From 44eadbb209d68218e76cd256c40741249b27d348 Mon Sep 17 00:00:00 2001 From: Kalabuk Dzmitry Date: Fri, 15 Sep 2023 19:17:39 +0300 Subject: [PATCH] Don't suggest exposing DOCKER_AUTH_CONFIG to student repos This token, if not masked, can be seen by students and allows sensitive data leaks. It is only used in runners setup, not in the CI jobs, hence it should never be set in the group configuration. --- docs/system_setup.md | 1 - 1 file changed, 1 deletion(-) diff --git a/docs/system_setup.md b/docs/system_setup.md index 6c0e4ce..9990a4f 100644 --- a/docs/system_setup.md +++ b/docs/system_setup.md @@ -210,6 +210,5 @@ So you need to select in private repo CI/CD Settings `.releaser-ci.yml` as ci fi * In gitlab.manytask.org -> [course_group] Set variables for checker and gitlab runner to operate - * DOCKER_AUTH_CONFIG (none), * TESTER_TOKEN (masked), * GITLAB_SERVICE_TOKEN (masked)