- ALM used: GitHub
- CI system used: Azure DevOps
- Languages of the repository: C#
Our IT department has a policy to rotate all API keys on a given frequency and we recently noticed that the badge urls for the private repos (projects) have a token in them. What little documentation there is appears to indicate this is an API key that lets the badge look into the private repo (project) and get the stats back out again. We are using SonarCloud.io for hosting.
I am trying to figure out how to rotate that token to bring it in line with our IT security policy.
I submitted a request via the contact form and was redirected here by the person who answered.
Thanks for your time.