Update docs on installing private npm packages in Docker

(Dominic) #1

According to this article the process for using private npm packages in a Docker container described on the npm docs will leak the .npmrc secret in the image history.

It looks like the proper technique (multi-stage builds) didn’t exist when the original docs were written, but now that they’re available it might be a good time to update the docs.

(Kiera Manion-Fischer) #2

Hi Dominic, thanks so much for the suggestion! I’ve created an internal issue for this, and we’ll work on getting it incorporated.

(Dominic) #3

No problem. Happy to help.