tools-deps

souenzzo 2025-06-12T17:08:06.897239Z

How do you handle git deps of private github orgs in deps.edn inside a container build?? Let's say, you have a project with a git dep from a private repo {:deps {my/top-secret {:git/url "..."}}} It requires auth to clone, you can use "Github deploy keys" (a read-only key) But then, during docker build... You need to do something like ADD deploy_id ~/.ssh/id_rsa && clojure -P && rm -rf ~/.ssh trying to prevent this key from being saved in snapshots Feels like I'm overengineering something

mpenet 2025-06-13T07:22:21.078089Z

You can do a multistage build, the fetching part can be in an earlier stage that’s discarded later when you produce the final image

mpenet 2025-06-13T07:24:21.387139Z

You’d just copy the artifact from the earlier stage to the final one

👍 1
Alex Miller (Clojure team) 2025-06-12T17:51:44.311659Z

There’s probably a better answer to this but both local deps and git file url deps would maybe let you separate the cloning part from the deployment part