Hacker News new | ask | show | jobs
by hirako2000 704 days ago
Or just have a good `.dockerignore`

When I create a project now I automatically place a catch all ignore for both git and docker.

Binaries, .env files have a far lower chance to end up tracked in a repo or copied over to a container image.
1 comments
zihotki 704 days ago
Or just use CI/CD on a build server to create release artifacts and a proper security setup (no PAT's, or use short living one)
link