|
|
|
|
|
|
by sausagefeet
1073 days ago
|
|
|
> It sure looks like AWS admin credentials are shared with Github, and also available to anything else in the diggerhq/digger action I am a co-founder of Terrateam[0] which is a Terraform CI/CD as well. At the end of the day, you need to execute something to do these operations and having this component open source is important for auditing purposes. For Terrateam, we lean heavily into GitHub Actions so GitHub is at least managing any secrets and runs. One challenge is users could pin the Action that we publish to a specific version, but we also update it regularly and communicating to customers to update it is a challenge. [0] https://terrateam.io |
|
|