7 min read - Jan 18, 2026 Stop storing AWS credentials in your CI/CD pipelines. There’s a better way. If you’re still using long-lived AWS access keys in your GitLab CI/CD pipelines, you’re not alone — but you’re taking unnecessary security risks. Every stored credential is a potential breach waiting to happen. Fortunately, OpenID Connect (OIDC) provides a modern, secure alternative that eliminates the need for static credentials entirely. ...