SREcon24 Americas - OIDC and CICD: Why Your CI Pipeline Is Your Greatest Security Threat

Mark P Hahn, Qualys, and Ted Hahn, TCB Technologies

Your CI/CD Process is chock full of credentials, and almost anyone in your company has access to it. Configuring your CI correctly is vital to supply chain security. We discuss how to reduce that attack surface by enforcing proper branch permissions and using OIDC to reduce long-lived credentials and tie branches to roles.

View the full SREcon24 Americas program at https://www.usenix.org/conference/sre...