chore(deploy): 将 DEPLOY_DOCKER_ENV 切换为 secrets

部署流程写入运行时 .env 时改用 secrets.DEPLOY_DOCKER_ENV，降低敏感配置在变量与日志中的暴露风险。 Made-with: Cursor
2026-04-28 02:56:21 +08:00
parent c87db87f81
commit 667832a585
1 changed files with 1 additions and 1 deletions
--- a/.gitea/workflows/deploy.yml
+++ b/.gitea/workflows/deploy.yml
@@ -53,7 +53,7 @@ jobs:
        mkdir -p deploy/docker
        cat > deploy/docker/.env <<EOT
-        ${{ vars.DEPLOY_DOCKER_ENV }}
+        ${{ secrets.DEPLOY_DOCKER_ENV }}
        IMAGE_REPO=${IMAGE_REPO}
        IMAGE_TAG=${IMAGE_TAG}
        EOT