Date(s) - 26/01/2023
19:00 - 20:30
Κατηγορία(ες) Δεν υπάρχουν κατηγορίες
This talk will focus on the existing vulnerabilities and downsides of using shared encrypted secrets to access key pieces of infrastructure programmatically using GitHub Actions and how you can greatly improve the security of your GitHub workflows. As GitHub Actions has matured as a product and more and more companies rely on it for their CI/CD workflows, an exposed secret in the repository can be the difference between a team being able to efficiently test/deploy code, and an infrastructure penetration nightmare. Allow your devops engineering team to sleep easier at night by replacing GitHub secret management with Teleport machineID, allowing your GitHub Actions workflow to manage infrastructure resources like Kubernetes clusters, databases and more, all without having to rely on shared secrets stored in your repository. The talk will include an overview of existing vulnerabilities, how Teleport MachineID rethinks automated infrastructure access, as well as a demo showing how you can control your Kubernetes clusters using GHA workflows without secrets while keeping a full audit trail and control of your workflow. Leave shared secrets behind in 2022 and enter the new year with Teleport MachineID, giving you, your engineers, and customers peace of mind.
Click here for more infoΌλες οι εκδηλώσεις