英文:
Is the secure-connect-DBNAME.zip safe to upload to a repository?
问题
我一直在使用DataStax,我即将推送到我的代码仓库,将secure-connect-DBNANE.zip
放在仓库里安全吗?我认为应该是安全的,因为这是进行查询所必需的,但我不太确定。
英文:
I have been using DataStax and I'm about to push to my repository, is it safe to have the secure-connect-DBNANE.zip
on the repo? I would suppose so since it's required to make queries but I'm not certain.
答案1
得分: 2
【Datastax文档】1确实提到:
>在共享连接详细信息时要小心。将此信息提供给另一个用户将赋予他们访问您的Astra数据库和拥有权能,例如对数据库进行修改的能力。
>
>出于安全考虑,在将下载的连接凭据发送给队友后,请删除它们。
这不是我认为应该放在Git存储库中的内容。
当您在存储库的新克隆实例中需要该文件时,最好重新下载该文件。
>或者,您可以右键单击“下载凭据”链接,复制链接源,然后使用curl命令下载secure-connect-database_name.zip文件:
>
> curl -L "<secure-connect-database_name-download-URL>" > database_name.zip
英文:
The Datastax documentation does mention:
>Be careful when sharing connection details. Providing this information to another user grants them access to your Astra database and ownership capabilities, such as making modifications to the database.
>
>For security, delete downloaded connection credentials after sending them to your teammate.
That does not strike me as something you should have in a Git repository.
You should rather re-download that file when you need it in a new cloned instance of your repository.
>Alternatively, you can right-click the Download credentials link, copy the link source, and then use a curl command to download the secure-connect-database_name.zip file:
>
> curl -L "<secure-connect-database_name-download-URL>" > database_name.zip
通过集体智慧和协作来改善编程学习和解决问题的方式。致力于成为全球开发者共同参与的知识库,让每个人都能够通过互相帮助和分享经验来进步。
评论