Simon/self-host
1
0
Fork 0
mirror of https://github.com/bitwarden/self-host.git synced 2026-06-27 13:55:46 +00:00
Code Issues Packages Projects Releases Wiki Activity
411 Commits 20 Branches 114 Tags
main
Go to file
Clone
Open with VS Code Open with VSCodium Open with Intellij IDEA
Download ZIP Download TAR.GZ Download BUNDLE
brandonbiete 1821ae8710 [BRE-2049] Add tag existence check to prevent overwriting images (#528) 
Prevents build-bitwarden-lite from overwriting existing production
container image tags by checking both GHCR and ACR registries.

Changes:
- Check both GHCR and ACR before building
- Distinguish 'not found' from 'error' to fail closed
- Only validates version tags (X.Y.Z format)
- Skips check for dev/branch tags to allow rebuilds
- Fails with clear error if tag exists or check fails

Security: Prevents silent failures from registry errors, rate limits,
auth failures, or network timeouts from allowing overwrites.

This provides defense-in-depth protection against tag overwrites
from any workflow source, regardless of how it was triggered.
2026-06-26 12:13:06 -04:00
.github
[BRE-2049] Add tag existence check to prevent overwriting images (#528)
2026-06-26 12:13:06 -04:00
AWSMarketplace
BRE-1893 fix(marketplace): defer host-key removal (#506)
2026-05-12 15:47:46 -04:00
AzureMarketplace
fix(azure-marketplace): reset cloud-init state (#518)
2026-06-01 18:07:07 -04:00
bitwarden-lite
Updated core, web, and key-connector versions
2026-06-25 19:10:14 +00:00
CommonMarketplace
BRE-1893 fix(marketplace): guard setup wizard against non-interactive shells (#520)
2026-06-03 17:41:57 -04:00
DigitalOceanMarketplace
BRE-1893 fix(marketplace): defer host-key removal (#506)
2026-05-12 15:47:46 -04:00
.editorconfig
chore: Add bitwarden/template repo config files (#310)
2024-11-25 14:23:20 -05:00
.gitattributes
chore: Add bitwarden/template repo config files (#310)
2024-11-25 14:23:20 -05:00
.gitignore
chore: Add bitwarden/template repo config files (#310)
2024-11-25 14:23:20 -05:00
bitwarden.ps1
Updated core, web, and key-connector versions
2026-06-25 19:10:14 +00:00
bitwarden.sh
Updated core, web, and key-connector versions
2026-06-25 19:10:14 +00:00
CLAUDE.md
Remove release triggers from marketplace workflows (#482)
2026-04-01 11:55:45 -04:00
CONTRIBUTING.md
chore: Add bitwarden/template repo config files (#310)
2024-11-25 14:23:20 -05:00
LICENSE
Initial commit
2022-01-06 11:10:40 -05:00
README.md
Bitwarden Lite Marketplace Images (#491)
2026-04-15 19:26:22 +02:00
run.ps1
Remove email address prompt from Let's Encrypt installation (#462)
2026-02-27 13:07:14 +01:00
run.sh
[SHOT-148] fix: syntax error in BUILT_IN_MS_SQL_ENABLED conditional check (#492)
2026-04-27 08:54:38 +01:00
SECURITY.md
chore: Add bitwarden/template repo config files (#310)
2024-11-25 14:23:20 -05:00
version.json
Updated core, web, and key-connector versions
2026-06-25 19:10:14 +00:00

README.md

Self-Host Release Repository

Bitwarden's dedicated self-hosted release repository. This holds the installation scripts and container images for our self-host project.

For any issues regarding a specific client application, please visit bitwarden/clients

Container Images

Bitwarden provides OCI-Compliant container images in our ghcr.io repository.

All images published to ghcr.io are signed by using Cosign's keyless signing. The images can be verified with the following command (where $IMAGE_NAME is set to an image in our repository):

$ cosign verify ghcr.io/bitwarden/$IMAGE_NAME:latest --certificate-identity-regexp="https://github\.com/bitwarden/self-host/\.github/workflows/release\.yml@.*" --certificate-oidc-issuer="https://token.actions.githubusercontent.com"

Quick Deploy

Deploy to DO

Deploy to Azure

Deploy to Kubernetes with Helm

Reference in New Issue View Git Blame Copy Permalink
Description
No description provided
Readme GPL-3.0 3.1 MiB
Languages
Shell 61.3%
HCL 16.9%
PowerShell 11.5%
Handlebars 5.5%
Dockerfile 4.8%