Tagged articles

secret management

17 articles · Page 1 of 1
MaGe Linux Operations
MaGe Linux Operations
Jun 1, 2026 · Information Security

Docker Production Hardening: From Image Scanning to Runtime Protection

This guide walks through a comprehensive Docker security hardening process for production, covering image vulnerability scanning, minimal base images, signed images, secure Dockerfile practices, daemon hardening, runtime privilege reduction, network isolation, secret management, monitoring, and a checklist to ensure continuous protection.

Dockercontainer securityimage scanning
0 likes · 25 min read
Docker Production Hardening: From Image Scanning to Runtime Protection
LuTiao Programming
LuTiao Programming
Mar 24, 2026 · Information Security

After 5 Years of Coding, I Realized True Secret Protection Comes From Environment Variables, Not Encryption

Hard‑coding secrets in source code or config files creates maintenance headaches and security risks, whereas using environment variables—following the 12‑Factor App principle—decouples configuration, improves security, and enables dynamic, painless updates without rebuilding the application.

ConfigurationSpring Bootenvironment variables
0 likes · 8 min read
After 5 Years of Coding, I Realized True Secret Protection Comes From Environment Variables, Not Encryption
DevOps in Software Development
DevOps in Software Development
Jan 14, 2026 · Information Security

Can a Unified Software Factory Meet Strict Secret‑Management Requirements?

The article analyzes how military‑grade software factories can reconcile unified development platforms with strict secret‑management requirements by focusing on process‑based governance, data classification, personnel behavior, and built‑in compliance mechanisms that make secret handling an intrinsic, auditable part of the development workflow.

Software factorydevopsgraded protection
0 likes · 8 min read
Can a Unified Software Factory Meet Strict Secret‑Management Requirements?
DevOps Coach
DevOps Coach
Oct 9, 2025 · Information Security

How to Harden GitHub Actions: Proven Security Practices for Safer CI/CD

This guide explains why GitHub Actions need protection, reviews core concepts, and provides step‑by‑step hardening measures—including read‑only token defaults, trusted action sources, branch‑protection rules, secret management, explicit permissions, SHA pinning, and runner security—to keep CI/CD pipelines safe from real‑world attacks.

CI/CD securityGitHub ActionsWorkflow hardening
0 likes · 10 min read
How to Harden GitHub Actions: Proven Security Practices for Safer CI/CD
Architecture and Beyond
Architecture and Beyond
Jul 5, 2025 · Information Security

Why Leaked OpenAI API Keys Are a Massive Risk and How to Protect Yours

Leaked API keys on GitHub expose millions of dollars and sensitive data, as illustrated by real-world breaches, and the article explains why developers embed secrets, the dangers involved, and practical steps—environment variables, secret managers, git hooks, and regular scanning—to prevent costly security incidents.

API SecurityGitHub scanningdevops best practices
0 likes · 8 min read
Why Leaked OpenAI API Keys Are a Massive Risk and How to Protect Yours
Raymond Ops
Raymond Ops
Apr 23, 2025 · Cloud Native

Secure Kubernetes Secrets with kubeseal: Installation & Usage Guide

This article explains how to install kubeseal and its controller, create and encrypt Kubernetes Secret manifests, apply sealed secrets, and provides useful tips on API routes, custom certificates, and RBAC to securely manage secrets in a cloud‑native environment.

KubeSealKubernetesSealed Secrets
0 likes · 5 min read
Secure Kubernetes Secrets with kubeseal: Installation & Usage Guide
DevOps Cloud Academy
DevOps Cloud Academy
Mar 24, 2025 · Information Security

Protecting Sensitive Configuration Files: .gitignore, Environment Variables, Secret Management, and AES Encryption with Python

This article explains how to safeguard sensitive configuration data such as database credentials and API keys by using .gitignore, environment variables, secret management tools, and AES encryption with a Python script, and describes how to integrate these practices into CI/CD pipelines.

AES encryptionPythonconfiguration management
0 likes · 7 min read
Protecting Sensitive Configuration Files: .gitignore, Environment Variables, Secret Management, and AES Encryption with Python
MaGe Linux Operations
MaGe Linux Operations
Jul 14, 2024 · Cloud Native

Secure Kubernetes Secrets with Sealed Secrets: A Step‑by‑Step Guide

This tutorial explains how to install kubeseal and its controller, encrypt Kubernetes secrets into SealedSecret resources, apply them to a cluster, and let the controller automatically decrypt them back into regular secrets, ensuring safer secret management in cloud‑native environments.

KubeSealKubernetesSealed Secrets
0 likes · 5 min read
Secure Kubernetes Secrets with Sealed Secrets: A Step‑by‑Step Guide
Alibaba Cloud Native
Alibaba Cloud Native
Apr 5, 2024 · Cloud Native

How ACK One Enables Multi‑Cluster GitOps for Hybrid Cloud Deployments

This article explains the core concepts of GitOps, outlines the advantages of using ACK One GitOps for multi‑cluster, hybrid‑cloud continuous delivery, and provides step‑by‑step guidance, code examples, and security configurations for Argo CD, ApplicationSets, RBAC, and secret management.

ACK OneArgoCDGitOps
0 likes · 12 min read
How ACK One Enables Multi‑Cluster GitOps for Hybrid Cloud Deployments
Ops Development Stories
Ops Development Stories
Jan 27, 2021 · Information Security

Secure Secrets: Install & Integrate HashiCorp Vault with Kubernetes

This guide walks through installing HashiCorp Vault on Linux and Kubernetes, configuring it for secret management, enabling Kubernetes authentication, creating policies and roles, and accessing secrets via initContainers or the Vault SDK, providing a complete end‑to‑end secure integration.

HashiCorpKubernetesVault
0 likes · 13 min read
Secure Secrets: Install & Integrate HashiCorp Vault with Kubernetes
DevOps
DevOps
Sep 12, 2018 · Cloud Computing

Using Azure Key Vault to Secure Secrets in TFS/VSTS Build and Release Pipelines

This guide explains how to store sensitive information such as passwords, tokens, and connection strings in Azure Key Vault and integrate it with TFS/VSTS build and release pipelines to improve security, simplify management, and avoid secret leakage across multiple projects.

AzureKey VaultVSTS
0 likes · 8 min read
Using Azure Key Vault to Secure Secrets in TFS/VSTS Build and Release Pipelines