Skip to content

Use Docker secrets instead of plain text environment variables #54

Description

@pedropombeiro
 - SecretsUsedInArgOrEnv: Do not use ARG or ENV instructions for sensitive data (ENV "FTP_PASSWORD") (line 64)
 - SecretsUsedInArgOrEnv: Do not use ARG or ENV instructions for sensitive data (ENV "TELEGRAM_TOKEN") (line 68)
 - SecretsUsedInArgOrEnv: Do not use ARG or ENV instructions for sensitive data (ENV "SSH_PASSWORD") (line 58)

We should pass *_FILE environment variables instead of ones passed in plain text. The script would then read the file contents at startup, avoiding exposing the passwords in the environment variables.

Metadata

Metadata

Assignees

No one assigned

    Labels

    enhancementNew feature or request

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions