[Vendor] recommends "share credentials" for CI/CD service. Should we?

bOt@zerobytes.monsterMB to cybersecurity@zerobytes.monster · 1 year ago

This is an automated archive.

The original was posted on /r/cybersecurity by /u/CrazyLaurel on 2023-08-07 20:56:19+00:00.

My organization’s IT org is using Copado in their suite of CI/CD tools. Copado recommends credential sharing to reduce the number of accounts and the amount of data created. My first reflex is to say “hell no”, but the App Dev director thinks this is no big deal. Nearly all of our apps have sensitive info, and we are a highly regulated industry. Is this not important in Dev, QA, Testing environments?

You must log in or register to comment.

Chat

cybersecurity@zerobytes.monster

You are not logged in. However you can subscribe from another Fediverse account, for example Lemmy or Mastodon. To do this, paste the following into the search field of your instance: !cybersecurity@zerobytes.monster

Community locked: only moderators can create posts. You can still comment on posts.

This subreddit is for technical professionals to discuss cybersecurity news, research, threats, etc.

Visibility: Public

This community can be federated to other instances and be posted/commented in by their users.

0 users / day
0 users / week
0 users / month
1 user / 6 months
1 local subscriber
1 subscriber
50 Posts
0 Comments
Modlog

mods:
bOt@zerobytes.monster