alulsh / alulsh.github.io Goto Github PK
View Code? Open in Web Editor NEWPersonal website for Alexandra L. Ulsh
Home Page: https://www.alexandraulsh.com/
License: MIT License
Personal website for Alexandra L. Ulsh
Home Page: https://www.alexandraulsh.com/
License: MIT License
Hello ๐
I Really enjoyed reading your blog. Recently at work we have been iterating over our Dockerfile
for some nodeJS apps and it was great as a reference to communicate trade-offs.
One of our devops/platform engineers showed me a very cool thing not covered in either this article, or the linked one on secrets; so I wanted to contact you, to tell you about it.
Apparently (automated CI builds have succeeded using this), you can both commit a .npmrc, and maintain security using nothing more than a file with wrote environment expansion, and using ARG
not ENV
to in a build stage make the secret value available.
registry=https://your-domain-6438763483.d.codeartifact.eu-west-1.amazonaws.com/npm/team/
@products:registry=https://your-domain-6438763483.d.codeartifact.eu-west-1.amazonaws.com/npm/team/
//your-domain-6438763483.d.codeartifact.eu-west-1.amazonaws.com/npm/team/:_authToken=${NPM_TOKEN}
FROM node:18-alpine as base
ARG NPM_TOKEN
RUN npm set progress=false
EXPOSE 3000
WORKDIR /usr/src/app
COPY ./path-to/npmrc.template ./npmrc
COPY ./path-to/code /usr/src/app
RUN npm ci --omit=optional --no-audit
# ---- as many other stages as you like / need ----
FROM base AS release
RUN npm prune --omit=optional --no-audit --omit=dev
CMD npm start
--duration-seconds
that you can pass to for example aws codeartifact get-authorization-token
, which then can be used to mitigate the token validity through lifetime, in even CI pipelines.npm token create
within official or supported environments, you could use --read-only
with --cidr
based IP pattern restriction. npm token docsAnyway, I hope this is useful if you did not already know about it.
A declarative, efficient, and flexible JavaScript library for building user interfaces.
๐ Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
An Open Source Machine Learning Framework for Everyone
The Web framework for perfectionists with deadlines.
A PHP framework for web artisans
Bring data to life with SVG, Canvas and HTML. ๐๐๐
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
Some thing interesting about web. New door for the world.
A server is a program made to process requests and deliver data to clients.
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
Some thing interesting about visualization, use data art
Some thing interesting about game, make everyone happy.
We are working to build community through open source technology. NB: members must have two-factor auth.
Open source projects and samples from Microsoft.
Google โค๏ธ Open Source for everyone.
Alibaba Open Source for everyone
Data-Driven Documents codes.
China tencent open source team.