skip to content
View the schedule

December 9, 2020 10:30:00 GMT-0800

Developer Channel

Keeping secrets in your infrastructure pipeline

You’ve set up your infrastructure as code in GitHub Actions to securely test and deploy to production. One year later, you discover the account keys you used for automation have been compromised! In a panic, you scramble around multiple repositories looking for where you used the account keys and throw together a script to rotate them. You start to wonder, “is there a better way I could have managed my secret?” In this talk, you’ll learn how to manage secrets in your infrastructure pipeline using HashiCorp Vault and Terraform with GitHub Actions. By using Vault’s dynamic secrets engines, you can rotate, audit, and manage the lifecycle of your infrastructure account keys and API tokens. In addition to managing service account keys for Terraform automation, we’ll cover how Vault can generate secrets such as database passwords for creating infrastructure resources.

Sessions you might like

December 9, 2020 09:30:00 GMT-0800

Visual tests on every pull request

image of Angie Jones
Angie Jones

Principal Developer Advocate, Applitools

Developer

Developer

December 9, 2020 10:00:00 GMT-0800

Getting traction with GitHub Actions

image of Brian Douglas
Brian Douglas

Staff Developer Advocate, GitHub

Developer

Developer

December 9, 2020 11:45:00 GMT-0800

Hands On: Configuring a multi-cloud Kubernetes CI/CD workflow with GitHub Actions

image of Atul Malaviya
Atul Malaviya

Director - Product Management, GitHub

Developer

Developer

We use optional third-party cookies to understand how you use GitHubUniverse.com so we can build a better experience. Learn more

Accept Decline