search

1Password / terraform-provider-onepassword

Use the 1Password Terraform Provider to reference, create, or update items in your 1Password Vaults.
https://1password.com/secrets
MIT License
314 stars 41 forks source link

OpenTofu Registry - Provider signing with GPG key #165

Open dbrennand opened 1 month ago

dbrennand commented 1 month ago

Your environment

Terraform Provider Version: 1.4.3

OS: MacOS

OpenTofu Version: OpenTofu v1.7.0

What happened?

When running tofu init, the following warning is shown because the OpenTofu registry doesn't have the GPG keys for the provider:

- Installed 1password/onepassword v1.4.3. Signature validation was skipped due to the registry not containing GPG keys for this provider

Providers are signed by their developers.
If you'd like to know more about provider signing, you can read about it here:
https://opentofu.org/docs/cli/plugins/signing/

What did you expect to happen?

No warnings to show and the provider is verified against the 1Password GPG key.

Steps to reproduce

# tofu init
terraform {
  required_version = ">= 1.6.2"
  required_providers {
    onepassword = {
      source  = "1Password/onepassword"
      version = "1.4.3"
    }
  }
}

Notes & Logs

1Password provider in OpenTofu registry: https://github.com/opentofu/registry/tree/main/providers/1/1Password

Submit provider GPG key form: https://github.com/opentofu/registry/issues/new?assignees=&labels=provider-key%2Csubmission&projects=&template=provider_key.yml&title=Provider+Key%3A+

dbrennand commented 1 month ago

Please could this issue be re-labeled from bug to the correct label. This isn't a bug in the provider itself.