After reading Gitlab’s response to yesterday’s security issues, I can’t help but laugh. It’s 2019 and people are STILL not using MFA and people are STILL storing sensitive passwords in plaintext!
That’s asking for trouble these days.
Use a password manager. Use multi-factor authentication wherever possible. And don’t store passwords in plaintext! How hard is this?
I spent a lot of time today playing with sourcehut builds (https://builds.sr.ht).
I’m blown away at how easy everything was. A quick YAML file later and I’ve got a process that tests a package and, if all goes well, zips it up and copies it to an S3 bucket. (Because sourcehut git doesn’t provide zips, just tarballs, and Ghost themes need to be zips.)
On this topic, this is probably the first and last relevant Microsoft Community article I'll ever read. It's even from the recent past!