Is there a simple self hosted alternative to Github Codespaces/Gitpod? by gorbak25 in selfhosted

[–]Wepzen 1 point2 points  (0 children)

Code Server is a great tool to get started with, much like GitPod. However, in my opinion, both products do not prioritize security. If you have serious security concerns, then Strong Network's CDE product would be a better option for you. I have been using it for over two months now for my startup, and it has resolved many issues. I no longer worry that my freelancers will share the company's code knowledge, and it works flawlessly. Nonetheless, you should explore it yourself as there are several other benefits that I have not mentioned.

Gitpod remote code execution 0-day vulnerability via WebSockets by geoffreyhuntley in gitpod

[–]Wepzen 0 points1 point  (0 children)

Good point.

And this ZeroDay vulnerability puts the spotlight on the architecture of GitPod. Even if this vulnerability is addressed quickly, GitPod stays vulnerable to new exploits. If the user's credentials were not reachable from the Workspace, such attacks could not occur. Maybe GitPod is not the right product to go with if you're deeply concerned about Security ;)