Information
https://github.com/docker/docker/issues/13490
2.http://12factor.net/config
3.https://avicoder.me/2016/07/22/Twitter-Vine-Source-code-dump/
NOTE: Nessus has provided the target output to assist in reviewing the benchmark to ensure target compliance.
Solution
Do not store any kind of secrets within Dockerfiles.Impact-You would need to identify a way to handle secrets for your Docker images.Default Value-By default, there are no restrictions on storing config secrets in the Dockerfiles.