Skip to content

Commit e642759

Browse files
Burnett01Burnett01
authored
new version 7.0.2 (with rsync 3.4.0), deprecate old versions, remove dead links
The latest rsync version 3.4.0 fixes a wide variety of CVE's: CVE-2024-12084 -⁠ Heap Buffer Overflow in Checksum Parsing. CVE-2024-12085 -⁠ Info Leak via uninitialized Stack contents defeats ASLR. CVE-2024-12086 -⁠ Server leaks arbitrary client files. CVE-2024-12087 -⁠ Server can make client write files outside of destination directory using symbolic links. CVE-2024-12088 -⁠ -⁠-⁠safe-⁠links Bypass. CVE-2024-12747 -⁠ symlink race condition. See their press release: https://download.samba.org/pub/rsync/NEWS#3.4.0 The latest action version 7.0.2 is using rsync 3.4.0, so please use that.
1 parent 7640448 commit e642759

File tree

1 file changed

+20
-21
lines changed

1 file changed

+20
-21
lines changed

README.md

Lines changed: 20 additions & 21 deletions
Original file line numberDiff line numberDiff line change
@@ -6,6 +6,9 @@ Use this action in a CD workflow which leaves deployable code in `GITHUB_WORKSPA
66

77
The base-image [drinternet/rsync](https://github.com/JoshPiper/rsync-docker/) of this action is very small and is based on Alpine 3.19.1 (no cache) which results in fast deployments.
88

9+
Alpine version: [3.19.1](https://alpinelinux.org/posts/Alpine-3.19.1-released.html)
10+
Rsync version: [3.4.0-r0](https://download.samba.org/pub/rsync/NEWS#3.4.0)
11+
912
---
1013

1114
## Inputs
@@ -40,7 +43,7 @@ This action needs secret variables for the ssh private key of your key pair. The
4043
4144
For simplicity, we are using `DEPLOY_*` as the secret variables throughout the examples.
4245

43-
## Current Version: 7.0.1
46+
## Current Version: 7.0.2
4447

4548
## Example usage
4649

@@ -59,7 +62,7 @@ jobs:
5962
steps:
6063
- uses: actions/checkout@v3
6164
- name: rsync deployments
62-
uses: burnett01/[email protected].1
65+
uses: burnett01/[email protected].2
6366
with:
6467
switches: -avzr --delete
6568
path: src/
@@ -78,7 +81,7 @@ jobs:
7881
steps:
7982
- uses: actions/checkout@v3
8083
- name: rsync deployments
81-
uses: burnett01/[email protected].1
84+
uses: burnett01/[email protected].2
8285
with:
8386
switches: -avzr --delete --exclude="" --include="" --filter=""
8487
path: src/
@@ -98,7 +101,7 @@ jobs:
98101
steps:
99102
- uses: actions/checkout@v3
100103
- name: rsync deployments
101-
uses: burnett01/[email protected].1
104+
uses: burnett01/[email protected].2
102105
with:
103106
switches: -avzr --delete
104107
path: src/
@@ -118,7 +121,7 @@ jobs:
118121
steps:
119122
- uses: actions/checkout@v3
120123
- name: rsync deployments
121-
uses: burnett01/[email protected].1
124+
uses: burnett01/[email protected].2
122125
with:
123126
switches: -avzr --delete
124127
path: src/
@@ -144,7 +147,7 @@ jobs:
144147
steps:
145148
- uses: actions/checkout@v3
146149
- name: rsync deployments
147-
uses: burnett01/[email protected].1
150+
uses: burnett01/[email protected].2
148151
with:
149152
switches: -avzr --delete
150153
legacy_allow_rsa_hostkeys: "true"
@@ -160,15 +163,24 @@ See [#49](https://github.com/Burnett01/rsync-deployments/issues/49) and [#24](ht
160163
161164
---
162165
163-
## Version 6.0 (MAINTENANCE)
166+
## Version 7.0.0 & 7.0.1 (DEPRECATED)
167+
168+
Check here:
169+
170+
- https://github.com/Burnett01/rsync-deployments/tree/7.0.0 (alpine 3.19.1)
171+
- https://github.com/Burnett01/rsync-deployments/tree/7.0.1 (alpine 3.19.1)
172+
173+
---
174+
175+
## Version 6.0 (EOL)
164176
165177
Check here:
166178
167179
- https://github.com/Burnett01/rsync-deployments/tree/6.0 (alpine 3.17.2)
168180
169181
---
170182
171-
## Version 5.0, 5.1 & 5.2 & 5.x (DEPRECATED)
183+
## Version 5.0, 5.1 & 5.2 & 5.x (EOL)
172184
173185
Check here:
174186
@@ -227,28 +239,15 @@ This action was featured in multiple blogs across the globe:
227239
228240
> Disclaimer: The author & co-authors are not responsible for the content of the site-links below.
229241
230-
- https://leobrack.co.uk/blog/2020-02-15-automatically-push-changes-to-your-live-site-with-github-actions
231-
232-
- https://blog.maniak.co/ci-cd-for-wordpress/
233-
234242
- https://elijahverdoorn.com/2020/04/14/automating-deployment-with-github-actions/
235243
236244
- https://www.vektor-inc.co.jp/post/github-actions-deploy/
237245
238-
- https://ews.ink/tech/blog-deploy-2/
239-
240246
- https://webpick.info/automatiser-avec-github-actions/
241247
242248
- https://matthias-andrasch.eu/blog/2021/tutorial-webseite-mittels-github-actions-deployment-zu-uberspace-uebertragen-rsync/
243249
244-
- https://mikael.koutero.me/posts/hugo-github-actions-deploy-rsync/
245-
246-
- https://cdmana.com/2021/02/20210208122400688I.html
247-
248250
- https://jishuin.proginn.com/p/763bfbd38928
249251
250252
- https://cloud.tencent.com/developer/article/1786522
251253
252-
- http://www.ningco.cn/github_action_deploy_blog/
253-
254-
- https://qdmana.com/2021/01/20210127094413405u.html

0 commit comments

Comments
 (0)