What is the problem you're trying to solve
secrets can be defined from a file, but in some circumstances, short-lived secrets are actually exposed by platform as environment variables (typically, GITHUB_TOKEN).
We should offer an opportunity for user to define a secret to be set from environment variable.
Describe the solution you'd like
secrets:
github_token:
environment: GITHUB_TOKENAdditional context
Ability to pass build time secrets, like docker build --secret id=github_token,env=GITHUB_TOKEN does
What is the problem you're trying to solve
secretscan be defined from a file, but in some circumstances, short-lived secrets are actually exposed by platform as environment variables (typically,GITHUB_TOKEN).We should offer an opportunity for user to define a secret to be set from environment variable.
Describe the solution you'd like
Additional context
Ability to pass build time secrets, like
docker build --secret id=github_token,env=GITHUB_TOKENdoes