE-2025-15467 and build updates 2026-01-31 21:24:33 +05:30
renovate[bot]
a76a501bb9 🏗️ (build): update docker/dockerfile Docker tag to v1.21 
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
 2026-01-31 20:56:22 +05:30
dependabot[bot]
b7fbc05599 🏗️ build(deps): bump alpine from 3.23.2 to 3.23.3 
Bumps alpine from 3.23.2 to 3.23.3.

---
updated-dependencies:
- dependency-name: alpine
  dependency-version: 3.23.3
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2026-01-31 20:31:27 +05:30
renovate[bot]
8b3de1ca66 🏗️ build(deps): Update golang Docker tag to v1.25.6 
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
 2026-01-18 05:02:08 +08:00
rE-Bo0t.bx1
6b1361923e 🐛 fix(docker): correct spacing in 'go get' command for interceptor dependency in Dockerfile and Dockerfile.edge 2026-01-12 19:53:33 +08:00
rE-Bo0t.bx1
2836264996 🐛 fix(docker): correct line continuation in git clone command in Dockerfile and Dockerfile.edge 2026-01-12 19:48:19 +08:00
rE-Bo0t.bx1
c735b350c0 🐛 fix(docker): update dependency management in Dockerfile and Dockerfile.edge to use specific versions for improved stability 2026-01-12 19:43:58 +08:00
rE-Bo0t.bx1
2e14d0bdc5 🐛 fix(docker): update dependency management in Dockerfile and Dockerfile.edge to use 'go get -u' after module replacement 2026-01-12 19:40:05 +08:00
rE-Bo0t.bx1
19da41b87b 🐛 fix(docker): update dependency management in Dockerfile and Dockerfile.edge 2026-01-12 19:24:52 +08:00
rE-Bo0t.bx1
879084c11e 🐛 fix(docker): replace 'go get -u' and 'go mod tidy' with 'go mod download' for improved dependency management 2026-01-12 19:11:49 +08:00
rE-Bo0t.bx1
5120d0d0e9 feat(v1.1.4): modernize templates, security, and build variants 
This update refines the Tor relay configuration and build process:
- Security: Disables DirPort and adopts ciissversion:2 for ContactInfo.
- Performance: Adds IPv6 support and hardware acceleration options.
- Builds: Establishes Stable vs. Edge variants for better testing cycles.
- Tooling: Integrates nyx.config and cleans up legacy tags.
- Sync: Aligns cosmos-compose and docker-compose templates.
- Update retention policy: Keep last 7 versions

No breaking changes introduced.
 2025-12-21 03:14:39 +08:00
dependabot[bot]
ce8cd42875 🏗️ build(deps): bump alpine from 3.23.0 to 3.23.2 
Bumps alpine from 3.23.0 to 3.23.2.

---
updated-dependencies:
- dependency-name: alpine
  dependency-version: 3.23.2
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2025-12-21 01:50:37 +08:00
rE-Bo0t.bx1
803658b8ce 🐛 fix(tor-exit-notice): bold user nickname in footer for better visibility 2025-12-15 20:28:34 +08:00
rE-Bo0t.bx1
70d2a54d64 Add Tor Exit Node notice template with detailed information and styling 2025-12-15 18:46:11 +08:00
rE-Bo0t.bx1
42bd499f33 🐛 fix(cleanup): simplify workflow name for clarity 2025-12-07 22:29:25 +08:00
rE-Bo0t.bx1
dd598ca1f9 ♻️ refactor(ops): optimize workflows, docker setup and relay configs 
Refactors the repository configuration to streamline CI/CD processes and tune Tor relay settings.

**CI & Build:**
- 👷 Enhance `cleanup.yml` with clearer cache deletion and logging.
- 🐳 Update `.dockerignore` to streamline CI builds.
- 🔧 Simplify `.gitattributes` and prune `.hadolint.yaml` comments.

**Tor Configuration:**
- 🛡️ Tune `relay-guard.conf` for performance and remove noise.
- 🌉 Update `relay-bridge.conf` ORPort/ServerTransport settings.
-  Refine `relay-exit.conf` exit policies and bandwidth limits.

**Misc & Cleanup:**
- 💄 Improve startup banner aesthetics in `docker-entrypoint.sh`.
- 📝 Add JS execution warnings to `tor-exit-notice` HTML template.
- 🔥 Remove obsolete `examples/.env` file.
 2025-12-07 22:20:45 +08:00
rE-Bo0t.bx1
bfad827af4 📝 docs: add Tor resources and reorganize deployment files 
- 🧅 Add Tor Exit Router notice template for abuse handling
- ☁️ Add recommended hosting providers documentation
- ⚖️ Update LEGAL.md with the latest laws and policy changes
- 🚚 Move Docker and Cosmos compose files to their dedicated directories
 2025-12-06 19:26:42 +08:00
rE-Bo0t.bx1
b6001c3f7a 🐛 fix(entrypoint): use POSIX-compliant signal names 
- Updates the trap command to use 'TERM/INT' instead of 'SIGTERM/SIGINT'. The 'SIG' prefix is undefined in POSIX sh (ShellCheck SC3048), which could prevent graceful shutdown in environments using dash/ash.
 2025-12-05 22:56:48 +08:00
rE-Bo0t.bx1
a26758351c 🩹 fix(templates): remove auto-update labels to improve relay stability 2025-12-05 22:35:48 +08:00
rE-Bo0t.bx1
3b89bc6319 👷 fix(ci): add newline at end of cleanup.yml for consistency 2025-12-05 21:03:38 +08:00
rE-Bo0t.bx1
911a44eef4 👷 feat(ci): add scheduled cache cleanup workflow 2025-12-05 20:48:52 +08:00
rE-Bo0t.bx1
49c9f69918 🛠️ chore: update scripts and documentation for v1.1.3 release 2025-12-05 20:24:55 +08:00
rE-Bo0t.bx1
ca517d1768 🩹 fix(gen-auth): improve color variable initialization and formatting 2025-12-05 19:33:01 +08:00
rE-Bo0t.bx1
19ec6713d6 👷 feat(ci): add gen-auth tool to validation 2025-12-05 18:22:52 +08:00
rE-Bo0t.bx1
0cb81450f7 🛠️ chore(docker,ci): update image metadata and simplify workflows 
- 🐋 docker: update image title and description for stable and edge
- 👷 workflows: simplify names for release and validate files
 2025-12-05 18:12:19 +08:00
rE-Bo0t.bx1
8c5977b0ff 📚 fix(readme): update tools count and Alpine version in documentation 2025-12-05 17:59:44 +08:00
rE-Bo0t.bx1
0f166d7c95 📚 fix(readme): update diagnostic tools count and Alpine base version 2025-12-05 04:56:12 +08:00
rE-Bo0t.bx1
62859da5ab 🐋 feat(docker): update image title labels for stable and edge Dockerfiles 2025-12-05 04:46:54 +08:00
rE-Bo0t.bx1
e26a5247f7 ⏱️ fix(changelog): remove unnecessary section break in changelog 2025-12-05 04:42:43 +08:00
rE-Bo0t.bx1
0ff36e97a2 🐋 fix(docker): replace auth-gen with gen-auth in Dockerfile and Dockerfile.edge 2025-12-05 04:40:52 +08:00
rE-Bo0t.bx1
a28ce0a4e6 feat: add gen-auth tool and refactor compose templates 
Major refactor of Docker Compose configurations and tooling enhancements.

-  Add `gen-auth` script for generating Tor Control Port credentials
- 🐳 Refactor Docker Compose templates:
  - Add native healthcheck configurations to all relay/bridge files
  - Standardize security capabilities (drop ALL, add SETUID/SETGID)
  - Remove verbose comments to streamline template usage
  - Update volume definitions for better data persistence
- 🔧 Update base dependencies:
  - Alpine Linux -> 3.23.0
  - Golang -> 1.25.5-alpine
- 🧹 Standardize ENV variable names across all configurations
 2025-12-05 04:37:19 +08:00
dependabot[bot]
1907745fff 🏗️ build(deps): bump alpine from 3.22.2 to 3.23.0 (#11) 
Bumps alpine from 3.22.2 to 3.23.0.

---
updated-dependencies:
- dependency-name: alpine
  dependency-version: 3.23.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2025-12-05 03:30:05 +08:00
dependabot[bot]
ba7d822420 build(deps): bump golang from 1.25-alpine to 1.25.5-alpine (#12) 
Bumps golang from 1.25-alpine to 1.25.5-alpine.

---
updated-dependencies:
- dependency-name: golang
  dependency-version: 1.25.5-alpine
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2025-12-05 03:23:49 +08:00
rE-Bo0t.bx1
7f9f6c328d 🐋 fix(docker): enforce UID 100 for tor user to resolve permission conflicts 
Recent Alpine base images introduce a 'klogd' user at UID 100, which forced
the 'tor' package to install as UID 101. This caused "Permission denied"
errors for existing data volumes owned by UID 100.

This fix:
- Removes the conflicting 'klogd' user
- Manually creates the 'tor' user with fixed UID 100 / GID 101
- Ensures compatibility with existing persistent volumes
 2025-12-01 01:40:01 +08:00
renovate[bot]
84b32e1ce9 🏗️ build(deps): upgrade Golang Docker tag to v1.25 
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
 2025-11-21 03:07:17 +08:00
rE-Bo0t.bx1
83674c71fe 🏗️ build(deps): downgrade golang docker tag to v1.24 2025-11-21 02:51:40 +08:00
renovate[bot]
5a6406b1c2 build Update golang Docker tag to v1.25 (#9) 
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
 2025-11-21 02:35:08 +08:00
rE-Bo0t.bx1
b3e713247c 📝 chore: update version comment for clarity in .dockerignore 2025-11-21 02:22:57 +08:00
rE-Bo0t.bx1
c9b28b9b2c 📝 chore: refine comments and documentation for clarity across multiple files 2025-11-21 02:20:55 +08:00
rE-Bo0t.bx1
bd86e906f4 📚 fix(docs): update image size references from 17.1 MB to 16.8 MB across documentation and scripts 
- YEAH IT GOT EVEN SMALLER!!! 🪽
 2025-11-21 00:29:59 +08:00
rE-Bo0t.bx1
31faba35b1 🛡 fix(security): remove musl and openssl from Dockerfile to streamline dependencies 2025-11-20 23:58:23 +08:00
rE-Bo0t.bx1
51af5d0ecc 🛡 fix(security): add musl and openssl to Dockerfile for improved security and compatibility 2025-11-20 23:46:42 +08:00
rE-Bo0t.bx1
ed513c9852 🛡 fix(security): resolve critical CVEs via multi-stage build and OS upgrade 
This commit addresses high-severity vulnerabilities detected by Docker Scout in both the Lyrebird binary and the Alpine base image.

Changes:
- Lyrebird: Implemented a multi-stage build using golang:1.24-alpine. This compiles Lyrebird from source to resolve "baked-in" Go runtime and dependency vulnerabilities (stdlib, crypto, pion) found in the upstream Alpine package.
- Base OS: Added apk upgrade --no-cache to force the installation of the latest system libraries, patching active CVEs in musl and openssl.

Resolves: CVE-2025-9230 (openssl), CVE-2025-26519 (musl), and multiple Go runtime CVEs.
 2025-11-20 23:22:24 +08:00
rE-Bo0t.bx1
2af8ec9565 🛡 fix(security): resolve critical CVEs via multi-stage build and OS upgrade 
This commit addresses high-severity vulnerabilities detected by Docker Scout in both the Lyrebird binary and the Alpine base image.

Changes:
- Lyrebird: Implemented a multi-stage build using golang:1.24-alpine. This compiles Lyrebird from source to resolve "baked-in" Go runtime and dependency vulnerabilities (stdlib, crypto, pion) found in the upstream Alpine package.
- Base OS: Added apk upgrade --no-cache to force the installation of the latest system libraries, patching active CVEs in musl and openssl.

Resolves: CVE-2025-9230 (openssl), CVE-2025-26519 (musl), and multiple Go runtime CVEs.
 2025-11-20 23:16:35 +08:00