refactor: improve security by using Docker secrets for Sentry tokens

Enhanced security by integrating Docker secrets for Sentry authentication and project tokens, reducing exposure of sensitive information in environment variables.
2026-06-03 07:26:50 +00:00 · 2024-10-15 21:03:24 +08:00
parent b8f0d6fb78
commit eb0205a7a9
2 changed files with 8 additions and 4 deletions
--- a/6
+++ b/6
@@ -15,7 +15,11 @@ RUN --mount=type=cache,id=pnpm,target=/pnpm/store pnpm install --frozen-lockfile

 FROM build-deps AS build
 COPY . .
-RUN export $(cat .env.example) && export DOCKER=true && pnpm run build
+RUN export $(cat .env.example) && \
+    export $(cat /run/secrets/SENTRY_AUTH_TOKEN) && \
+    export $(cat /run/secrets/SENTRY_PROJECT) && \
+    export DOCKER=true && \
+    pnpm run build

 FROM base AS runtime
 # COPY --from=prod-deps /app/node_modules ./node_modules