Upvoted because it's the only answer that mentions that --env-file is the most secure option; you can have a script to run a Docker image checked into VC, but an env file ignored by VC with your credentials in it. As other commentators mentioned you can mount the volume, so https://kameronsdgms.digiblogbox.com/57268117/máquina-de-podar-árvore-fundamentos-explicado
