The Docker CLI

Go to file

Sebastiaan van Stijn a4a79d75c0 vendor: google.golang.org/protobuf v1.33.0, github.com/golang/protobuf v1.5.4 full diffs: - https://github.com/protocolbuffers/protobuf-go/compare/v1.31.0...v1.33.0 - https://github.com/golang/protobuf/compare/v1.5.3...v1.5.4 From the Go security announcement list; > Version v1.33.0 of the google.golang.org/protobuf module fixes a bug in > the google.golang.org/protobuf/encoding/protojson package which could cause > the Unmarshal function to enter an infinite loop when handling some invalid > inputs. > > This condition could only occur when unmarshaling into a message which contains > a google.protobuf.Any value, or when the UnmarshalOptions.UnmarshalUnknown > option is set. Unmarshal now correctly returns an error when handling these > inputs. > > This is CVE-2024-24786. In a follow-up post; > A small correction: This vulnerability applies when the UnmarshalOptions.DiscardUnknown > option is set (as well as when unmarshaling into any message which contains a > google.protobuf.Any). There is no UnmarshalUnknown option. > > In addition, version 1.33.0 of google.golang.org/protobuf inadvertently > introduced an incompatibility with the older github.com/golang/protobuf > module. (https://github.com/golang/protobuf/issues/1596) Users of the older > module should update to github.com/golang/protobuf@v1.5.4. govulncheck results in our code shows that this does not affect the CLI: govulncheck ./... Scanning your code and 448 packages across 72 dependent modules for known vulnerabilities... === Symbol Results === No vulnerabilities found. Your code is affected by 0 vulnerabilities. This scan also found 1 vulnerability in packages you import and 0 vulnerabilities in modules you require, but your code doesn't appear to call these vulnerabilities. Use '-show verbose' for more details. Signed-off-by: Sebastiaan van Stijn <github@gone.nl>		2024-03-16 16:41:42 +01:00
.github	update to go1.21.8	2024-03-05 22:08:26 +01:00
cli	cli/command: deprecate EventHandler and InitEventHandler	2024-03-11 13:25:22 +01:00
cli-plugins	plugins: fix encoding for OTEL env var passed to plugin	2024-02-28 12:43:07 -08:00
cmd/docker	builder: correct the command path for docker build	2024-03-15 11:36:38 -05:00
contrib/completion	Fixed typo in bash completion functions	2024-02-17 17:11:28 +11:00
dockerfiles	update to go1.21.8	2024-03-05 22:08:26 +01:00
docs	Merge pull request #4916 from dvdksn/docs-typos-corrections	2024-03-14 13:20:39 +01:00
e2e	update to go1.21.8	2024-03-05 22:08:26 +01:00
experimental	experimental: fix broken link to "checkpoint and restore" page	2021-09-07 13:30:48 +02:00
internal/test	fix: cli prompt termination exit code	2024-03-04 15:26:17 +01:00
man	man/docker-build.1: typo in parameter variable: CID => IID	2024-02-16 11:10:06 +01:00
opts	mount: Add `volume-subpath` option	2024-02-13 14:04:00 +01:00
scripts	docs: regenerate markdown	2024-02-21 10:40:13 +01:00
service/logs	service/logs: use strings.Cut	2022-12-29 15:19:31 +01:00
templates	add //go:build directives to prevent downgrading to go1.16 language	2023-12-14 15:03:46 +01:00
vendor	vendor: google.golang.org/protobuf v1.33.0, github.com/golang/protobuf v1.5.4	2024-03-16 16:41:42 +01:00
.dockerignore	validate manpages target	2022-02-25 17:11:17 +01:00
.gitattributes	fix linguist with .gitattributes	2021-12-16 21:16:02 +01:00
.gitignore	validate manpages target	2022-02-25 17:11:17 +01:00
.golangci.yml	templates: linting: fix "error return value is not checked (errchkjson)	2023-11-20 19:52:46 +01:00
.mailmap	update authors and mailmap	2023-12-21 01:12:19 +01:00
AUTHORS	update authors and mailmap	2023-12-21 01:12:19 +01:00
CONTRIBUTING.md	- What I did	2023-10-19 16:10:27 -04:00
Dockerfile	Dockerfile: update to xx 1.4.0	2024-03-11 14:24:26 +01:00
LICENSE	Add project files	2017-04-17 17:49:33 -04:00
MAINTAINERS	not actually a maintainer	2023-11-10 21:35:15 +01:00
Makefile	docs: generate markdown	2023-01-06 22:36:47 +01:00
NOTICE	switch kr/pty to creack/pty v1.1.7	2019-07-29 16:45:41 -07:00
README.md	Readme: remove reference to "Docker EE"	2023-11-28 10:23:11 +01:00
TESTING.md	tweak description of login/logout	2022-04-04 10:44:11 +02:00
VERSION	Update version to v25.0.0-dev	2023-05-08 08:57:19 +02:00
codecov.yml	Drop support for (archived) Compose-on-Kubernetes	2022-02-22 13:47:34 +01:00
docker-bake.hcl	Merge pull request #4923 from vvoland/cli-arm64	2024-03-06 09:08:20 -07:00
docker.Makefile	Cleanup of dockerfiles, compose files and env vars	2024-02-13 13:32:45 +00:00
vendor.mod	vendor: google.golang.org/protobuf v1.33.0, github.com/golang/protobuf v1.5.4	2024-03-16 16:41:42 +01:00
vendor.sum	vendor: google.golang.org/protobuf v1.33.0, github.com/golang/protobuf v1.5.4	2024-03-16 16:41:42 +01:00

README.md

Docker CLI

About

This repository is the home of the Docker CLI.

Development

docker/cli is developed using Docker.

Build CLI from source:

docker buildx bake

Build binaries for all supported platforms:

docker buildx bake cross

Build for a specific platform:

docker buildx bake --set binary.platform=linux/arm64

Build dynamic binary for glibc or musl:

USE_GLIBC=1 docker buildx bake dynbinary

Run all linting:

docker buildx bake lint shellcheck

Run test:

docker buildx bake test

List all the available targets:

make help

In-container development environment

Start an interactive development environment:

make -f docker.Makefile shell

Legal

Brought to you courtesy of our legal counsel. For more context, please see the NOTICE document in this repo.

Use and transfer of Docker may be subject to certain restrictions by the United States and other governments.

It is your responsibility to ensure that your use and/or transfer does not violate applicable laws.

For more information, please see https://www.bis.doc.gov

Licensing

docker/cli is licensed under the Apache License, Version 2.0. See LICENSE for the full license text.