Git based private repo dependencies

[criminosis]

For git based private dependencies, e.g. for Cargo, is there an intended way to pass authorization through to the compilation child process on workers?

Looking here and here both pass through env_clear(). Which prevents being able to mount the usual SSH_SOCK_AUTH env var.

I noticed there's a WHITELIST_ENVS but it isn't passed through here, but it does seem to get passed through the bun executor. Though I see that was just recently added.

Claude mentioned this use case in its comment on that PR fwiw.

IIUC if you have any private repo library code this makes using Rust on Windmill DOA?