Managing Secrets Safely with Version Control Systems


Level 7 - 702
A hands-on micro-workshop on the basics of managing secret data (usernames/passwords, SSH keys, API keys, name of databases or internal servers) securely with Git when collaborating on shared public repositories.

The session contains sections as follows:

Participants jot down (on post-in notes) their favorite version control systems (VCSs), discussing their reasons for preference

Two people share their stories on instances when they inadvertently shared secret data on a shared public repository (personal, team or organization), jeopardizing their work in the process

Participants jot down and discuss ways of mitigating exposure of secret data when contributing to public projects

Hack with git-crypt as an example tool for safely managing secret data when collaborating on public project repositories.

This is a Shed session.

Links to session information: