Skip to content
Latchkey

Certificate Pinning - CI/CD Glossary Definition

Certificate pinning is hard-coding the expected certificate or public key of a server in a client, so the client rejects any other certificate even if it is signed by a trusted CA. It defends against rogue or compromised certificate authorities.

Trade-off

Pinning blocks man-in-the-middle attacks via fraudulent certificates, but a pinned certificate that expires or rotates without a client update breaks connectivity, so pins must be managed alongside rotation.

Related guides

Tired of flaky CI? Latchkey auto-heals failed jobs and retries them for you. Start free →