Y
Hacker News
new
|
ask
|
show
|
jobs
by
reilly3000
2376 days ago
That's definitely true, but given the sensitivity of having access to private source and secrets I think its fair to call out a warning.
1 comments
ericlewis
2376 days ago
couldn't a malicious docker image also be tooled to dump all of that stuff to an external destination?
link
reilly3000
2376 days ago
Absolutely. CI systems tend to get broad access to everything sacred. Giving that level of access to community code is risky in the least.
link