Yes, this, but it’s a little more nuanced because of secrets. Giving every emplo... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		CGamesPlay 5 days ago \| parent \| context \| favorite \| on: GitHub: Git operation failures Yes, this, but it’s a little more nuanced because of secrets. Giving every employee access to the production deploy key isn’t exactly great OpSec.

1718627440 5 days ago [–]

Every Linux desktop system has a keychain implementation. You can of course always use your own system, if you don't like that. You can use different keys and your developers don't need access to the real key, until all the CI servers are down.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact