🧱 Blocklist › Generate #2
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # # | |
| # @usage https://github.com/Aetherinox/csf-firewall | |
| # @type github workflow | |
| # | |
| # used in combination with .github/scripts/db-blocklist-download.sh | |
| # | |
| # download AbuseIPDB ip list after list of ips are downloaded, merges them with a static list | |
| # that is not updated as often which contains a list of long-term abusive ip addresses | |
| # | |
| # local test requires the same structure as the github workflow | |
| # 📁 .github | |
| # 📁 blocks | |
| # 📄 1.txt | |
| # 📁 scripts | |
| # 📄 db-blocklist-download.sh | |
| # 📁 workflows | |
| # 📄 db-blocklist-download.yml | |
| # # | |
| name: "🧱 Blocklist › Generate" | |
| run-name: "🧱 Blocklist › Generate" | |
| # # | |
| # triggers | |
| # # | |
| on: | |
| workflow_dispatch: | |
| schedule: | |
| - cron: '0 */6 * * *' | |
| # # | |
| # environment variables | |
| # # | |
| env: | |
| BOT_NAME_1: AdminServ | |
| BOT_NAME_2: AdminServX | |
| BOT_NAME_3: EuropaServ | |
| BOT_NAME_DEPENDABOT: dependabot[bot] | |
| # # | |
| # jobs | |
| # # | |
| jobs: | |
| build: | |
| runs-on: ubuntu-22.04 | |
| timeout-minutes: 3 | |
| steps: | |
| # # | |
| # Job > Start | |
| # # | |
| - name: "✅ Start" | |
| id: task_build_start | |
| run: | | |
| echo "Starting build" | |
| # # | |
| # Job > Checkout | |
| # # | |
| - name: "☑️ Checkout" | |
| id: task_build_checkout | |
| uses: actions/checkout@v4 | |
| with: | |
| fetch-depth: 0 | |
| # # | |
| # Add Label to accepted PR | |
| # | |
| # port 465 | |
| # server_port: 465 | |
| # secure: true | |
| # ignore_cert: false | |
| # | |
| # port 587 | |
| # server_port: 587 | |
| # secure: false | |
| # # | |
| - name: "🧱 Generate" | |
| id: task_build_generate | |
| run: | | |
| # set permissions and run | |
| echo ${GITHUB_WORKSPACE} | |
| chmod +x ".github/scripts/db-blocklist-download.sh" | |
| command=".github/scripts/db-blocklist-download.sh ${{ secrets.BLOCKLIST_URL1 }} ${{ secrets.BLOCKLIST_FILE }}" | |
| eval "./$command" | |
| # cat csf.deny | |
| # assign vars | |
| now=$(date '+%m/%d/%Y %H:%M') | |
| commit_label="Sync" >> $GITHUB_ENV | |
| commit_message="\`️️⚡️ $commit_label ⚡️\` \`$now\`" >> $GITHUB_ENV | |
| echo "COMMIT_MESSAGE=$(echo $commit_message)" >> $GITHUB_ENV | |
| echo "NOW=$(echo $now)" >> $GITHUB_ENV | |
| mkdir -p blocklists/etc/csf/ | |
| mv csf.deny blocklists/etc/csf/ | |
| # # | |
| # commit changes | |
| # # | |
| - name: "📦 Commit" | |
| id: task_build_commit | |
| uses: stefanzweifel/git-auto-commit-action@v5 | |
| with: | |
| commit_message: ${{ env.COMMIT_MESSAGE }} |