sops
sops copied to clipboard
getsops
Simple and flexible tool for managing secrets
Hashicorp Vault can support authentication using a Kubernetes service account and role. Example: https://github.com/hashicorp/vault-examples/blob/main/examples/auth-methods/kubernetes/go/example.go It would simplify the method to authenticate towards Vault if SOPS would support the use of...
Does anybody know how to configure VSCode to work with AWS SSO? I use the config ``` creation_rules: - path_regex: .*dev/secrets.yaml$ key_groups: - kms: - arn: 'arn:aws:kms:eu-central-1:123456:alias/development-sops' aws_profile: development ```...
having a sops config file with `unencrypted_comment_regex` like that: `.sops.yaml` ```yaml creation_rules: - unencrypted_comment_regex: sops:dec ``` and a `secrets.yaml` ```yaml # server credentials credentials: # this is the age key...
Implementation of the possibility of impersonate service account to call the GCP KMS api. I'm not 100% familiar with the project yet, I'm not sure I've done the work correctly,...
Like described in the linked issue, if the GCP KMS key is stored in project foo, but the service account is created in project bar, sops complains that KMS API...
I believe my organization's use-case is quite common: using sops to encrypt secrets to store them in git. This poses a scalability challenge: If two PRs edit the file, the...
**Scenario** I have configured a profile for an AWS SSO User in AWS CLI (version 2.0.10). This SSO User has administrative access permission in the AWS Account. I have created...
After i try to run sops with binary windows with following command `sops\sops-v3.7.3.exe --decrypt --age agekey path/file.json` i am getting Error unmarshalling input json: invalid character 'ÿ' looking for beginning...
Could it be possible, when using SSH keys, to rely on ssh-agent for already loaded keys with their passphrases ? Thanks
Adds AWS Secrets Manager and Parameter Store `publish` support. Works same as `vault` in that it uploads unencrypted results as plain text JSON. fixes #1942, #1105
