Hey JS devs: What are you using for project secrets?
IE keeping secret API keys etc out of committed code
cc @kentcdodds =)
git ignored json files. We write/read to/from s3 for sharing. Every repo has npm scripts for this.
-
-
so you are downloading the secret S3 file during the CI build?
-
yep. CI has its own IAM role on AWS.
-
I like this approach. What does the npm scripts look like? "prebuild": "node ./get-creds.js" ?
-
similar. mostly just using aws-cli directly to copy files from s3. Depends on project and what structure it expects.
-
it has become standard enough in our projects that I'll prob extract it to an internal CLI tool soon.
End of conversation
New conversation -
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.