7e189e36 luggage

Cloud Security Blasphemy: Secrets in git

Ever wondered why so many breaches happen due to secrets being checked in to source control? The answer is partially that committing secrets to source control is convenient and easy. What if we could commit secrets to git in a safe and secure way without too much hassle?

Last week I presented on three topics at the Waterloo Technology Chautauqua: Google Cloud KMS, SOPS and kustomize. Using a simple application, I demonstrated how one can use these three technologies to easily provision Kubernetes secrets from encrypted secrets stored in git. No more accidents!

GitOps + Security == Advanced Security, Cloud Native.

Sad you missed out? Well don’t worry. The presentation was recorded. Check it out here.