feat: Fetch latest Changes from EU

.github/workflows/ci-dependency-check.yml

@@ -4,9 +4,9 @@ on:
     - cron: '48 02 * * 0' # Each Sunday at 02:48 UTC
   pull_request:
     types:
-    - opened
-    - synchronize
-    - reopened
+      - opened
+      - synchronize
+      - reopened
   workflow_dispatch:
 
 jobs:

.github/workflows/ci-main.yml

@@ -1,11 +1,12 @@
 name: ci-main
 on:
+  workflow_dispatch:
   push:
     branches:
       - main
   workflow_dispatch:
-  
-jobs: 
+
+jobs:
   build:
     runs-on: ubuntu-20.04
     steps:

.github/workflows/codeql.yml

@@ -0,0 +1,52 @@
+name: "CodeQL"
+
+on:
+  push:
+    branches: [ "main" ]
+  pull_request:
+    branches: [ "main" ]
+
+jobs:
+  analyze:
+    name: Analyze
+    runs-on: ubuntu-latest
+    permissions:
+      actions: read
+      contents: read
+      security-events: write
+
+    strategy:
+      fail-fast: false
+      matrix:
+        language: [ 'java' ]
+
+    steps:
+      - name: Checkout repository
+        uses: actions/checkout@v3
+
+      - name: Initialize CodeQL
+        uses: github/codeql-action/init@v2
+        with:
+          languages: ${{ matrix.language }}
+
+      - name: Setup Java 11
+        uses: actions/setup-java@v2
+        with:
+          java-version: 11
+          distribution: adopt
+
+      - name: Build
+        run: >-
+          mvn clean package
+          --batch-mode
+          --file ./pom.xml
+          --settings ./settings.xml
+          --define app.packages.username="${APP_PACKAGES_USERNAME}"
+          --define app.packages.password="${APP_PACKAGES_PASSWORD}"
+          -DskipTests=true;
+        env:
+          APP_PACKAGES_USERNAME: ${{ github.actor }}
+          APP_PACKAGES_PASSWORD: ${{ secrets.GITHUB_TOKEN }}
+
+      - name: Perform CodeQL Analysis
+        uses: github/codeql-action/analyze@v2

.gitignore

@@ -43,3 +43,4 @@ build/
 !/tools/*.sh
 
 certs/*
+.DS_Store

.grenrc.js

@@ -1,30 +1,30 @@
 module.exports = {
-  "dataSource": "prs",
-  "prefix": "",
-  "onlyMilestones": false,
-  "groupBy": {
-    "Enhancements": [
-      "enhancement",
-      "internal"
-    ],
-    "Bug Fixes": [
-      "bug"
-    ],
-    "Documentation": [
-      "documentation"
-    ],
-    "Others": [
-      "other"
-    ]
-  },
-  "changelogFilename": "CHANGELOG.md",
-  "template": {
-      commit: ({ message, url, author, name }) => `- [${message}](${url}) - ${author ? `@${author}` : name}`,
-      issue: "- {{name}} [{{text}}]({{url}})",
-      noLabel: "other",
-      group: "\n#### {{heading}}\n",
-      changelogTitle: "# Changelog\n\n",
-      release: "## {{release}} ({{date}})\n{{body}}",
-      releaseSeparator: "\n---\n\n"
-  }
+    "dataSource": "prs",
+    "prefix": "",
+    "onlyMilestones": false,
+    "groupBy": {
+        "Enhancements": [
+            "enhancement",
+            "internal"
+        ],
+        "Bug Fixes": [
+            "bug"
+        ],
+        "Documentation": [
+            "documentation"
+        ],
+        "Others": [
+            "other"
+        ]
+    },
+    "changelogFilename": "CHANGELOG.md",
+    "template": {
+        commit: ({message, url, author, name}) => `- [${message}](${url}) - ${author ? `@${author}` : name}`,
+        issue: "- {{name}} [{{text}}]({{url}})",
+        noLabel: "other",
+        group: "\n#### {{heading}}\n",
+        changelogTitle: "# Changelog\n\n",
+        release: "## {{release}} ({{date}})\n{{body}}",
+        releaseSeparator: "\n---\n\n"
+    }
 }

CODE_OF_CONDUCT.md

@@ -1,4 +1,3 @@
-
 # Contributor Covenant Code of Conduct
 
 ## Our Pledge
@@ -59,8 +58,8 @@ representative at an online or offline event.
 
 ## Enforcement
 
-Instances of abusive, harassing, or otherwise unacceptable behavior may be 
-reported to the community leaders responsible for enforcement at 
+Instances of abusive, harassing, or otherwise unacceptable behavior may be
+reported to the community leaders responsible for enforcement at
 [opensource@telekom.de](mailto:opensource@telekom.de).
 All complaints will be reviewed and investigated promptly and fairly.
 
@@ -107,7 +106,7 @@ Violating these terms may lead to a permanent ban.
 ### 4. Permanent Ban
 
 **Community Impact**: Demonstrating a pattern of violation of community
-standards, including sustained inappropriate behavior,  harassment of an
+standards, including sustained inappropriate behavior, harassment of an
 individual, or aggression toward or disparagement of classes of individuals.
 
 **Consequence**: A permanent ban from any sort of public interaction within

CONTRIBUTING.md

@@ -4,29 +4,37 @@
 
 All members of the project community must abide by the [Contributor Covenant, version 2.0](CODE_OF_CONDUCT.md).
 Only by respecting each other can we develop a productive, collaborative community.
-Instances of abusive, harassing, or otherwise unacceptable behavior may be reported by contacting [opensource@telekom.de](mailto:opensource@telekom.de) and/or a project maintainer.
+Instances of abusive, harassing, or otherwise unacceptable behavior may be reported by
+contacting [opensource@telekom.de](mailto:opensource@telekom.de) and/or a project maintainer.
 
-We appreciate your courtesy of avoiding political questions here. Issues which are not related to the project itself will be closed by our community managers.
+We appreciate your courtesy of avoiding political questions here. Issues which are not related to the project itself
+will be closed by our community managers.
 
 ## Engaging in our project
 
 We use GitHub to manage reviews of pull requests.
 
 * If you are a new contributor, see: [Steps to Contribute](#steps-to-contribute)
 
-* If you have a trivial fix or improvement, go ahead and create a pull request, addressing (with `@...`) a suitable maintainer of this repository (see [CODEOWNERS](CODEOWNERS) of the  repository you want to contribute to) in the description of the pull request.
+* If you have a trivial fix or improvement, go ahead and create a pull request, addressing (with `@...`) a suitable
+  maintainer of this repository (see [CODEOWNERS](CODEOWNERS) of the repository you want to contribute to) in the
+  description of the pull request.
 
-* If you plan to do something more involved, please reach out to us and send an [email](mailto:opensource@telekom.de). This will avoid unnecessary work and surely give you and us a good deal of inspiration.
+* If you plan to do something more involved, please reach out to us and send an [email](mailto:opensource@telekom.de).
+  This will avoid unnecessary work and surely give you and us a good deal of inspiration.
 
-* Relevant coding style guidelines are available in the respective sub-repositories as they are programming language-dependent.
+* Relevant coding style guidelines are available in the respective sub-repositories as they are programming
+  language-dependent.
 
 ## Steps to Contribute
 
-Should you wish to work on an issue, please claim it first by commenting on the GitHub issue that you want to work on. This is to prevent duplicated efforts from other contributors on the same issue.
+Should you wish to work on an issue, please claim it first by commenting on the GitHub issue that you want to work on.
+This is to prevent duplicated efforts from other contributors on the same issue.
 
 If you have questions about one of the issues, please comment on them, and one of the maintainers will clarify.
 
-We kindly ask you to follow the [Pull Request Checklist](#Pull-Request-Checklist) to ensure reviews can happen accordingly.
+We kindly ask you to follow the [Pull Request Checklist](#Pull-Request-Checklist) to ensure reviews can happen
+accordingly.
 
 ## Contributing Code
 
@@ -36,7 +44,8 @@ The following rule governs code contributions:
 
 * Contributions must be licensed under the [Apache 2.0 License](./LICENSE)
 * Newly created files must be opened by an instantiated version of the file 'templates/file-header.txt'
-* At least if you add a new file to the repository, add your name into the contributor section of the file NOTICE (please respect the preset entry structure)
+* At least if you add a new file to the repository, add your name into the contributor section of the file NOTICE (
+  please respect the preset entry structure)
 
 ## Contributing Documentation
 
@@ -48,28 +57,40 @@ The following rule governs documentation contributions:
 
 ## Pull Request Checklist
 
-* Branch from the main branch and, if needed, rebase to the current main branch before submitting your pull request. If it doesn't merge cleanly with main you may be asked to rebase your changes.
+* Branch from the main branch and, if needed, rebase to the current main branch before submitting your pull request. If
+  it doesn't merge cleanly with main you may be asked to rebase your changes.
 
-* Commits should be as small as possible while ensuring that each commit is correct independently (i.e., each commit should compile and pass tests).
+* Commits should be as small as possible while ensuring that each commit is correct independently (i.e., each commit
+  should compile and pass tests).
 
-* Test your changes as thoroughly as possible before you commit them. Preferably, automate your test by unit/integration tests. If tested manually, provide information about the test scope in the PR description (e.g. “Test passed: Upgrade version from 0.42 to 0.42.23.”).
+* Test your changes as thoroughly as possible before you commit them. Preferably, automate your test by unit/integration
+  tests. If tested manually, provide information about the test scope in the PR description (e.g. “Test passed: Upgrade
+  version from 0.42 to 0.42.23.”).
 
-* Create _Work In Progress [WIP]_ pull requests only if you need clarification or an explicit review before you can continue your work item.
+* Create _Work In Progress [WIP]_ pull requests only if you need clarification or an explicit review before you can
+  continue your work item.
 
-* If your patch is not getting reviewed or you need a specific person to review it, you can @-reply a reviewer asking for a review in the pull request or a comment, or you can ask for a review by contacting us via [email](mailto:opensource@telekom.de).
+* If your patch is not getting reviewed or you need a specific person to review it, you can @-reply a reviewer asking
+  for a review in the pull request or a comment, or you can ask for a review by contacting us
+  via [email](mailto:opensource@telekom.de).
 
 * Post review:
-  * If a review requires you to change your commit(s), please test the changes again.
-  * Amend the affected commit(s) and force push onto your branch.
-  * Set respective comments in your GitHub review to resolved.
-  * Create a general PR comment to notify the reviewers that your amendments are ready for another round of review.
+    * If a review requires you to change your commit(s), please test the changes again.
+    * Amend the affected commit(s) and force push onto your branch.
+    * Set respective comments in your GitHub review to resolved.
+    * Create a general PR comment to notify the reviewers that your amendments are ready for another round of review.
 
 ## Issues and Planning
 
 * We use GitHub issues to track bugs and enhancement requests.
 
-* Please provide as much context as possible when you open an issue. The information you provide must be comprehensive enough to reproduce that issue for the assignee. Therefore, contributors may use but aren't restricted to the issue template provided by the project maintainers.
+* Please provide as much context as possible when you open an issue. The information you provide must be comprehensive
+  enough to reproduce that issue for the assignee. Therefore, contributors may use but aren't restricted to the issue
+  template provided by the project maintainers.
 
-* When creating an issue, try using one of our issue templates which already contain some guidelines on which content is expected to process the issue most efficiently. If no template applies, you can of course also create an issue from scratch.
+* When creating an issue, try using one of our issue templates which already contain some guidelines on which content is
+  expected to process the issue most efficiently. If no template applies, you can of course also create an issue from
+  scratch.
 
-* Please apply one or more applicable [labels](/../../labels) to your issue so that all community members are able to cluster the issues better.
+* Please apply one or more applicable [labels](/../../labels) to your issue so that all community members are able to
+  cluster the issues better.

Dockerfile

@@ -8,4 +8,6 @@ ENV JAVA_OPTS="$JAVA_OPTS -Xms256M -Xmx1G"
 
 EXPOSE 8080
 
+USER 65534:65534
+
 ENTRYPOINT [ "sh", "-c", "java $JAVA_OPTS -Djava.security.egd=file:/dev/./urandom -jar /ddccg.jar" ]