Latest

Scoping AWS IAM roles to Docker containers

Amazon Web Services (AWS) has a really great security feature, called IAM roles, that can be used with EC2 as instance profiles. When you…launch an EC2 instance with an instance profile, the IAM role credentials are available to the instance through the metadata service at http://169.254.169.264. Unlike IAM user credentials, IAM role credentials automatically rotate on a schedule (generally every 15 minutes), so even if the credentials are stolen, they’re only good for a short time period. A downside of IAM roles is that every single process on the system has access to them.
Go to the profile of Ryan Lane
Ryan LaneMar 9
Matchmaking in Lyft Line

Matchmaking in Lyft Line

Part 2
Go to the profile of timothybrownsf
timothybrownsfMar 1
Finding a needle in a haystack

Finding a needle in a haystack

Secrets don’t belong in source code. At Lyft we use a secret management system (Confidant) to ensure our repositories are free of secrets…
Go to the profile of Ryan Lane
Ryan LaneFeb 9
Matchmaking in Lyft Line

Matchmaking in Lyft Line

Part 1
Go to the profile of timothybrownsf
timothybrownsfFeb 2
Automated Style Review with Linty Fresh

Automated Style Review with Linty Fresh

Lyft is happy to announce the open sourcing of Linty Fresh, a tool for integrating in Linters/Static Analysis tools into your code review…
Go to the profile of Roy Williams
Roy WilliamsDec 22, 2015
More stories →About Lyft Engineering