Intro Sometimes secrets in the real world aren’t as secret as we think! Although it can be scary, itβs really easy to show the content of your secret in GitHub actions log. You might not mind if your repo is private but if it is public and your Open Source project still needs things to …
Read more “Your GitHub Secrets Ain’t That Secret: (GitHub actions hack)”
Intro In my previous blogpost, we explored the challenges with relying on terraform registry modules for code sanity checks. Additionally, we reviewed OCI iam-compartment module and I shared my revised version in my Github. Today, we’ll demonstrate how to deploy multi-level OCI compartments using my local module (iam-compartment), which you can easily clone from my GitHub …
Read more “Deploy multilevel OCI sub-compartments with terraform (using local module)”
Hackers Paradise! — β 10 million credentials from GitHub were accessible in 2022 alone.β — This is the shocking truth exposed in a recent report published by secrets-management firm GitGuardian. Thatβs 5.5 out of every 1,000 commits to GitHub spilling secrets, putting applications & businesses at serious risk.Scattered & hard-coded secrets across environments are one …
Read more “Whatβs OIDC and why should you use it asap in your GitHub pipeline (keyless)”
Intro This year I set a goal to explore and learn most popular CI solutions like GitLab, including all cloud native ones. My first pick had to be GitHub Actions, which I heard a lot of but never used. So I decided to plunge into it to see how rich the solution was. Since I …
Read more “GitHub Actions Cheat Sheet: What I learned from GitHub CI in 2 weeks”
Intro As with any software, terraform also has hidden gems waiting to be discovered, even after you’ve obtained your associate certification. Some features aren’t always known until you need them, which is why we still a a lot to learn from the product. Today is one of those days!Β In this post, I will show …
Read more “How to Deploy Multi-Region Resources with Terraform: example(OCI Public IPs)”