DockerHub functional user should use restricted token

senzing-factory / build-resources

Collection of utilities to aid with build process

Apache License 2.0

1 stars 1 forks source link

DockerHub functional user should use restricted token #53

Closed kernelsam closed 1 year ago

kernelsam commented 1 year ago

https://docs.docker.com/docker-hub/access-tokens/

Set the access permissions. The access permissions are scopes that set restrictions in your repositories. For example, for Read & Write permissions, an automation pipeline can build an image and then push it to a repository. However, it can not delete the repository.

kernelsam commented 1 year ago

@docktermj added DOCKERHUB_ACCESS_TOKEN to action/dependabot org secrets with an access token generated by our functional dockerhub user. Permissions are restricted to read+write. I will start updating all docker builds to consume the new token.