We have published a private rubygem and I’d like for that gem to be added to a Gemfile in another private repository that is used by around 60+ devs. I don’t want those 60+ devs to have to generate an access token to download this rubygem.
Is there a way for use a shared token and commit that that our private repository?
As an example, sidekiq-pro does this by simply adding a .bundle/config to the repository with the following contents:
BUNDLE_GEMS CONTRIBSYS COM: “shared:token”
Totally understand that this is not the most secure since it requires manaully rotating the token if a developer leaves but it is that path that requires the least amount of friction.