Actions
action #160334
closedopenQA Project (public) - coordination #105624: [saga][epic] Reconsider how openQA handles secrets
[qe-core] Add CI/CD check to avoid uses of nots3cr3t or other hardcoded password in pull requests
Status:
Resolved
Priority:
Normal
Assignee:
Category:
Infrastructure
Target version:
Start date:
2024-09-06
Due date:
% Done:
100%
Estimated time:
(Total: 0.00 h)
Difficulty:
Sprint:
QE-Core: February Sprint 25 (Feb 03 - Feb 28)
Description
Motivation¶
In https://sd.suse.com/servicedesk/customer/portal/1/SD-150437 we are asked to handle "compromised root passwords in QA segments"
This will not stop somebody from adding a different password though, so we need to think a bit before working on this, however we can start with using it on the data directory first.
Actions