- How do you ensure your Continous Deployment (e.g. Jenkins) server has "least privilege" permissions to deploy Serverless/cloudformation deployments to AWS? https://docs.github.com/en/actions/deployment/security-hardening-your-deployments/about-security-hardening-with-openid-connect 3 comments aws
Linking pages
- Introducing 'Trusted Publishers' - The Python Package Index https://blog.pypi.org/posts/2023-04-20-introducing-trusted-publishers/ 93 comments
- Tokens, Please :: Todd Turner â For Sure https://www.toddtee.sh/posts/github-actions-oidc/ 11 comments
- The History of Nix at Bellroy https://exploring-better-ways.bellroy.com/the-history-of-nix-at-bellroy.html 10 comments
- Trusted publishing: a new benchmark for packaging security | Trail of Bits Blog https://blog.trailofbits.com/2023/05/23/trusted-publishing-a-new-benchmark-for-packaging-security/ 8 comments
- From GitHub to Account Takeover: Misconfigured Actions Place GCP & AWS Accounts at Risk - Rezonate https://www.rezonate.io/blog/github-misconfigurations-put-gcp-aws-in-account-takeover-risk/ 7 comments
- Speeding up PostHog builds with Depot - PostHog https://posthog.com/blog/speeding-up-posthog-builds-with-depot 0 comments
- GitHub - magnetikonline/action-aws-iam-assume-role: GitHub Action to assume an AWS IAM role via OpenID Connect (OIDC) or a plain old IAM user. https://github.com/magnetikonline/action-aws-iam-assume-role 0 comments
- Using OpenID Connect to store CI/CD credentials - Aviator Blog https://www.aviator.co/blog/using-openid-connect-to-store-ci-cd-credentials/ 0 comments
Would you like to stay up to date with DevOps? Checkout DevOps
Weekly.
Related searches:
Search whole site: site:docs.github.com
Search title: About security hardening with OpenID Connect - GitHub Docs
See how to search.