Public preview: OpenID Connect integration between Azure AD and GitHub Actions
Published date: November 02, 2021
At Ignite, we are announcing the public preview of capabilities that enable developers to secure their deployments to Azure through OpenID Connect’s integration between Azure AD and GitHub Actions. The new capabilities alleviate the need for managing long-lived cloud credentials in the GitHub Actions secret store—meaning that your teams will not have to manage credentials in both Azure and GitHub. These capabilities also minimize the chances of service downtime due to expired credentials.
It’s common for hackers to target development environments and use discovered credentials for source code tampering and injection of malicious code. These new capabilities prevent those attacks by eliminating the need for developers to keep long-lived cloud credentials in the GitHub Actions secret store.