aws-vault[0] does this, but only for aws creds 0 - https://github.com/99designs/... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		yunwal on Feb 28, 2023 \| parent \| context \| favorite \| on: LastPass says DevOps engineer’s hacked computer le... aws-vault[0] does this, but only for aws creds 0 - https://github.com/99designs/aws-vault

antihero on March 1, 2023 [–]

Yeah this is a good tool, if annoying at times.

A better way would be to not allow user accounts to deploy anything in any sort of prod accounts, instead only allowing this to happen through CI.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact