DevOps Articles

Curated articles, resources, tips and trends from the DevOps World.

Let’s Hack a Pipeline: Argument Injection

4 years ago devblogs.microsoft.com
Let’s Hack a Pipeline: Argument Injection

Summary: This is a summary of an article originally published by the source. Read the full original article here →

In this series of posts, we’ll walk through some common security pitfalls when setting up Azure Pipelines. We don’t really want to get hacked, so we’ll also show off the mitigation.

The purpose of this series is to teach the problems, which we hope helps you avoid them in practice.

A better approach to securing a pipeline would be focusing on what resources the pipeline can access, who can run the pipeline and in what queue/pool. We can set access contorol on all sorts of things in the devops space including pools and secrets.

Read More
Oh Dear
Oh Dear
The all-in-one monitoring tool for your entire website
Fathom
Fathom
Fathom Analytics: A Better Google Analytics Alternative
Namecheap
Namecheap
DevOpsChat Logo Your DevOps Community
Product
Useful Links

Made with pure grit © 2024 Jetpack Labs Inc. All rights reserved. www.jetpacklabs.com