re: I was billed for 14k USD on Amazon Web Services 😱 VIEW POST

VIEW PARENT COMMENT VIEW FULL DISCUSSION

I had the impression KMS is the way to go here.

Put the encrypted keys in the repo and decrypt them before usage.

I do not think that this is a good idea. You would put encrypted keys and the decryption algorithm in the repo. It is still possible to get to the keys.

code of conduct - report abuse