[rdo-dev] Regenerate secrets required by zuul jobs

Paul Belanger pabelanger at redhat.com
Wed Jul 18 20:24:17 UTC 2018


Greetings,

With recent Jenkins security advisory today, I realized we just imported the
current secrets from jenkins into zuulv3.  I'd like to propose, just to be extra
safe, we preform a re-key of everything that uses secrets.

I'm not sure if this has every been done with jenkins, but we should also
consider some policy to re-key everything ever x months too.

Thoughts?


More information about the dev mailing list