How do you handle git deps of private github orgs in deps.edn inside a container build??
Let's say, you have a project with a git dep from a private repo {:deps {my/top-secret {:git/url "
It requires auth to clone, you can use "Github deploy keys" (a read-only key)
But then, during docker build... You need to do something like ADD deploy_id ~/.ssh/id_rsa && clojure -P && rm -rf ~/.ssh trying to prevent this key from being saved in snapshots
Feels like I'm overengineering something
You can do a multistage build, the fetching part can be in an earlier stage that’s discarded later when you produce the final image
You’d just copy the artifact from the earlier stage to the final one
There’s probably a better answer to this but both local deps and git file url deps would maybe let you separate the cloning part from the deployment part