Piyush says:
February 14, 2019 at 8:35 pm Edit
Inline Powershell exposes passwords in temporary PS1 file on build server.
We have our own build servers hosted on Azure VM. The issue with inline powershell is… it copies the powershell to temporary location on build server. And even when password is stored as secret on VSTS and we also ConvertTo-SecureString. But in the copied temporary location it is stored as text in the temp/xyz.ps1 file.
Piyush says:
February 14, 2019 at 8:35 pm Edit
Inline Powershell exposes passwords in temporary PS1 file on build server.
We have our own build servers hosted on Azure VM. The issue with inline powershell is… it copies the powershell to temporary location on build server. And even when password is stored as secret on VSTS and we also ConvertTo-SecureString. But in the copied temporary location it is stored as text in the temp/xyz.ps1 file.