Yaml #538

gemini-code-assist · 2026-01-26T11:17:59Z

The consolidation of multiple RUN commands into a single RUN command utilizing npm run scripts is a significant improvement. This enhances readability and makes the build process more maintainable by centralizing complex logic within package.json.

-Original file line number
+Diff line change
@@ Expand Up / @@ -44,19 +44,9 @@ updates: @@
         schedule:
           interval: "daily"
         groups:
-          dev-patch-updates:
-            dependency-type: "development"
-            update-types:
-              - "patch"
-          dev-minor-updates:
-            dependency-type: "development"
-            update-types:
-              - "minor"
-          prod-patch-updates:
-            dependency-type: "production"
+          patch-updates:
             update-types:
               - "patch"
-          prod-minor-updates:
-            dependency-type: "production"
+          minor-updates:
             update-types:
               - "minor"

-Original file line number
+Diff line change
@@ -1,63 +1,43 @@
     FROM node:24-alpine AS builder
-    # OCI Image Labels - Build Args for dynamic values
-    ARG VERSION="dev"
-    ARG REVISION=""
-    ARG CREATED=""
-    ARG LICENSE="AGPL-3.0"
     WORKDIR /app
     ARG BUILD=oss
     ARG DATABASE=sqlite
-    # Derive title and description based on BUILD type
-    ARG IMAGE_TITLE="Pangolin"
-    ARG IMAGE_DESCRIPTION="Identity-aware VPN and proxy for remote access to anything, anywhere"
-    RUN apk add --no-cache curl tzdata python3 make g++
+    RUN apk add --no-cache python3 make g++
     # COPY package.json package-lock.json ./
     COPY package*.json ./
     RUN npm ci
     COPY . .
-    RUN echo "export * from \"./$DATABASE\";" > server/db/index.ts
-    RUN echo "export const driver: \"pg\" | \"sqlite\" = \"$DATABASE\";" >> server/db/index.ts
-    RUN echo "export const build = \"$BUILD\" as \"saas\" | \"enterprise\" | \"oss\";" > server/build.ts
-    # Copy the appropriate TypeScript configuration based on build type
-    RUN if [ "$BUILD" = "oss" ]; then cp tsconfig.oss.json tsconfig.json; \
-        elif [ "$BUILD" = "saas" ]; then cp tsconfig.saas.json tsconfig.json; \
-        elif [ "$BUILD" = "enterprise" ]; then cp tsconfig.enterprise.json tsconfig.json; \
-        fi
-    # if the build is oss then remove the server/private directory
-    RUN if [ "$BUILD" = "oss" ]; then rm -rf server/private; fi
-    RUN if [ "$DATABASE" = "pg" ]; then npx drizzle-kit generate --dialect postgresql --schema ./server/db/pg/schema --out init; else npx drizzle-kit generate --dialect $DATABASE --schema ./server/db/$DATABASE/schema --out init; fi
-    RUN mkdir -p dist
-    RUN npm run next:build
-    RUN node esbuild.mjs -e server/index.ts -o dist/server.mjs -b $BUILD
-    RUN if [ "$DATABASE" = "pg" ]; then \
-        node esbuild.mjs -e server/setup/migrationsPg.ts -o dist/migrations.mjs; \
-        else \
-        node esbuild.mjs -e server/setup/migrationsSqlite.ts -o dist/migrations.mjs; \
-        fi
+    RUN if [ "$BUILD" = "oss" ]; then rm -rf server/private; fi && \
+        npm run set:$DATABASE && \
+        npm run set:$BUILD && \
+        npm run db:$DATABASE:generate && \
+        npm run build:$DATABASE && \
+        npm run build:cli
     # test to make sure the build output is there and error if not
     RUN test -f dist/server.mjs
-    RUN npm run build:cli
     # Prune dev dependencies and clean up to prepare for copy to runner
     RUN npm prune --omit=dev && npm cache clean --force
     FROM node:24-alpine AS runner
+    # OCI Image Labels - Build Args for dynamic values
+    ARG VERSION="dev"
+    ARG REVISION=""
+    ARG CREATED=""
+    ARG LICENSE="AGPL-3.0"
+    # Derive title and description based on BUILD type
+    ARG IMAGE_TITLE="Pangolin"
+    ARG IMAGE_DESCRIPTION="Identity-aware VPN and proxy for remote access to anything, anywhere"
     WORKDIR /app
     # Only curl and tzdata needed at runtime - no build tools!
@@ Expand All / @@ -66,11 +46,10 @@ RUN apk add --no-cache curl tzdata @@
     # Copy pre-built node_modules from builder (already pruned to production only)
     # This includes the compiled native modules like better-sqlite3
     COPY --from=builder /app/node_modules ./node_modules
     COPY --from=builder /app/.next/standalone ./
     COPY --from=builder /app/.next/static ./.next/static
     COPY --from=builder /app/dist ./dist
-    COPY --from=builder /app/init ./dist/init
+    COPY --from=builder /app/server/migrations ./dist/init
     COPY --from=builder /app/package.json ./package.json
     COPY ./cli/wrapper.sh /usr/local/bin/pangctl
@@ Expand Down @@

-Original file line number
+Diff line change
@@ Expand Up / @@ -4,7 +4,7 @@ import { encrypt, decrypt } from "@server/lib/crypto"; @@
     import { configFilePath1, configFilePath2 } from "@server/lib/consts";
     import { eq } from "drizzle-orm";
     import fs from "fs";
-    import yaml from "js-yaml";
+    import yaml from "yaml";
     type RotateServerSecretArgs = {
         "old-secret": string;
@@ Expand Down Expand Up / @@ -63,7 +63,7 @@ export const rotateServerSecret: CommandModule< @@
                 // Read current config
                 const configContent = fs.readFileSync(configPath, "utf8");
-                const config = yaml.load(configContent) as any;
+                const config = yaml.parse(configContent) as any;
                 if (!config?.server?.secret) {
                     console.error(
@@ Expand Down Expand Up / @@ -258,7 +258,7 @@ export const rotateServerSecret: CommandModule< @@
                 // Update config file with new secret
                 console.log("\nUpdating config file...");
                 config.server.secret = newSecret;
-                const newConfigContent = yaml.dump(config, {
+                const newConfigContent = yaml.stringify(config, {
                     indent: 2,
                     lineWidth: -1
                 });
@@ Expand Down @@

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Yaml #538

Uh oh!

Diff view

Diff view

There are no files selected for viewing

gemini-code-assist bot Jan 26, 2026

Uh oh!

Uh oh!

Yaml #538

Are you sure you want to change the base?

Uh oh!

Yaml #538

Uh oh!

Uh oh!

Diff view

Diff view

There are no files selected for viewing

gemini-code-assist bot Jan 26, 2026

Choose a reason for hiding this comment

Uh oh!

Uh oh!