simonw, I have been seeing "credential injection" and "credential tokenizing" (a la tokenizer: https://github.com/superfly/tokenizer). I'm also seeing credential "surrogates" mentioned.
replyI am currently working on a mitm proxy for use with devcontainers to try to implement this pattern, but I'm certainly not the only one!
Thanks, I think I'll go with "credential injection" since the word "tokenization" has other meanings that I find confusing here.
replyNot sure. I took this idea from the Deno sandboxing docs. They also do the exact same thing, different sandboxing mechanism though (I think Deno has it's own way of sandboxing subprocesses).
reply