Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Should we use github secrets for sensitive information? #225

Open
HeitorMatt opened this issue Sep 3, 2020 · 2 comments
Open

Should we use github secrets for sensitive information? #225

HeitorMatt opened this issue Sep 3, 2020 · 2 comments
Assignees
@matheusmota @marcosfmmota @HeitorMatt
Labels
enhancement New feature or request help wanted Extra attention is needed high priority Needs to be resolved ASAP

Comments

@HeitorMatt
Copy link
Member

" Secrets are environment variables that are encrypted and only exposed to selected actions. Anyone with collaborator access to this repository can use these secrets in a workflow. "
Is this a good idea?
@HeitorMatt HeitorMatt added the help wanted Extra attention is needed label Sep 3, 2020
@matheusmota matheusmota added the enhancement New feature or request label Sep 6, 2020
@matheusmota
Copy link
Member

+1!
We definitely should use this feature, specially considering keys and other sensitive information.
Does anyone have experience with this?

@marcosfmmota
Copy link
Member

Completely forgot about this feature, GitHub secrets are really important for project like ours. I don't have experience with it but I saw an use case with GitHub actions. I'm going to check it out how to use it because maybe it is only accessible using Actions and thus imply change our current CI/CD structure.

@HeitorMatt HeitorMatt added the high priority Needs to be resolved ASAP label Sep 18, 2020
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@matheusmota matheusmota

@marcosfmmota marcosfmmota

@HeitorMatt HeitorMatt

Labels
enhancement New feature or request help wanted Extra attention is needed high priority Needs to be resolved ASAP
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
5 participants
@santanche @lealfp @matheusmota @marcosfmmota @HeitorMatt