Update: Secrets Management Cheat Sheet

OWASP / CheatSheetSeries

The OWASP Cheat Sheet Series was created to provide a concise collection of high value information on specific application security topics.

https://cheatsheetseries.owasp.org

Creative Commons Attribution Share Alike 4.0 International

27.75k stars 3.89k forks source link

Update: Secrets Management Cheat Sheet #1289

Open garthoid opened 8 months ago

garthoid commented 8 months ago

What is missing or needs to be updated?

Discussion of secrets management in a multi-cloud environment.

How should this be resolved?

Investigation and discussion of issues. I am sure this is an evolving field and I am learning myself. It affects more than Dev and CI/CD. References to existing art.

szh commented 8 months ago

@garthoid Yes this is definitely worth having more guidance on. Do you want to submit a PR? I'm happy to help as well since secrets management is one of my areas of expertise, but I don't have the bandwidth to lead the effort at this time.

mackowski commented 7 months ago

@garthoid do you want to work on PR for this? It can be a draft to have a starting point.