From 7911d988367185a99f246541b171633bc9904fad Mon Sep 17 00:00:00 2001 From: Seth Vargo Date: Tue, 3 Feb 2015 18:32:57 -0500 Subject: [PATCH] Warn about pushing sensitive data in Packer templates --- website/source/docs/command-line/push.html.markdown | 4 ++++ 1 file changed, 4 insertions(+) diff --git a/website/source/docs/command-line/push.html.markdown b/website/source/docs/command-line/push.html.markdown index 177892150..bf344aadc 100644 --- a/website/source/docs/command-line/push.html.markdown +++ b/website/source/docs/command-line/push.html.markdown @@ -16,6 +16,10 @@ External build services such as HashiCorp's Atlas make it easy to iterate on Packer templates, especially when the builder you are running may not be easily accessable (such as developing `qemu` builders on Mac or Windows). +!> The Packer build service will receive the raw copy of your Packer template +when you push. **If you have sensitive data in your Packer template, you should +move that data into Packer variables or environment variables!** + For the `push` command to work, the [push configuration](/docs/templates/push.html) must be completed within the template.