Which Docker output formats are supported?
Three formats: (1) docker-compose environment block under services.app.environment, (2) Dockerfile ENV directives, and (3) Kubernetes Secret manifest with base64-encoded values.
Are my values visible in the Docker image when I use Dockerfile ENV?
Yes — ENV values baked into a Dockerfile are stored in the image layers and visible to anyone who pulls or inspects the image. For secrets, prefer --env-file at runtime, Docker secrets, or Kubernetes Secrets instead of Dockerfile ENV.
Does the tool handle values with special characters?
Yes. Values containing spaces, quotes, or special characters are automatically quoted in docker-compose output. For Kubernetes Secrets, all values are base64-encoded which eliminates special character issues.
Is Kubernetes Secret base64 encryption?
No. base64 is encoding, not encryption. Kubernetes Secrets are stored in etcd and are only as secure as your cluster's RBAC configuration. For production, enable etcd encryption at rest and restrict Secret access with RBAC policies.