Open f0o opened 5 months ago
Build Secrets are exceedingly important to fetch private resources and external dependencies.
Utilizing Build-Args or even Envs will lead to credentials leaked into the final docker image through it's layers and should be discouraged.
Docker provides https://docs.docker.com/build/building/secrets/ to provide secrets into build instructions
./.
Community Note
Description
Build Secrets are exceedingly important to fetch private resources and external dependencies.
Utilizing Build-Args or even Envs will lead to credentials leaked into the final docker image through it's layers and should be discouraged.
Docker provides https://docs.docker.com/build/building/secrets/ to provide secrets into build instructions
New or Affected Resource(s)
Potential Terraform Configuration
./.
References