This addresses part of Password disclosure with Jenkins Swarm plugin. It moves the password into an environment variable and run the swarm plugin CLI as a non-root user (that has access to the Docker socket).
Workspace ownership and group will have to be modified to match the jenkins user in the swarm-agent container (numeric ID 1000).
This addresses part of Password disclosure with Jenkins Swarm plugin. It moves the password into an environment variable and run the swarm plugin CLI as a non-root user (that has access to the Docker socket).
Workspace ownership and group will have to be modified to match the
jenkins
user in the swarm-agent container (numeric ID1000
).