Show HN: Stop Putting AWS Credentials in GitHub Secrets Greetings! I've created a GitHub action that works that allows GitHub Actions to exchange a GitHub token for AWS Access Credentials. I've cultivated a few examples of it in action: https://ift.tt/3rt5qq6 I've always found management of AWS Credentials has been a pain. So this setting up this Action works like this: 1) A SAML Identity Provider is created in AWS 2) A Role in AWS is set up to trust that Identity Provider 3) A config file is added to the repository indicating which role can be assumed 4) The GitHub Action exchanges the Repo Secret for AWS Credentials using the SAML.to backend for the exchange Let me know what you think! I'm Happy to take questions and comments here or on Gitter: https://ift.tt/3tEk7cE https://ift.tt/33Mas8S January 19, 2022 at 01:50AM
Show HN: Launch VM workloads securely and instantaneously, without VMs Hello HN! We've been working on a new hypervisor https://kwarantine.xyz that can run strongly isolated containers. This is still a WIP, but we wanted to give the community an idea about our approach, its benefits, and various use cases it unlocks. Today, VMs are used to host containers, and make up for the lack of strong security as well as kernel isolation in containers. This work adds this missing security piece in containers. We plan on launching a free private beta soon. Meanwhile, we'd deeply appreciate any feedback, and happy to answer any questions here or on our slack channel. Thanks! April 29, 2021 at 07:50AM
Comments