serverless-secrets-plugin icon indicating copy to clipboard operation
serverless-secrets-plugin copied to clipboard

Published 20 hours ago verified publisher icon serverless

Consider using KMS

Open mthenw opened this issue 7 years ago • 6 comments

https://aws.amazon.com/kms/

With this plugin secrets are actually exposed during the deployment so I would not recommend that as a secure solution. I think that the better solution would be storing secrets in KMS and decrypting them inside lambda during cold start. We could do that with our handler function form stdlib.

mthenw avatar Nov 25 '16 15:11 mthenw