How do you secure your Terraform deployment on AWS using Gitlab-CI and the Vault? In previous articles, we've looked at the problems of CI/CD deployments on the cloud, and then at how to solve these problems by using Vault to generate dynamic secrets and authenticate the Gitlab-CI pipeline. In this third and final article, we will discus...
Lire la suiteDid you know about the largest database account leaked ? More than 12 millions account credentials have been leaked. And beside that, in our traditional CI/CD platforms, we store credentials for cloud deployments (access key/secret key, service account, login/password) somewhere to be in the end available as an environment variable. B...
Lire la suiteIn previous articles we have seen how to use the Hashicorp Vault tool to centralise static and dynamic secrets and for Encryption as a Service. In this series of articles, we will go further and see how to secure your Terraform deployment on AWS using Gitlab-CI and the Vault tool. This first article will be dedicated to exposing the i...
Lire la suite