|
|
|
|
|
|
by balls187
3942 days ago
|
|
|
> Yes, it is. Period. Full Stop. Don't ever check access keys into any repo, public, private or even self-hosted. Generalizing here (and for the record I agree with your point), is that to a developer, source code is as valuable as anything else, and if a private repo is secure enough for source code, it should be secure enough for access credentials. I speculate that this is a by product to moving towards a developer-centric engineering culture. |
|
|