Security is always an important topic, especially with IaaS.
Not only can the code get compromised but also your secret keys, customer data, etc..
Encryption everywhere seems to the solution to me.
In practice that means using TLS for network traffic, and various tools to encrypt passwords, code and user data.
You can do static code analysis to prevent data leaks during runtime.
To be honest, those are all good practices even if you work with an inhouse datacenter.
But I know that it can be a hazzle setting all this up yourself, especially the TLS certificates.
Codesphere will manage all of that for you out of the box when you stick to certain conventions.
For further actions, you may consider blocking this person and/or reporting abuse
We're a place where coders share, stay up-to-date and grow their careers.
Security is always an important topic, especially with IaaS.
Not only can the code get compromised but also your secret keys, customer data, etc..
Encryption everywhere seems to the solution to me.
In practice that means using TLS for network traffic, and various tools to encrypt passwords, code and user data.
You can do static code analysis to prevent data leaks during runtime.
To be honest, those are all good practices even if you work with an inhouse datacenter.
But I know that it can be a hazzle setting all this up yourself, especially the TLS certificates.
Codesphere will manage all of that for you out of the box when you stick to certain conventions.