stackoom
  简体   繁体   中英

Store secrets in Travis, not in github repo

 原文  2017-11-30 13:11:32       github/ travis-ci/ secret-key

Question

I use this guide for ci, bumpversion, upload to pypi:

https://github.com/guettli/github-travis-bumpversion-pypi

I like it, except that the secret gets stored in the repo.

Example: https://github.com/guettli/reprec the file secret-files.tar.enc is in the git repo and it looks strange.

Open source lovers don't like unparsable binaries like this.

Is there a way to store the secret in travis instead of github?

1 answers

solution1
 3 ACCPTED  2017-11-30 13:16:38

Yes. You can set your secret as an environment variable on Travis, and use it in your program. Others can only know "oh, this guy uses a environment variable called PASSWORD !" and they don't know what the value is.

Only you and Travis CI know.

See this doc: https://docs.travis-ci.com/user/environment-variables/

If you want to store a secret file, you can create a private github repo, and clone it with your github password stored in the env variables.

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question safe to commit travis secrets into public repo? automated push to a github repo with travis Is it safe to store credentials in github secrets? Is it okay to use GitHub Secrets with a public repo? Showing Travis build status in GitHub repo Encrypting a file on Travis for a GitHub repo that was renamed Unable to store special characters in github secrets How do I fully remove travis from my github repo? travis-ci triggers build only for master branch in github repo Travis CI After Success Write to a File in GitHub Repo
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM