From the course: Microservices: Security
Join today to access over 24,900 courses taught by industry experts.
Prevent leaked credentials
From the course: Microservices: Security
Prevent leaked credentials
- [Narrator] One of the best ways to secure your microservices is to add automated verifications into a CI/CD pipeline with static security analysis tools. To show you how these tools can provide immediate security, we're going to walk through a pull request workflow using Azure DevOps, where I've enabled a credential scanner in my pipeline. So I have this change sitting in Git that I just finished. This change updates the password that our microservice uses for its database connection. Unfortunately, we have to rotate this password every 90 days, so we need this change for our microservice to continue pulling data from the database. Everything looks good here locally, so I'm going to go ahead and push this change up to Azure DevOps so that I can create a pull request. All right, let's head over to Azure DevOps and we can get to work on that pull request. All right, here we can see that my changes were detected and I can click on the Create a pull request button, which will allow me…
Download courses and learn on the go
Watch courses on your mobile device without an internet connection. Download courses using your iOS or Android LinkedIn Learning app.
Contents
-
-
-
-
-
-
-
Throttling and rate limiting4m 37s
-
(Locked)
Container runtime security4m 19s
-
(Locked)
Image security5m 4s
-
(Locked)
Audit container security3m 44s
-
(Locked)
Secrets management3m 49s
-
(Locked)
Secure pipelines4m 57s
-
(Locked)
Prevent leaked credentials2m 39s
-
(Locked)
Keep secrets with Key Vault6m 53s
-
-