Episode Details
Back to EpisodesOIDC, bastion hosts, and production safety
Episode 189
Published 3 months, 4 weeks ago
Description
In this episode, Jake and Michael dive into modern infrastructure security practices, sparked by an annual audit and the painful process of rotating AWS IAM tokens. That experience leads into a broader discussion on why long-lived credentials in GitHub Actions are risky, and how OIDC (OpenID Connect) enables a more secure, short-lived, role-based alternative.
Show links