Passing DOCKER_PASSWORD via stdin is more secure, since arguments are visible in the process tree.
It might not make a difference, but passing data through stdin involves passing it through a file descriptor which can be read by using standard io calls. Command line arguments are kept in a processes argv in memory, any unprivileged can access that address of memory to view the arguments.
Passing DOCKER_PASSWORD via stdin is more secure, since arguments are visible in the process tree.
It might not make a difference, but passing data through stdin involves passing it through a file descriptor which can be read by using standard io calls. Command line arguments are kept in a processes
argv
in memory, any unprivileged can access that address of memory to view the arguments.