DOCKER_AUTH_CONFIG should be [MASKED]
Problem to solve
The jobout currently prints the DOCKER_AUTH_CONFIG in cleartext.
Intended users
All user, that can see the output of a pipeline job.
Further details
Secrets should be kept secret.
Proposal
Mask the DOCKER_AUTH_CONFIG like CI_JOB_TOKEN=[MASKED]
or CI_REGISTRY_PASSWORD=[MASKED]
.
Permissions and Security
Permission to see CI pipelines.
Documentation
...
Testing
...
What does success look like, and how can we measure that?
Joboutput should mask the DOCKER_AUTH_CONFIG environment variable.
DOCKER_AUTH_CONFIG=[MASKED]
What is the type of buyer?
...