-
Notifications
You must be signed in to change notification settings - Fork 266
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Disable credential sharing #9466
Comments
Thanks for opening. I wonder if something like |
I use Remote/SSH with devcontainers (using remote docker host). It would be nice to configure it in the An alternative could be the global I don't think I think the simplest solution is a feature to disable all credential sharing globally (ssh+devcontainers), and not allow local |
Perhaps most people use devcontainers mainly to have a reproducible and shareable development environment, with little concern for security. For example, on GitHub Codespaces, I assume every codespaces receives a fully privileged GitHub token? My use case is distinctly different, in that I would want the codespace to have a very fine-grained token, for example only the ability to modify one specific branch, and open a pull-request. Therefore, I need a way to entirely disable credential sharing (i.e. tokens and agent forwarding). I'll be happy to be manually responsible for injecting the relevant token and gitconfig. My request is whether this use case can be supported with minimal effort, e.g. global config to disable it. |
I would like to disable credential sharing. I searched the docs but didn't find any setting. Is this possible?
AFAIK, on MacOS, credential sharing is automatic: https://code.visualstudio.com/remote/advancedcontainers/sharing-git-credentials
This is problematic, because I wouldn't like the devcontainer to have any credentials.
The text was updated successfully, but these errors were encountered: