feat: Allow mounting of secrets for build steps

We should have a way to define secrets to mount during the execution of a module. This would allow users to authenticate to services during build-time. This has a requirement for using the secret mounting mechanisms provided by `buildah`, `podman`, and `docker`. This new system will also require some schema changes to be able to define the secrets to mount in the recipe. 

[Docker docs](https://docs.docker.com/build/building/secrets/#secret-mounts)

### Proposed schema
```yaml
type: script
secrets:
  # Loads an environment variable as a secret
  - type: env
    name: SOME_ENV_VAR

  # Loads the secret to a file in the build
  - type: file
    source: /some/file/somewhere
    destination: /some/location/in/build

  # Executes a command on the host system to retrieve the secret
  - type: exec
    command: some_command
    args:
      - arg1
      - arg2
    output:
      type: file
      destination: /some/other/location
      # Could also do env
      # type: env
      # name: SOME_OTHER_ENV

snippets:
  - echo "$SOME_ENV_VAR"
  - cat /some/location/in/build
  - cat /some/other/location
```

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

feat: Allow mounting of secrets for build steps #434

Proposed schema

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

feat: Allow mounting of secrets for build steps #434

Description

Proposed schema

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions