Re: Encrypted credentials for integration tests?

On Tue, Apr 28, 2020 at 1:27 AM Miro Hrončok <mhroncok(a)redhat.com <mailto:mhroncok@redhat.com>> wrote: Hello CIistas (I've just invented this term, probably not good, sorry). Do we have something like encrypted secrets [0] for the Fedora CI? I'd like to add CI tests for twine [1] that would:   - create a Python package named fedora-ci-canary, versioned as 0+<uuid>   - upload the package to Test PyPI [2][3]   - verify it is there For this however, we would need to store credentials for a Test PyPI account. I don't mind if the credentials are compromised via malicious Pull Request (they are to a test environment only), but I don't feel comfortable to store them in git in plaintext (or obfuscated). Hi, If you can use Zuul, there is support for secrets: https://zuul-ci.org/docs/zuul/reference/secret_def.html If you choose this road, let me know and I'll help you setup your job.