Ephemeral Credentials in GitLab
Problem to solve
Users currently hard-code deployment credentials in GitLab secure variables. This is not safe because they could be accidentally leaked.
Further details
Ephemeral credentials would mitigate the possibility of deployment secrets/credentials being compromised or accidentally leaked.
Proposal
What does success look like, and how can we measure that?
GitLab builds have means to get access to ephemeral credentials for deployment services such as AWS, Docker, and Kubernetes.