|
|
|
|
|
|
by stouset
3699 days ago
|
|
|
Yes, they can still decrypt old versions. Storing secret keys, API keys, etc. in your git repo is a terrible idea and an antipattern any way you slice it. Keep your secrets out of version control. The quoted advice is extremely bad. If someone who has access to a secret of any importance leaves your team, the only acceptable response is to rotate the secret. |
|
|