If the container sets the environment variable, it becomes impossible to override the port via the configuration file because environment variables have higher precedence. Overriding the host makes sense, so that readeck is reachable from outside the container by default. However, fixing the port to the default serves is not required and can be confusing during deployment.
- some new revive rules
- removed max and min, now that we have built-ins for them
- added gosec
- File permissions
- HTTP servers ReadHeaderTimeout value (and a better metric listener)
- migrated to math/rand/v2 and improved secret key generator
- Moved to math/rand/v2 everywhere
- Use crypto/rand for the initial secret key
- Added some nolint marks on rand.* functions
This new script produces an OCI archive using buildah.
This is a necessary step to perform a full build from an action job
and emit all the necessary artifacts for a release.
- golangci-lint configuration
- gofumpt on all go files
- added package comments
- added missing comments on exported functions
- do not check for bodyclose on http testing responses.
- check for errors on triggered tasks
- check for errors in acls
- check for errors during policy loading
- check for errors in password recovery process
- better error checking in pkg/extract/contentscripts
- nolint rules for errcheck when it's not needed
(mostly defer calls for file reader closing)
This was a mistake to use go.work since it might be needed on a
specific dev setup (with different "use" directives).
It results in a codebase that really matches the main readeck
module fqdn.
Parsing the not so great site-config file format each time we need it
is error prone and suboptimal. We rely instead on toml files that are
converted once by this script.
