Managing Environment Variables and Secrets in CI/CD Pipelines
How to manage environment variables and secrets in CI/CD pipelines safely: scoping, masking, OIDC, rotation, and the mistakes that leak credentials.
9 articles tagged with "Security"
How to manage environment variables and secrets in CI/CD pipelines safely: scoping, masking, OIDC, rotation, and the mistakes that leak credentials.
A practical guide to secrets management: stop committing tokens, pick the right vault, rotate cleanly, and keep CI from leaking credentials in logs.
A practical checklist for reviewing AI-generated code: what to check first, common failure modes, and how to combine AI with human review safely.
Learn secure coding practices every developer should know, from input validation and dependency auditing to secrets management and threat modelling.
A practical checklist for evaluating open source libraries before you adopt them, covering maintenance, security, licensing, and long-term viability.
A practical guide to API rate limiting. Covers algorithms, implementation patterns, response headers, and best practices for resilient APIs.
A practical guide to authentication patterns including sessions, JWTs, OAuth 2.0, and passkeys, with trade-offs and implementation advice.
A practical guide to managing dependencies so your projects stay secure, up to date, and free from unexpected breakage.
A practical guide to managing environment variables across development, CI/CD, and production without leaking secrets.