20·
3 days agoI wonder where all the gains from increased worker’s efficiency went. Well, no way to know I guess 🤷
In totally unrelated news, I heard humanity will soon have its first trillionaire 🥳
/s
- 0 Posts
- 5 Comments
Joined 2 years ago
Cake day: January 14th, 2024
You are not logged in. If you use a Fediverse account that is able to follow users, you can follow this user.
2·3 days agoThat’s … actually really clever! I’ll steal that idea 😄
Read the article so you don’t have to:
Unlike the title suggests, the docker images they found won’t leak your credentials when you use them, but already contain the credentials of whoever created the image (p.e. through
.envfiles that were accidentally added to the image).While it contains the valuable reminder to avoid long lived credentials (like API - keys) or use secrets-stores, this “leak” is on the same level as accidentally pushing confidential information to github IMHO.
Fix: have both
.gitignoreand.dockerignorefiles and make sure they both contain.env. You use.envand don’t hardcode your secrets, right?
14·1 year agoIt’s a PWA
Benutzername prüft aus