https://www.cve.org/CVERecord?id=CVE-2020-26137
> urllib3 before 1.25.9 allows CRLF injection if the attacker controls
> the HTTP request method, as demonstrated by inserting CR and LF
> control characters in the first argument of putrequest(). NOTE: this
> is similar to CVE-2020-26116.
Signed-off-by: Peter Dave Hello <hsu@peterdavehello.org>
- Tox py3.7 + pipenv
- Python3 Dockerfile.py
- Dockerfile.py tags remote instead of just local image names now
- Circle.sh instead of in-line circle.yml script breakout
- probably other stuff I forgot
- Docker images build during the tests should hopefullly now be available at the deploy job workflow thanks to shared docker layers.
- Rename aarch64 to arm64 to reduce custom map
* Submodules of pi-hole source for copying into docker images
* git submodules...yuk.
* debian builds and runs pi-hole apps/configs on jessie docker
* useful base line for merge and testing upstream updates
* Linux x86/64 image, would like to try raspian ARM docker image base too
* WIP alpine dockerfile
* will need more custom lighttpd config(s) at a minimum
* again there is an ARM alpine version so running on pi is future possibility