sops
sops copied to clipboard
getsops
Simple and flexible tool for managing secrets
This depends on #1091 being merged into `develop` first, as I took the `go.mod` file state from there as a base. Other than that, this PR does nothing more than...
Are there any roadmap plans for SOPS to have a FIPS mode where only validated primitives' are utilized? If there are no plans for this, is it possible to build...
Currently sops only supports age with age keys. This PR adds support for using SSH keys for encryption, decryption using age. ## Usage #### Encryption ```bash ./sops --ssh /home/user/.ssh/id_ed25519.pub -e...
given a project with following structure: ``` . ├── .sops.yaml └── secrets └── test.json ``` with `.sops.yaml` content: ```ymal creation_rules: - path_regex: secrets/.* gcp_kms: projects/YOUR_POJECT/locations/global/keyRings/YOUR_RING/cryptoKeys/YOUR_KEY ``` I am not able...
### SOPS Version SOPS v3.7.3, linux, amd64 ### Problem description I have an encrypted `test.sops.conf` file that has been encrypted using the INI format ``` jguinard@laptop1515753:~/git/testg$ cat ~/tmp/test.sops.conf.ini|head -n 2...
Would love to see support for [HCL](https://github.com/hashicorp/hcl). HCL is used for a lot of configuration files as part of the Hashicorp stack (Vault, Terraform, etc).
### Version sops 3.1.1 ### Bug behaviour When using `sops --set '["some-key"]["nested-key"] "some-value" secrets.yml'` where `some-key` does not exist at the root level of `secrets.yml` and the file is rewritten...
We are using sops to decrypt sensitive data in a CI pipeline using GCPKMS. Currently we log into Google via a credentials file that gets inserted at GOOGLE_APPLICATION_CREDENTIALS. We'd like...
Hello, submitting this PR to fix a vulnerability found by a container scan. https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-28948 ``` { "hash": "", "created_by": "dpkg -i sops_3.7.3_amd64.deb", "packages": [ { "name": "gopkg.in/yaml.v3", "namespace": "go", "version":...
First decrypt/encrypt from local GPG binary before attempting to contact the (deprecated) OpenPGP server Addresses mozilla#749 and mozilla#902.
