14Nis
AWS RDS Database access from Github Actions
I have a Postgres database hosted in AWS RDS. The rest of my application is also hosted on AWS.
The database migrations, like adding a new column, are done by Prisma, a node package. The pipeline is on GitHub Actions.
There I run npx prisma migrate deploy script to modify the database on every deployment. To make it more secure, I created a random username, safe password, and port number different than the standard one.
How dangerous it is to make the database publicly accessible so that GitHub Actions can do the migrations on the database?
What other solution would you suggest to be able to run the migrations from the Github Actions?
