What I Built
Meet Catherine, a Senior Project Manager at a growing tech startup. She created a Telegram group with her interns to collaborate better. However, there’s a big problem that makes Catherine anxious: occasionally, one of the interns accidentally posts a secret in the group.
How does this work?
To solve this issue, Catherine uses antileaked.io, a smart Telegram bot that watches all messages in the group, detects any leaked tokens or passwords, and checks if the leaked secret matches something stored in 1Password. If it does, the bot automatically rotates the secret and sends a notification to a special channel for Catherine (as the team lead).
Live Demo Link
You can try joining the group Catherine has created: https://t.me/+oC7v4e-DWSg0NzBl. The group is monitored by a bot Catherine has built (@Bridge4Buildbot). Once you’re in, you can try sending a message that contains a secret key – Catherine has prepared some examples below.
Project Repo
You can find the project repo on GitHub: https://github.com/diosamuel/antileaked.io.
My Journey
1. Setup
The first step is to gather all secret keys into a 1Password vault. We can use either the 1Password desktop app or the CLI – in this case, I’m using the desktop app for convenience.
Set Pulumi Slack Webhook
Let’s create a notification to Slack to monitor changes – we can leverage the Pulumi webhook to achieve this on this website.
Using Pulumi ESC on-the-go
After creating a Pulumi ESC environment, the next step is to initialize the ESC environment in our project using the ESC CLI and add each environment variable into the ESC environment.
Telegram Bot Watcher + 1Password + Pulumi
To automate the process, we can use a Telegram bot watcher that monitors the group for any leaks and automatically updates the 1Password vault and Pulumi ESC environment.
Conclusion
In this article, we’ve seen how to securely sync community feedback from Telegram to Slack and back using Pulumi ESC. We’ve also learned how to set up a Pulumi Slack Webhook and use Pulumi ESC on-the-go.
FAQs
Q: What is Pulumi ESC?
A: Pulumi ESC is a service that allows you to manage and secure your environment variables and secrets.
Q: How does the Telegram bot watcher work?
A: The Telegram bot watcher monitors the group for any leaks and automatically updates the 1Password vault and Pulumi ESC environment.
Q: Can I use this solution for my own project?
A: Yes, you can modify this solution to fit your own project needs.
