Merge pull request #284 from smallstep/max/goreleaser-permissions · smallstep/autocert@d471947

SecretsUsedInArgOrEnv: Do not use ARG or ENV instructions for sensitive data (ENV "KEY") More info: https://docs.docker.com/go/dockerfile/rule/secrets-used-in-arg-or-env/

Sensitive data should not be used in the ARG or ENV commands: bootstrapper/Dockerfile#L5

SecretsUsedInArgOrEnv: Do not use ARG or ENV instructions for sensitive data (ENV "KEY") More info: https://docs.docker.com/go/dockerfile/rule/secrets-used-in-arg-or-env/

goreleaser / Upload Assets To Github w/ goreleaser

You are using 'latest' as default version. Will lock to '~> v2'.

JSON arguments recommended for ENTRYPOINT/CMD to prevent unintended behavior related to OS signals: controller/Dockerfile#L17

JSONArgsRecommended: JSON arguments recommended for ENTRYPOINT to prevent unintended behavior related to OS signals More info: https://docs.docker.com/go/dockerfile/rule/json-args-recommended/

Artifacts

Produced during runtime

Name	Size
smallstep~autocert~2OBCYW.dockerbuild	53.6 KB
smallstep~autocert~3SOPGT.dockerbuild	79.4 KB
smallstep~autocert~JC6TLV.dockerbuild	37.1 KB
smallstep~autocert~OPX28J.dockerbuild	64.6 KB

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Merge pull request #284 from smallstep/max/goreleaser-permissions #22

Summary

Merge pull request #284 from smallstep/max/goreleaser-permissions #22

Jobs

Run details

release.yml

Annotations

Artifacts