Search
Search

How is Travis-Ci's pypi deployment secure?

user592419 Published at Dev
20
user592419

When using travis-ci to deploy to pypi, the procedure is:

  1. Set up travis-ci account and connect a repository.

  2. In that repository, include a pypi deploy that looks like:

    provider: pypi

user: "PYPI_USER"

password:

  secure: "PYPI_PASSWORD_SECURED_WITH_TRAVIS_ENCRYPT"

on:

  tags: true

How does the security model for this work? Why is it that someone else can't copy my user and password and deploy to that pip package?

phd

How does the security model for this work?

Good enough. (You haven't signed a contract with me, so I cannot give any promise.)

Why is it that someone else can't copy my user and password and deploy to that pip package?

Because she cannot decrypt secret values encrypted by you. For each registered repository, Travis CI generates an RSA keypair — that is, values encrypted by your public key cannot be decrypted by intruders' private key, only your private key can decrypt them and the private keys are only accessible by Travis CI.

Collected from the Internet

Please contact [email protected] to delete if infringement.

edited at
0

Comments

0 comments
Login to comment

Related

PyPi deployment from Travis CI: Invalid or non-existent authentication

Travis CI deploy to S3 bucket not working with secure keys

How to set github token on Travis CI in a secure way?

Continuous Deployment Using Travis CI and Docker

Provide alternate PyPI URL for Travis CI to install dependencies from?

How to run Travis-CI's trusty distribution locally

How to use Travis CI environment variables + .sh script for auto deployment to Github Pages?

How to set flyway config in continuous deployment pipeline using Travis CI and Azure?

Can I use secure Travis env variables in .travis.yml to upload to PyPI?

How to remove caches on Travis CI?

How to trigger a fail in Travis CI?

How to secure CI/CD pipeline

Deployment in Travis-CI to GitHub Pages: which files will be uploaded?

Travis CI skip release deployment because this is not a tagged commit

What do the symbols *1 or &2 mean in Travis CI deployment scripts?

What is a good workflow for Continuous Deployment to a VPS using Travis CI and Capistrano?

Travis-CI skipping deployment although Commit is tagged

Travis CI Scala Play Application Build & Deployment Optimization

Preventing conflicts when deploying multiple distros to PyPI using Travis-CI

Travis pypi package version

travis-ci: how to move or rename a file

How to deploy an Agda library on Travis CI?

How to run travis-ci locally

How to install uglify-js on Travis CI?

How to set up Travis CI with multiple languages

How to use recent Boost versions with Travis CI

How to add SSH Key in Travis CI?

How to build MacOSX executables on Travis CI?

How to build on travis-ci with gradle and cobertura

TOP Ranking

  1. 1

    pump.io port in URL

  2. 2

    Failed to listen on localhost:8000 (reason: Cannot assign requested address)

  3. 3

    How to import an asset in swift using Bundle.main.path() in a react-native native module

  4. 4

    Inner Loop design for webscrapping

  5. 5

    Can't pre-populate phone number and message body in SMS link on iPhones when SMS app is not running in the background

  6. 6

    ggplotly no applicable method for 'plotly_build' applied to an object of class "NULL" if statements

  7. 7

    mysql.connector.errors.InterfaceError: 2003: Can't connect to MySQL server on '127.0.0.1:3306' (111 Connection refused)

  8. 8

    Removed zsh, but forgot to change shell back to bash, and now Ubuntu crashes (wsl)

  9. 9

    Ambiguous use of 'init' with CFStringTransform and Swift 3

  10. 10

    Resetting Value of <input type="time"> in Firefox

  11. 11

    Execute ./script.sh with a crontab

  12. 12

    Converting a class method to a property with a backing field

  13. 13

    Spring Boot JPA PostgreSQL Web App - Internal Authentication Error

  14. 14

    How to update azerothcore-wotlk docker container

  15. 15

    How to set tab order for array of cluster,where cluster elements have different data types in LabVIEW?

  16. 16

    Grails with Oracle thick OCI driver authenticate to Oracle with wrong user

  17. 17

    How to pass data to the ng2-bs3-modal?

  18. 18

    Making Array From Page Elements in jQuery

  19. 19

    Retrieve Element Tag Value XML Using Bash

  20. 20

    Laravel's ORM sync with timestamps doesn't update timestamps

  21. 21

    Do animations stop css changes after animation completion?

HotTag

Archive