You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Piyush says:
February 14, 2019 at 8:35 pm Edit
Inline Powershell exposes passwords in temporary PS1 file on build server.
We have our own build servers hosted on Azure VM. The issue with inline powershell is… it copies the powershell to temporary location on build server. And even when password is stored as secret on VSTS and we also ConvertTo-SecureString. But in the copied temporary location it is stored as text in the temp/xyz.ps1 file.
The text was updated successfully, but these errors were encountered:
Piyush says:
February 14, 2019 at 8:35 pm Edit
Inline Powershell exposes passwords in temporary PS1 file on build server.
We have our own build servers hosted on Azure VM. The issue with inline powershell is… it copies the powershell to temporary location on build server. And even when password is stored as secret on VSTS and we also ConvertTo-SecureString. But in the copied temporary location it is stored as text in the temp/xyz.ps1 file.
The text was updated successfully, but these errors were encountered: