You are viewing a plain text version of this content. The canonical link for it is here.

Posted to notifications@yetus.apache.org by "Allen Wittenauer (Jira)" <ji...@apache.org> on 2020/10/31 06:04:00 UTC

[jira] [Commented] (YETUS-504) Keep sensitive information like passwords out of the docker container.

    [ https://issues.apache.org/jira/browse/YETUS-504?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17224008#comment-17224008 ] 

Allen Wittenauer commented on YETUS-504:
----------------------------------------

It is worth noting that with Docker BuildKit now supporting secret mounts, this _might_ be easier to do now. See https://docs.docker.com/develop/develop-images/build_enhancements/

> Keep sensitive information like passwords out of the docker container.
> ----------------------------------------------------------------------
>
>                 Key: YETUS-504
>                 URL: https://issues.apache.org/jira/browse/YETUS-504
>             Project: Yetus
>          Issue Type: Improvement
>          Components: Precommit
>            Reporter: Allen Wittenauer
>            Priority: Critical
>
> One of the things that has bugged me for quite a while is that user code in the Docker container has access to the passwords for external systems.  It would be nice to reconfigure this a bit where we do all of that work outside of the container.  This way, there would be no need to push sensitive data inside.  



--
This message was sent by Atlassian Jira
(v8.3.4#803005)