What is the best practice for secret manager?
If I need to get secrets from AWS parameter store or Azure Key Vault, I have some approaches:
1. Inject when running the docker build, but less safe (https://devops.stackexchange.com/questions/3902/passing-secrets-to-a-docker-container/3904#comment8152_3904)
2. Always fetch the secret, but I'm not sure how to handle this properly.
I may prefer the former.
1. Inject when running the docker build, but less safe (https://devops.stackexchange.com/questions/3902/passing-secrets-to-a-docker-container/3904#comment8152_3904)
2. Always fetch the secret, but I'm not sure how to handle this properly.
I may prefer the former.
DevOps Stack Exchange
I have a base docker image which is used to run image analysis software. For each container created from the image, there are a set of configuration settings, some of which are secrets (encryption ...
