Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

ALFMOB-100: Secure sensitive files in the repository #35

Open
wants to merge 1 commit into
base: main
Choose a base branch
from
Open

ALFMOB-100: Secure sensitive files in the repository #35

wants to merge 1 commit into from

Conversation

JoaoPinhoMinder
Copy link
Contributor

@JoaoPinhoMinder JoaoPinhoMinder commented Feb 24, 2025
edited
Loading

Ticket

https://mindera.atlassian.net/browse/ALFMOB-100

Description

In order to manage sensitive files, i have:

  • Set up git-secret for encrypting sensitive files in the repository
  • Created and configured GPG key pairs for both the team and CI/CD
  • Encrypted GoogleService-Info.plist files for Debug and Release, removing exposed credentials
  • Added documentation on setting up git-secret, importing keys, and managing secrets

@JoaoPinhoMinder JoaoPinhoMinder force-pushed the techdebt/ALFMOB-100-secure-sensitive-files-in-the-repository branch 12 times, most recently from 78bc918 to e20f9b0 Compare February 24, 2025 15:32
@JoaoPinhoMinder JoaoPinhoMinder marked this pull request as ready for review February 24, 2025 15:41
@JoaoPinhoMinder JoaoPinhoMinder force-pushed the techdebt/ALFMOB-100-secure-sensitive-files-in-the-repository branch 4 times, most recently from a5ca7b9 to 1613f56 Compare February 25, 2025 13:01
@JoaoPinhoMinder JoaoPinhoMinder marked this pull request as draft February 25, 2025 13:01
@JoaoPinhoMinder JoaoPinhoMinder force-pushed the techdebt/ALFMOB-100-secure-sensitive-files-in-the-repository branch 9 times, most recently from 2be837a to cb7e077 Compare February 25, 2025 14:13
@JoaoPinhoMinder JoaoPinhoMinder force-pushed the techdebt/ALFMOB-100-secure-sensitive-files-in-the-repository branch 3 times, most recently from b8be0da to 1976752 Compare February 25, 2025 14:24
@JoaoPinhoMinder JoaoPinhoMinder force-pushed the techdebt/ALFMOB-100-secure-sensitive-files-in-the-repository branch 3 times, most recently from f83298b to f62ce97 Compare February 25, 2025 14:40
@JoaoPinhoMinder
ALFMOB-100: Secure sensitive files in the repository
58d577d 
In order to manage sensitive files, i have:

- Set up `git-secret` for encrypting sensitive files in the repository
- Created and configured **GPG key pairs** for both the team and CI/CD
- Encrypted `GoogleService-Info.plist` files for **Debug and Release**, removing exposed credentials
- Added documentation on setting up `git-secret`, importing keys, and managing secrets
@JoaoPinhoMinder JoaoPinhoMinder force-pushed the techdebt/ALFMOB-100-secure-sensitive-files-in-the-repository branch from f62ce97 to 58d577d Compare February 25, 2025 14:47
@JoaoPinhoMinder JoaoPinhoMinder marked this pull request as ready for review February 25, 2025 15:06
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@p4checo p4checo Awaiting requested review from p4checo

@reisdev reisdev Awaiting requested review from reisdev

@DanielPrimoMinder DanielPrimoMinder Awaiting requested review from DanielPrimoMinder

At least 2 approving reviews are required to merge this pull request.

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@JoaoPinhoMinder