Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Provde Database Secrets Securly #7

Open
lwileczek opened this issue Nov 26, 2023 · 0 comments
Open

Provde Database Secrets Securly #7

lwileczek opened this issue Nov 26, 2023 · 0 comments
Labels
Security Secuirty improvements or findings

Comments

@lwileczek
Copy link
Owner

Issue

The only way to provide connection information to the database is by adding DATABASE_URL in clear text into the environment. This could be an issue in a lot of cases. We need a way to provide secrets such as the DB password in an encrypted manner or to reach out and request it dynamically at runtime.

This also encourages writing the password down which may end up in git.
@lwileczek lwileczek added the Security Secuirty improvements or findings label Nov 26, 2023
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
Security Secuirty improvements or findings
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@lwileczek