|
|
|
|
|
|
by WhyNotHugo
159 days ago
|
|
|
If your .env file is being sourced by something like direnv, you can have it read secrets from the secret storage service and export them as env vars. If you bind-mount the directory, the sandbox can see the commands, but executing them won’t work since it can’t access the secret service. |
|
|