Yeah, weird for them to do that. Managing credentials like that sucks even from ... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		mikedelago on July 9, 2023 \| parent \| context \| favorite \| on: Show HN: Digger – Open Source Terraform automation... Yeah, weird for them to do that. Managing credentials like that sucks even from an ergonomics standpoint. In practice, it's pretty normal to use OIDC to authenticate Github Actions to AWS: https://docs.github.com/en/actions/deployment/security-harde...

thinkmassive on July 9, 2023 [–]

Ok yeah, looks like they recently added OIDC support: https://docs.digger.dev/cloud-providers/authenticating-with-...

They should update the main readme to include this under Features, and also call it out in the demo files.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact