p4u1/docker-cli
0
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
7,253 Commits 2 Branches 295 Tags
v20.10.3
Go to file
Clone
Open with VS Code Open with VSCodium Open with Intellij IDEA
Download ZIP Download TAR.GZ Download BUNDLE
Tibor Vass 48d30b5b32 Use golang.org/x/sys/execabs 
On Windows, the os/exec.{Command,CommandContext,LookPath} functions
resolve command names that have neither path separators nor file extension
(e.g., "git") by first looking in the current working directory before
looking in the PATH environment variable.
Go maintainers intended to match cmd.exe's historical behavior.

However, this is pretty much never the intended behavior and as an abundance of precaution
this patch prevents that when executing commands.
Example of commands that docker.exe may execute: `git`, `docker-buildx` (or other cli plugin), `docker-credential-wincred`, `docker`.

Note that this was prompted by the [Go 1.15.7 security fixes](https://blog.golang.org/path-security), but unlike in `go.exe`,
the windows path lookups in docker are not in a code path allowing remote code execution, thus there is no security impact on docker.

Signed-off-by: Tibor Vass <tibor@docker.com>
(cherry picked from commit 8d199d5bba)
Signed-off-by: Tibor Vass <tibor@docker.com>
2021-01-28 22:27:59 +00:00
.circleci
CircleCI: update to docker 19.03.12
2020-09-11 16:44:02 +02:00
.github
GH Actions: run CodeQL only on cron-job, not on pull requests
2020-10-01 16:51:28 +02:00
cli
Use golang.org/x/sys/execabs
2021-01-28 22:27:59 +00:00
cli-plugins
Use golang.org/x/sys/execabs
2021-01-28 22:27:59 +00:00
cmd/docker
Merge pull request #2735 from thaJeztah/fix_flag_hiding
2020-10-29 15:59:02 +01:00
contrib/completion
Merge pull request #2831 from tianon/containerd
2020-11-10 23:57:02 +01:00
dockerfiles
Bump vndr v0.1.2
2020-10-16 01:32:00 +02:00
docs
Deprecation: add pulling from non-compliant registries to table
2020-12-09 02:36:30 +01:00
e2e
context: Add tarball e2e tests
2021-01-28 22:27:59 +00:00
experimental
Fix link to docker build with squash experiment
2020-12-18 22:33:02 +00:00
internal/test
Fix container creation time in test/builders
2020-12-16 08:55:29 +07:00
kubernetes
Always enable experimental features
2020-10-02 15:59:42 +02:00
man
Replace deprecated instruction
2020-10-23 19:49:51 +02:00
opts
opts: fix potential integer overflow CWE-190, CWE-681
2020-10-24 01:30:42 +02:00
scripts
generate-man.sh: Only build md2man if it's not installed
2020-12-09 23:06:18 +01:00
service/logs
bump gotest.tools v3.0.1 for compatibility with Go 1.14
2020-02-23 00:28:55 +01:00
templates
bump gotest.tools v3.0.1 for compatibility with Go 1.14
2020-02-23 00:28:55 +01:00
vendor
vendor docker, docker-credential-helpers and golang/sys for execabs package
2021-01-28 22:27:59 +00:00
.dockerignore
Update .dockerignore
2020-08-20 15:46:46 +02:00
.gitignore
Add checks for dependencies that are not vendored.
2020-07-06 09:23:19 +00:00
.golangci.yml
Remove now obsolete gometalinter and use golangci-lint instead
2019-10-31 19:22:44 +01:00
.mailmap
Update authors and mailmap
2020-08-06 01:58:32 +02:00
appveyor.yml
Bump Golang 1.13.15
2020-08-10 17:24:48 +02:00
AUTHORS
Update authors and mailmap
2020-08-06 01:58:32 +02:00
codecov.yml
Fix PR comments
2018-01-03 10:23:32 +01:00
CONTRIBUTING.md
Fix broken link in CONTRIBUTING
2020-03-19 15:03:59 +01:00
docker.Makefile
Fix make -f docker.Makefile without buildkit enabled
2020-09-24 13:01:42 +02:00
Jenkinsfile
Fix make -f docker.Makefile without buildkit enabled
2020-09-24 13:01:42 +02:00
LICENSE
Add project files
2017-04-17 17:49:33 -04:00
MAINTAINERS
Maintainers: remove Justin and Aaron
2019-12-04 13:08:15 +01:00
Makefile
Add checks for dependencies that are not vendored.
2020-07-06 09:23:19 +00:00
NOTICE
switch kr/pty to creack/pty v1.1.7
2019-07-29 16:45:41 -07:00
poule.yml
Add github templates and initial poule configuration
2017-05-09 16:57:46 +02:00
README.md
update Jenkins Build Status urls for README
2019-10-24 11:21:12 -04:00
TESTING.md
Update TESTING.md to replace testify by gotest.tools
2018-07-02 09:24:28 +02:00
vendor.conf
vendor docker, docker-credential-helpers and golang/sys for execabs package
2021-01-28 22:27:59 +00:00
VERSION
Update version to 20.10-dev
2020-10-13 09:37:17 +02:00

README.md

build status Build Status

docker/cli

This repository is the home of the cli used in the Docker CE and Docker EE products.

Development

docker/cli is developed using Docker.

Build a linux binary:

$ make -f docker.Makefile binary

Build binaries for all supported platforms:

$ make -f docker.Makefile cross

Run all linting:

$ make -f docker.Makefile lint

List all the available targets:

$ make help

In-container development environment

Start an interactive development environment:

$ make -f docker.Makefile shell

In the development environment you can run many tasks, including build binaries:

$ make binary

Legal

Brought to you courtesy of our legal counsel. For more context, please see the NOTICE document in this repo.

Use and transfer of Docker may be subject to certain restrictions by the United States and other governments.

It is your responsibility to ensure that your use and/or transfer does not violate applicable laws.

For more information, please see https://www.bis.doc.gov

Licensing

docker/cli is licensed under the Apache License, Version 2.0. See LICENSE for the full license text.

Description
No description provided
Readme 310 MiB
Languages
Go 92%
Shell 5.5%
Dockerfile 1.1%
Go-Checksums 0.9%
Makefile 0.3%
Other 0.2%