/plushcap/analysis/buildkite/how-to-protect-your-cicd-pipelines-from-yourself

How to Protect Your CI/CD Pipelines from... Yourself

What's this blog post about?

The text discusses common mistakes made by engineers early in their careers and how they can be prevented using features offered by Buildkite, a continuous integration and deployment tool. Three key security features highlighted are Human Gates (Block Step), blocked_state attribute, and permission structure. Block Step allows for the blocking of dangerous actions until authorized by another team member, while blocked_state enables the build to show as "failed" or "running" when it is blocked. Permission Structure helps manage access control within Buildkite through user-level Members permissions and Teams. The author emphasizes the importance of security in software development and promises more guidance on structuring permissions within Buildkite for different organizations in future posts.

Company
Buildkite

Date published
March 9, 2021

Author(s)
Grant Colgate

Word count
650

Language
English

Hacker News points
None found.


By Matt Makai. 2021-2024.