|
|
|
|
|
|
by chrisstott
3806 days ago
|
|
|
We take this very seriously. At a high level, our front end servers can write credentials, but never read them. Only the build machines (which are isolated from the public internet) can decrypt and use them... and only for a short duration during a build. A good portion of our infrastructure is built on AWS - where a majority of our team had worked to build services with similar secure environments. |
|
|