|
|
|
|
|
|
by ownagefool
42 days ago
|
|
|
This isn't true. Our old jenkins hosts were largely forever instances with forever credentials that were just waiting to take down the org. Modern pipelines are orchestrates that run ephemeral execution environments with ephemeral credentials that can significantly decrease the impact and timescales of getting pwned. They're not perfect, but you can get pretty good posture by applying expertise to the subject. The problem, like always, is this expertise is neither valued nor rewarded. |
|
|