Question - What are the best practices for managing CI/CD secrets?
Answer -
Pipeline secrets should be secure at both in-transit and at rest. You should follow some best practices to secure CI/CD secrets as below.
- There should not be any hard coded secrets in pipeline.
- Use password managers, secret key vaults etc.
- There should be proper RBAC - Role Based Access Control. You should know who need what.
- Follow the practices of lease privilege means you should grant the minimum level of access or secrets required to perform tasks.
- For more visit Manage CI/CD Secrets