rss (latest)

Published 2025-11-06 06:45:15 +00:00 by weiznich

Pull the image from the command line:

docker pull forge.weiznich.de/weiznich/rss:latest

Digest

sha256:851258bb453c3ef3da7b61e05b4c72aeb9f4fa6bcaa1bef5a1c132dedd1ac7c8

For more information on the Container registry, see the documentation.

Unprivileged NGINX Dockerfiles

ADD alpine-minirootfs-3.20.6-aarch64.tar.gz / # buildkit

CMD ["/bin/sh"]

LABEL maintainer=NGINX Docker Maintainers <docker-maint@nginx.com>

ENV NGINX_VERSION=1.26.3

ENV PKG_RELEASE=1

ENV DYNPKG_RELEASE=2

ARG UID=101

ARG GID=101

RUN |2 UID=101 GID=101 /bin/sh -c set -x && addgroup -g $GID -S nginx || true && adduser -S -D -H -u $UID -h /var/cache/nginx -s /sbin/nologin -G nginx -g nginx nginx || true && apkArch="$(cat /etc/apk/arch)" && nginxPackages=" nginx=${NGINX_VERSION}-r${PKG_RELEASE} " && apk add --no-cache --virtual .checksum-deps openssl && case "$apkArch" in x86_64|aarch64) set -x && KEY_SHA512="e09fa32f0a0eab2b879ccbbc4d0e4fb9751486eedda75e35fac65802cc9faa266425edf83e261137a2f4d16281ce2c1a5f4502930fe75154723da014214f0655" && wget -O /tmp/nginx_signing.rsa.pub https://nginx.org/keys/nginx_signing.rsa.pub && if echo "$KEY_SHA512 */tmp/nginx_signing.rsa.pub" | sha512sum -c -; then echo "key verification succeeded!"; mv /tmp/nginx_signing.rsa.pub /etc/apk/keys/; else echo "key verification failed!"; exit 1; fi && apk add -X "https://nginx.org/packages/alpine/v$(egrep -o '^[0-9]+\.[0-9]+' /etc/alpine-release)/main" --no-cache $nginxPackages ;; *) set -x && tempDir="$(mktemp -d)" && chown nobody:nobody $tempDir && apk add --no-cache --virtual .build-deps gcc libc-dev make openssl-dev pcre2-dev zlib-dev linux-headers bash alpine-sdk findutils curl && su nobody -s /bin/sh -c " export HOME=${tempDir} && cd ${tempDir} && curl -f -L -O https://github.com/nginx/pkg-oss/archive/${NGINX_VERSION}-${PKG_RELEASE}.tar.gz && PKGOSSCHECKSUM=\"3a4e869eded0c71e92f522e94edffea7fbfb5e78886ea7e484342fa2e028c62099a67d08860c249bf93776da97b924225e0d849dbb4697b298afe5421d7d6fea *${NGINX_VERSION}-${PKG_RELEASE}.tar.gz\" && if [ \"\$(openssl sha512 -r ${NGINX_VERSION}-${PKG_RELEASE}.tar.gz)\" = \"\$PKGOSSCHECKSUM\" ]; then echo \"pkg-oss tarball checksum verification succeeded!\"; else echo \"pkg-oss tarball checksum verification failed!\"; exit 1; fi && tar xzvf ${NGINX_VERSION}-${PKG_RELEASE}.tar.gz && cd pkg-oss-${NGINX_VERSION}-${PKG_RELEASE} && cd alpine && make base && apk index --allow-untrusted -o ${tempDir}/packages/alpine/${apkArch}/APKINDEX.tar.gz ${tempDir}/packages/alpine/${apkArch}/*.apk && abuild-sign -k ${tempDir}/.abuild/abuild-key.rsa ${tempDir}/packages/alpine/${apkArch}/APKINDEX.tar.gz " && cp ${tempDir}/.abuild/abuild-key.rsa.pub /etc/apk/keys/ && apk del --no-network .build-deps && apk add -X ${tempDir}/packages/alpine/ --no-cache $nginxPackages ;; esac && apk del --no-network .checksum-deps && if [ -n "$tempDir" ]; then rm -rf "$tempDir"; fi && if [ -f "/etc/apk/keys/abuild-key.rsa.pub" ]; then rm -f /etc/apk/keys/abuild-key.rsa.pub; fi && apk add --no-cache --virtual .gettext gettext && mv /usr/bin/envsubst /tmp/ && runDeps="$( scanelf --needed --nobanner /tmp/envsubst | awk '{ gsub(/,/, "\nso:", $2); print "so:" $2 }' | sort -u | xargs -r apk info --installed | sort -u )" && apk add --no-cache $runDeps && apk del --no-network .gettext && mv /tmp/envsubst /usr/local/bin/ && apk add --no-cache tzdata && ln -sf /dev/stdout /var/log/nginx/access.log && ln -sf /dev/stderr /var/log/nginx/error.log && mkdir /docker-entrypoint.d # buildkit

RUN |2 UID=101 GID=101 /bin/sh -c sed -i 's,listen 80;,listen 8080;,' /etc/nginx/conf.d/default.conf && sed -i '/user nginx;/d' /etc/nginx/nginx.conf && sed -i 's,/var/run/nginx.pid,/tmp/nginx.pid,' /etc/nginx/nginx.conf && sed -i "/^http {/a \ proxy_temp_path /tmp/proxy_temp;\n client_body_temp_path /tmp/client_temp;\n fastcgi_temp_path /tmp/fastcgi_temp;\n uwsgi_temp_path /tmp/uwsgi_temp;\n scgi_temp_path /tmp/scgi_temp;\n" /etc/nginx/nginx.conf && chown -R $UID:0 /var/cache/nginx && chmod -R g+w /var/cache/nginx && chown -R $UID:0 /etc/nginx && chmod -R g+w /etc/nginx # buildkit

COPY docker-entrypoint.sh / # buildkit

COPY 10-listen-on-ipv6-by-default.sh /docker-entrypoint.d # buildkit

COPY 15-local-resolvers.envsh /docker-entrypoint.d # buildkit

COPY 20-envsubst-on-templates.sh /docker-entrypoint.d # buildkit

COPY 30-tune-worker-processes.sh /docker-entrypoint.d # buildkit

ENTRYPOINT ["/docker-entrypoint.sh"]

EXPOSE map[8080/tcp:{}]

STOPSIGNAL SIGQUIT

USER 101

CMD ["nginx" "-g" "daemon off;"]

ENV NJS_VERSION=0.8.9

ENV NJS_RELEASE=1

ARG UID=101

ARG GID=101

USER root

RUN |2 UID=101 GID=101 /bin/sh -c set -x && apkArch="$(cat /etc/apk/arch)" && nginxPackages=" nginx=${NGINX_VERSION}-r${PKG_RELEASE} nginx-module-xslt=${NGINX_VERSION}-r${DYNPKG_RELEASE} nginx-module-geoip=${NGINX_VERSION}-r${DYNPKG_RELEASE} nginx-module-image-filter=${NGINX_VERSION}-r${DYNPKG_RELEASE} nginx-module-njs=${NGINX_VERSION}.${NJS_VERSION}-r${NJS_RELEASE} " && apk add --no-cache --virtual .checksum-deps openssl && case "$apkArch" in x86_64|aarch64) apk add -X "https://nginx.org/packages/alpine/v$(egrep -o '^[0-9]+\.[0-9]+' /etc/alpine-release)/main" --no-cache $nginxPackages ;; *) set -x && tempDir="$(mktemp -d)" && chown nobody:nobody $tempDir && apk add --no-cache --virtual .build-deps gcc libc-dev make openssl-dev pcre2-dev zlib-dev linux-headers libxslt-dev gd-dev geoip-dev libedit-dev bash alpine-sdk findutils curl && su nobody -s /bin/sh -c " export HOME=${tempDir} && cd ${tempDir} && curl -f -L -O https://github.com/nginx/pkg-oss/archive/${NGINX_VERSION}-${PKG_RELEASE}.tar.gz && PKGOSSCHECKSUM=\"3a4e869eded0c71e92f522e94edffea7fbfb5e78886ea7e484342fa2e028c62099a67d08860c249bf93776da97b924225e0d849dbb4697b298afe5421d7d6fea *${NGINX_VERSION}-${PKG_RELEASE}.tar.gz\" && if [ \"\$(openssl sha512 -r ${NGINX_VERSION}-${PKG_RELEASE}.tar.gz)\" = \"\$PKGOSSCHECKSUM\" ]; then echo \"pkg-oss tarball checksum verification succeeded!\"; else echo \"pkg-oss tarball checksum verification failed!\"; exit 1; fi && tar xzvf ${NGINX_VERSION}-${PKG_RELEASE}.tar.gz && cd pkg-oss-${NGINX_VERSION}-${PKG_RELEASE} && cd alpine && make module-geoip module-image-filter module-njs module-xslt && apk index --allow-untrusted -o ${tempDir}/packages/alpine/${apkArch}/APKINDEX.tar.gz ${tempDir}/packages/alpine/${apkArch}/*.apk && abuild-sign -k ${tempDir}/.abuild/abuild-key.rsa ${tempDir}/packages/alpine/${apkArch}/APKINDEX.tar.gz " && cp ${tempDir}/.abuild/abuild-key.rsa.pub /etc/apk/keys/ && apk del --no-network .build-deps && apk add -X ${tempDir}/packages/alpine/ --no-cache $nginxPackages ;; esac && apk del --no-network .checksum-deps && if [ -n "$tempDir" ]; then rm -rf "$tempDir"; fi && if [ -f "/etc/apk/keys/abuild-key.rsa.pub" ]; then rm -f /etc/apk/keys/abuild-key.rsa.pub; fi && apk add --no-cache curl ca-certificates # buildkit

USER 101

COPY file:2c56e7351ff58da77b2a841becfbd60b8a8257d1fc0d7deb75aae3dc3db99846 in /etc/nginx/conf.d/default.conf

USER root

/bin/sh -c apk --update add --virtual .build-deps tar curl && apk --update add php83 php83-curl php83-fpm php83-gmp php83-intl php83-mbstring php83-xml php83-zip php83-ctype php83-dom php83-fileinfo php83-iconv php83-json php83-session php83-simplexml php83-xmlreader php83-zlib php83-pdo_pgsql php83-pdo_sqlite && rm -rf /var/www/localhost && mkdir -p /var/www/app

COPY file:c99fa0ae0f0edf8894e9f49e980a460716725a13b186ac6a192db1e7a77f42b1 in /usr/local/bin/entrypoint

COPY file:7b2614b3299907db5d9cc3ebde99fd27a811bd1cd1afdc071ba48be90de7504f in /.tarignore

ENV DATA_PATH=""

ENV CACHE_PATH=""

ENV TMP_PATH=""

ENV USERS_PATH=""

/bin/sh -c mkdir /var/www/.postgresql && echo "Installing FreshRSS version 'edge' ..." && curl -SsL "https://github.com/FreshRSS/FreshRSS/archive/refs/heads/edge.tar.gz" | tar xz -C /var/www/app/ -X /.tarignore --strip-components=1 && apk del .build-deps && rm -rf /var/cache/apk/* && rm -rf /tmp/* && mkdir -p /var/run/php && chown -R nginx:nginx /var/run/php && mkdir -p /var/lib/php/data && mkdir -p /var/lib/php/tmp_upload && mkdir -p /var/lib/php/soap_cache && mkdir -p /var/lib/php/session && mkdir -p /var/lib/php/data/favicons && chown -R nginx:nginx /var/lib/php && chown nginx /etc/php83/php.ini && chown -R nginx:nginx /var/www/.postgresql && chown -R nginx:nginx /var/www/app && chmod +x /usr/local/bin/entrypoint && chown -R nginx:nginx /var/log/php83

USER nginx

ENTRYPOINT ["/usr/local/bin/entrypoint"]

WORKDIR /var/www/app

CMD []

Key	Value
io.buildah.version	1.41.5
maintainer	NGINX Docker Maintainers <docker-maint@nginx.com>
org.opencontainers.image.created	2025-03-24T01:31:59.172Z
org.opencontainers.image.description	Unprivileged NGINX Dockerfiles
org.opencontainers.image.licenses	Apache-2.0
org.opencontainers.image.revision	3dd602719a37ff9b6095c44d4fd7f35b3c07b012
org.opencontainers.image.source	https://github.com/nginxinc/docker-nginx-unprivileged
org.opencontainers.image.title	docker-nginx-unprivileged
org.opencontainers.image.url	https://github.com/nginxinc/docker-nginx-unprivileged
org.opencontainers.image.version	1.26.3-alpine

Details

Container

2025-11-06 06:45:15 +00:00

OCI / Docker

linux/arm64

Apache-2.0

Project website

Repository website

36 MiB

Versions (1) View all

latest

2025-11-06

rss (latest)

Installation

About this package

Image layers

Labels