Secure env variables

mr_green · April 25, 2019, 1:09pm

I’ve got a few environment variables that I’m setting on the pipeline:

env:
  AWS_ACCESS_KEY_ID: "xyzxyzxyzxyzxyzxyzxyzxyz"
  AWS_SECRET_ACCESS_KEY: "xyzxyzxyzxyzxyzxyzxyzxyzxyzxyz"


steps:
  - command: 
      - "echo Hello World"

Does buildkite have any way to secure those environment variables, or integration to something like AWS Secrets Manager?

moensch · April 26, 2019, 5:24am

I would write a repository-level environment or pre-command hook, fetch the secrets from AWS Secrets Manager or SSM Parameter Store, and export them as env vars.

Topic		Replies	Views
How to use Secrets & Env Variables? General	2	156	June 25, 2024
Environment variables set in S3 not accessible from build step Elastic CI Stack for AWS	3	374	February 12, 2024
Cannot access AWS configuration Pipelines	5	88	June 27, 2024
Is there a way to alter Legacy "Environment Variables" through api Pipelines	1	52	July 5, 2024
Secure pipeline secrets General	6	1842	July 19, 2021

Secure env variables

Related Topics