Comments (3)
moolen
commented on May 31, 2024
1
I think we shouldn't be affected when looking at the pipeline:
- name: Publish Unit Test Coverage
uses: codecov/codecov-action@v1
with:
flags: unittests
file: ./cover.outFrom the blog post:
- (1) Any credentials, tokens, or keys that our customers were passing through their CI runner that would be accessible when the Bash Uploader script was executed.
- (1b) Any services, datastores, and application code that could be accessed with these credentials, tokens, or keys.
- (2) The git remote information of repositories using the Bash Uploaders to upload coverage to Codecov in CI.
We don't pass any secret/environment variables into it, so 1 and 1b does not apply, 2 is public information anyway.
Rotating credentials regularly isn't a bad idea anyway ;)
from external-secrets.
knelasevero
commented on May 31, 2024
@riccardomc got an email about our original CS solution, and I am rotating our secrets there. Not sure why we were not affected here.
from external-secrets.
knelasevero
commented on May 31, 2024
Rotating regularly is for sure a great idea! Gonna close this issue then :)
from external-secrets.
Related Issues (20)
- unknown field "spec.target.template.stringData" HOT 2
- Allow `dataFrom` secret gathering to parse YAML secret (along JSON) HOT 2
- docs: toggle icon to switch to dark mode
- Broken helm unit test for CRDs
- support hashicorp Vault Secrets HOT 4
- Values are not being replaced in the template
- Custom provider integration HOT 2
- Invalid certs when using cert-manager with CA issuer HOT 2
- Release x.y HOT 1
- Takes many minutes to start certificate watcher
- Cannot make ClusterSecretStore to remote vault server work HOT 1
- "Secret does not exist" error when it clearly exists HOT 5
- Add PEM to pkcs12 template function HOT 1
- Optional delay between the availability of Generator's result and the update of Kubernetes secret HOT 2
- (Vault Provider) - Getting multiple secrets does not work if KV store name contains `data` keyword
- Allow for custom, External Generators
- Consider adding a CHANGELOG
- Allow annotations to be passed to ServiceMonitors
- 1Password (onepassword) PushSecret creates multiple entries to 1Password
- Manage multiple properties of one 1Password entry HOT 5
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from external-secrets.