Home / Companies / Pulumi / Blog / Post Details
Content Deep Dive

GitHub And Pulumi Join Forces To Ensure Your Pulumi Tokens Are Safe

Blog post from Pulumi

Post Details
Company
Date Published
Author
Praneet Loke
Word Count
443
Company Posts That Month
4
Language
English
Hacker News Points
-
Post removed?
No
Summary

Pulumi has partnered with GitHub to enhance the security of Pulumi Access Tokens by integrating with GitHub's Token Scanning service, which examines commits to public repositories for these sensitive tokens. The tokens, crucial for authenticating with Pulumi's cloud infrastructure management service, should never be shared publicly or committed to source control, as they allow non-interactive login to the CLI and access to stack configurations, including other secrets. GitHub's service identifies potential token matches and verifies them with Pulumi, which then notifies users via email but does not automatically revoke the token, emphasizing the importance of keeping email addresses updated. To mitigate risks, it is recommended to avoid committing tokens and instead utilize CI/CD environment variables to manage these secrets securely, with Pulumi providing various integration guides for different CI/CD systems and encouraging community contributions for additional platforms.

Trends Found in this Post
Trend Post Mentions Total Month Mentions Posts Companies MoM
Secrets Management 2 217 21 16 +63%
Use This Data

Use this post, company, and trend context to find content marketing opportunities, perform competitive analysis, or address product feature gaps via the Plushcap MCP server or the Plushcap API.