puppetlabs-aws
puppetlabs-aws copied to clipboard
Need mechanism to relieve need to hardcode AWS api secrets
I created a related issue in: https://github.com/vcr/vcr/issues/599
(with regard to creating scripted acceptance tests and feature specs)
Relying on developers to diligently scrub their code of secrets prior to commit is a giant security vulnerability. Why can't we rely on either environment variables, or ~/.aws/credentials or ~/.fog?
+1