|
|
|
|
|
|
by staticassertion
23 days ago
|
|
|
The solution is to do exactly what you suggest - separate access. In CI this is a matter of having your "build/test" jobs happen separately from your "deploy/publish" jobs. The trickier part is dev environments, but ideally you take a similar approach. The place that devs do `npm install` should be isolated from, say, your browser / ssh keys etc. Package manager support would be an amazing win here since you'd have an easier time managing the isolation but you can do this today. |
|
|