Skip to content

build: clarify GitHub Actions build secret inputs#25195

Merged
crazy-max merged 1 commit into
docker:mainfrom
crazy-max:build-gha-secrets-inputs
May 28, 2026
Merged

build: clarify GitHub Actions build secret inputs#25195
crazy-max merged 1 commit into
docker:mainfrom
crazy-max:build-gha-secrets-inputs

Conversation

@crazy-max
Copy link
Copy Markdown
Member

@crazy-max crazy-max commented May 28, 2026

Description

This updates the GitHub Actions build secrets documentation to explain how docker/build-push-action secret inputs map to Buildx secret source semantics.

The page now separates action input behavior from Dockerfile secret mount behavior, adds a table for secrets, secret-envs, and secret-files, and includes an example for using secret-envs with a Dockerfile env mount.

Users were conflating where a secret value comes from with how a Dockerfile consumes that secret during a RUN instruction, especially around secret-envs.

Related issues or tickets

Reviews

  • Technical review
  • Editorial review
  • Product review

@crazy-max
build: clarify GitHub Actions build secret inputs
97220cd 
Signed-off-by: CrazyMax <1951866+crazy-max@users.noreply.github.com>
@crazy-max crazy-max requested a review from dvdksn as a code owner May 28, 2026 09:04
@netlify
Copy link
Copy Markdown

netlify Bot commented May 28, 2026
edited
Loading

Deploy Preview for docsdocker ready!

Name Link
🔨 Latest commit 97220cd
🔍 Latest deploy log https://app.netlify.com/projects/docsdocker/deploys/6a180521bf66bf000816303d
😎 Deploy Preview https://deploy-preview-25195--docsdocker.netlify.app
📱 Preview on mobile
Toggle QR Code...

QR Code

Use your smartphone camera to open QR code link.

To edit notification comments on pull requests, go to your Netlify project configuration.

@github-actions github-actions Bot added the area/build Relates to Dockerfiles or docker build command label May 28, 2026
docker-agent
docker-agent reviewed May 28, 2026
View reviewed changes
Copy link
Copy Markdown

@docker-agent docker-agent left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Assessment: 🟢 APPROVE

The documentation changes are clear, technically accurate, and well-structured. The new content separates action input behavior from Dockerfile secret mount behavior, adds a useful reference table, and provides a practical example for secret-envs. The prose avoids hedge words, marketing language, and meta-commentary. Scope is proportionate to the existing document.

@crazy-max crazy-max mentioned this pull request May 28, 2026
Merged
dvdksn
dvdksn approved these changes May 28, 2026
View reviewed changes
Copy link
Copy Markdown
Contributor

@dvdksn dvdksn left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM

@crazy-max crazy-max merged commit d9944c0 into docker:main May 28, 2026
17 checks passed
@crazy-max crazy-max deleted the build-gha-secrets-inputs branch May 28, 2026 09:29
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@dvdksn dvdksn dvdksn approved these changes

+1 more reviewer

@docker-agent docker-agent docker-agent left review comments

Reviewers whose approvals may not affect merge requirements

Assignees

No one assigned

Labels

area/build Relates to Dockerfiles or docker build command

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

doc bug: secrets, secret-envs and secret-files documentation is horrible

3 participants

@crazy-max @dvdksn @docker-agent