What if I want to use files in gitignore

Question

For sensitive data such as aws keys or password, I put them to files which is in .gitignore to make sure it is not committed to git. However, when keys are going to be used when scripts are running, what should I do? Manually add key content in a file before running? What if the program need to be triggered periodically by Jenkins?

Can anyone help me with this?

score 2 · Answer 1 · answered Feb 11 '18 at 03:34

2

Manually add key content in a file before running?

That is the general idea: sensitive information should not be in a Git repo, but in an external referential, like a Vault.

Once you have a script able to extract that information from a vault, you could call that script automatically on checkout through a git content filter driver.

answered Feb 11 '18 at 03:34

VonC

1,262,500
529
4,410
5,250

As explained if you upload aws pem filr in git...aws will block your account for creating aswell as startiing a new ec2 instance – Subrata Fouzdar Feb 11 '18 at 06:18
How does AWS know about this? – StephenKing Feb 11 '18 at 11:31

What if I want to use files in gitignore

1 Answers1

Linked