Supply Chain Promotion Chain

Problem Statement

The less privildge principle forces to create the token as deep as possible in Git groups. Quickly the number of tokens become high. It was then necessary to develop a tool to be able to easily rotate thousands of token easily and push the value of the tokens in secret store (gitlab-ci or hashicorp vault).

It was also interesting to get an history of the different tokens.

Description

A tool has been designed in python to do token rotation easily. It has been published in Open Source and can eb found here: https://gitlab.com/Orange-OpenSource/k8s-tz/tools/gitlab-tokens-manager

Project Details

Leader: Orange (A.Regnault)

List of people/organization interested to join:

Presentation: see WG06 February 2026 minutes for details

Hackathon Objectives

• Introduce te tool
• Demo
• Discuss new features, improvements on sops part
• Develop new features