Answer the question
In order to leave comments, you need to log in
How to remove passwords from DockerCompose.yml environment variables?
There is docker-compose.yml and it contains Env variables with passwords for the mysql database in this container. docker-compose.yml itself is in git. Accordingly, if git is compromised, then the entire production will be compromised. how to make it so that the password does not have to be stored in git the first thing that comes to mind is some kind of script in the entrypoint that will take it from another place. but again, how it works will be and, accordingly, it will be possible to repeat it manually.
Answer the question
In order to leave comments, you need to log in
Didn't find what you were looking for?
Ask your questionAsk a Question
731 491 924 answers to any question