Consider authenticating and generating the accesstoken in the build phase? Would still mean baking the access token into the eventual image but would remove the password from ever being present. Note that this would mean the workflow/usage would preclude ever publishing the image to a publically accessible registry (well, one without access controls).
Consider authenticating and generating the
accesstoken
in the build phase? Would still mean baking the access token into the eventual image but would remove the password from ever being present. Note that this would mean the workflow/usage would preclude ever publishing the image to a publically accessible registry (well, one without access controls).