Devs urged to rotate secrets after CircleCI suffers security breach


Following the discovery of a compromise at well-known DevOps platform CircleCI, developers are being reminded to rotate secrets and API tokens. On Wednesday, CircleCI, a company that provides a platform for continuous integration and delivery of software development projects, acknowledged a “security incident” (January 4).

An investigation has been started by the vendor and is still going on. It is advising its software developer clients to take “preventative steps” in the interim to safeguard the integrity of software development projects.

Read More…