On 28. 04. 20 8:04, Frederic Lepied wrote:
On Tue, Apr 28, 2020 at 1:27 AM Miro Hrončok <mhroncok(a)redhat.com
<mailto:mhroncok@redhat.com>> wrote:
Hello CIistas (I've just invented this term, probably not good, sorry).
Do we have something like encrypted secrets [0] for the Fedora CI?
I'd like to add CI tests for twine [1] that would:
- create a Python package named fedora-ci-canary, versioned as 0+<uuid>
- upload the package to Test PyPI [2][3]
- verify it is there
For this however, we would need to store credentials for a Test PyPI account.
I don't mind if the credentials are compromised via malicious Pull Request
(they
are to a test environment only), but I don't feel comfortable to store them in
git in plaintext (or obfuscated).
Hi,
If you can use Zuul, there is support for secrets:
https://zuul-ci.org/docs/zuul/reference/secret_def.html
If you choose this road, let me know and I'll help you setup your job.
Awesome, thanks. Zuul would work.
I'll prep the actual test and will get back to you with a WIP PR.
--
Miro Hrončok
--
Phone: +420777974800
IRC: mhroncok