spacebar/kamal
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Make sure folks dont leak GITHUB_TOKENs into the image when using git dependencies

Browse Source
This commit is contained in:
David Heinemeier Hansson
2023-02-08 08:35:30 +01:00
parent bb18189b01
commit f99ff47f75
1 changed files with 3 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

3
README.md
View File

@@ -257,6 +257,9 @@ COPY Gemfile Gemfile.lock ./
RUN --mount=type=secret,id=GITHUB_TOKEN \ RUN --mount=type=secret,id=GITHUB_TOKEN \
BUNDLE_GITHUB__COM=x-access-token:$(cat /run/secrets/GITHUB_TOKEN) \ BUNDLE_GITHUB__COM=x-access-token:$(cat /run/secrets/GITHUB_TOKEN) \
bundle install bundle install
# Remove git configs with exposed GITHUB_TOKEN
RUN find /usr/local/bundle/cache/bundler/git -name "config" -delete
``` ```
### Using command arguments for Traefik ### Using command arguments for Traefik