Login
Roast topics
Find topics
Find it!
From:
Aidan Steele’s blog (usually about AWS)
(Uncensored)
subscribe
Improve GitHub Actions OIDC security posture with custom issuer | Aidan Steele’s blog (usually about AWS)
https://awsteele.com/blog/2023/01/11/improve-github-actions-oidc-security-posture-with-custom-issuer.html
links
backlinks
Roast topics
Find topics
Roast it!
GitHub Actions has supported using OIDC tokens for about 15 months now. It is a much better way of providing AWS credentials to workflows than creating IAM users and storing long-lived access keys in GitHub Actions secrets.
