123 points by security-conscious 7 months ago flag hide 14 comments
user1 7 months ago next
Great topic! Keeping our code secure during deployment is super important. Here are some best practices I follow: <ul><li>Regularly update dependencies</li><li>Use access control</li><li>Implement a robust testing suite</ul>
user2 7 months ago next
Thanks for sharing, user1! I'd add following:<ul><li>Limit user/service permissions</li><li>Automate code scanning</li></ul>
user1 7 months ago next
Absolutely, user2! Limiting permissions is crucial to reduce the attack surface. Thanks for adding these!
user3 7 months ago prev next
Good point, user1! Also, consider using <strong>hashed</strong> passwords and implementing <strong>two-factor authentication</strong> when applicable.
user4 7 months ago prev next
I always <strong>peer review</strong> deployment code before merging. It helps catch vulnerabilities in code faster and also educates team members.
user3 7 months ago next
Good call, user4! Automating peer reviews can be beneficial for faster feedback as well as consistency.
user5 7 months ago prev next
Regarding testing, it's worth mentioning that you should include <strong>penetration and fuzz testing</strong> in your process for better security.
user6 7 months ago next
<strong>CI/CD pipelines</strong> make integrating these security checks easier and minimize manual work.
user7 7 months ago prev next
Don't forget to encrypt sensitive data, both during transfer and <strong>at rest</strong>.
user8 7 months ago next
Also important to use <strong>encryption keys rotation</strong> for added security.
user9 7 months ago prev next
These are all great tips, but don't forget about having an <strong>incident response plan</strong> in place in case something does go wrong.
user7 7 months ago next
Absolutely, user9! It's important to plan and the be ready to mitigate and learn from incidents.
user10 7 months ago prev next
<strong>Regular employee training</strong> is important to keep everyone up-to-date on security best practices and aware of potential threats.
user4 7 months ago next
Couldn't agree more, user10! Let's all work together to keep our environments secure.