undefined | Better HN

0 pointshn_throwaway_992y ago0 comments

This is exactly why GitHub support OpenID Connect, https://docs.github.com/en/actions/deployment/security-harde..., so that long-lived secrets don't need to be present as part of the build.

I'm not sure if NPM supports OIDC, which would be ironic given that both GitHub and NPM are owned by Microsoft.

0 comments

Why would that be ironic?

Sorry, my sentence was poorly written, I meant it would be ironic if NPM didn't support OIDC.

j / k navigate · click thread line to collapse

0 pointshn_throwaway_992y ago0 comments

This is exactly why GitHub support OpenID Connect, https://docs.github.com/en/actions/deployment/security-harde..., so that long-lived secrets don't need to be present as part of the build.

I'm not sure if NPM supports OIDC, which would be ironic given that both GitHub and NPM are owned by Microsoft.

Why would that be ironic?

Sorry, my sentence was poorly written, I meant it would be ironic if NPM didn't support OIDC.

j / k navigate · click thread line to collapse