No matter how you like to participate in developer communities, Pulumi wants to meet you there. If you want to meet other Pulumi users to share use-cases and best practices, contribute code or documentation, see us at an event, or just tell a story about something cool you did with Pulumi, you are part of our community.

Pulumi Community

I’m one step further: I updated the value to the base64 encoded version of `&lt;username&gt;:&lt;personal access token&gt;` . When testing locally with a `~/.docker/config.json`, the error is gone and I can retrieve images on my Mac. The credentials from the keychain are fully disabled.
But I still can’t retrieve the private images on Kubernetes. It still has the base64 error message.
According the Docker docs: `personal access tokens can now be used as a substitute for your password in Docker Hub`
<https://www.docker.com/blog/docker-hub-new-personal-access-tokens/>

Solved! Note to self: first base64 encode the secret in the form of `&lt;username&gt;:&lt;personal access token&gt;`, then use that value as the `value` in the example above.