Another variation on the theme of DevOps is DevSecOps, or security as code. Security has become increasingly more important over the last few years, and rightly so:

Your infrastructure as code should be designed with security in mind, and PowerShell can do a lot in that space, as you have seen in the chapter on PowerShell security. Since we are commonly dealing with credentials, connection strings, and API keys in our release pipeline, our general DevOps work security is very important:

With Desired State Configuration (DSC), there are certificates to encrypt credentials, and CI tools are usually able to encrypt any kind of data to be used in the build process. PowerShell 5 brings the Cryptographic Message Syntax (CMS) cmdlets to the table to also encrypt any securables by using document encryption certificates.