sgeboers
/
motief
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
71 Commits
1 Branch
0 Tags
6.0 MiB
 
 
 
Tag: Branch: Tree: c0d1c59bd7
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'c0d1c59bd7'
${ noResults }
motief/thoughts/shared/changes/2026-03-28-secrets-rotation...

804 B
Raw Blame History

date title
2026-03-28 Secrets rotation checklist

Rotate these secrets if they were stored in .env or otherwise exposed:

  • OPENROUTER_API_KEY / OPENAI_API_KEY
  • NPM_TOKEN
  • DEPLOY SSH keys or passwords (DEPLOY_SSH_KEY, DEPLOY_PASSWORD)
  • Any database credentials, API keys, or third-party service tokens

Steps

  1. Revoke the current tokens in each provider's dashboard.
  2. Create new tokens/keys and store them in the repository secrets (GitHub Settings → Secrets).
  3. Update any running services / CI variables to use the new tokens.
  4. If you used SSH keys and replaced them, update the authorized_keys on the VPS and remove the old key.

Verification

  • Use CI dry-run jobs that check connectivity and token validity.
  • Run local commands that use the new tokens.