Hey JS devs: What are you using for project secrets?
IE keeping secret API keys etc out of committed code
cc @kentcdodds =)
-
-
Replying to @DavidWells @kentcdodds
git ignored json files. We write/read to/from s3 for sharing. Every repo has npm scripts for this.
1 reply 0 retweets 0 likes -
Replying to @southpolesteve @kentcdodds
so you are downloading the secret S3 file during the CI build?
1 reply 0 retweets 0 likes -
-
Replying to @southpolesteve @kentcdodds
I like this approach. What does the npm scripts look like? "prebuild": "node ./get-creds.js" ?
1 reply 0 retweets 0 likes -
Replying to @DavidWells @kentcdodds
similar. mostly just using aws-cli directly to copy files from s3. Depends on project and what structure it expects.
1 reply 0 retweets 0 likes
it has become standard enough in our projects that I'll prob extract it to an internal CLI tool soon.
10:33 AM - 22 Aug 2016
0 replies
0 retweets
0 likes
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.