| ▲ | pabs3 5 days ago | |||||||
mTLS aka TLS client certs seems like the way to go. | ||||||||
| ▲ | orphea 5 days ago | parent [-] | |||||||
How is a client cert not another glorified static password? It would have been stolen from repo secrets the same way. | ||||||||
| ||||||||
| ▲ | pabs3 5 days ago | |||||||
mTLS aka TLS client certs seems like the way to go. | ||||||||
| ▲ | orphea 5 days ago | parent [-] | |||||||
How is a client cert not another glorified static password? It would have been stolen from repo secrets the same way. | ||||||||
| ||||||||