shishantbiswas/coder
1
0
Fork 0
mirror of https://github.com/coder/coder.git synced 2026-06-02 20:48:20 +00:00
Code Issues Packages Projects Releases Wiki Activity

chore: add Go module domains to boundary allowlist (#21548)

Browse Source 
Add 21 domains to the boundary allowlist to support Go module downloads
in the dogfood environment.

When running `go mod download` with `GOPROXY=direct`, Go fetches modules
directly from their source domains. Several dependencies in `go.mod` use
non-standard import paths that were being blocked by boundary with `403
Forbidden` errors.

**Added domains:**

| Domain | Purpose |
|--------|---------|
| `go.dev`, `dl.google.com` | Go toolchain downloads |
| `cdr.dev` | cdr.dev/slog (Coder logging) |
| `cel.dev` | cel.dev/expr |
| `dario.cat` | dario.cat/mergo |
| `git.sr.ht` | git.sr.ht/~jackmordaunt/go-toast |
| `go.mozilla.org` | go.mozilla.org/pkcs7 |
| `go.nhat.io` | go.nhat.io/otelsql |
| `go.opentelemetry.io` | OpenTelemetry packages |
| `go.uber.org` | go.uber.org/atomic, etc. |
| `go.yaml.in` | go.yaml.in/yaml |
| `go4.org` | go4.org/netipx |
| `golang.zx2c4.com` | WireGuard Go packages |
| `gonum.org` | gonum.org/v1/gonum |
| `gopkg.in` | gopkg.in/yaml.v3, etc. |
| `gvisor.dev` | gvisor.dev/gvisor |
| `howett.net` | howett.net/plist |
| `kernel.org` | libcap packages |
| `mvdan.cc` | mvdan.cc/gofumpt |
| `sigs.k8s.io` | sigs.k8s.io/yaml |
| `storj.io` | storj.io/drpc |

**Tested:** All domains verified working through boundary in a Linux
container.

🤖 Generated with [Claude Code](https://claude.com/claude-code)

Co-authored-by: Claude Opus 4.5 <noreply@anthropic.com>
This commit is contained in:
Atif Ali
2026-01-17 19:20:43 +05:00
committed by GitHub
parent 4d414a0df7
commit a4e14448c2
1 changed files with 23 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files
dogfood/coder/boundary-config.yaml
+23
View File
@@ -121,9 +121,32 @@ allowlist:
- domain=index.golang.org
- domain=golang.org
- domain=www.golang.org
- domain=go.dev
- domain=dl.google.com
- domain=goproxy.io
- domain=pkg.go.dev
# Go Module Domains (from go.mod)
- domain=cdr.dev
- domain=cel.dev
- domain=dario.cat
- domain=git.sr.ht
- domain=go.mozilla.org
- domain=go.nhat.io
- domain=go.opentelemetry.io
- domain=go.uber.org
- domain=go.yaml.in
- domain=go4.org
- domain=golang.zx2c4.com
- domain=gonum.org
- domain=gopkg.in
- domain=gvisor.dev
- domain=howett.net
- domain=kernel.org
- domain=mvdan.cc
- domain=sigs.k8s.io
- domain=storj.io
# Package Managers - JVM
- domain=maven.org
- domain=repo.maven.org