-
/sig automation
-
Should this kind of logic really be in the CLI?
That makes it hard to update.
This also opens the door to race conditions, so it's not actually a guarantee that create actually creates.
I f…
-
https://www.puppet.com/integrations/vault-by-hashicorp
this says:
```yaml
plugins:
vault:
server_url: https://vault.example.com:8200cacert: /path/to/caauth:
method: tokentoken: xxxxx…
-
as the `[env]` section of config files will very likely contain secrets, there should be a way to manage/encrypt these. I have 2 rough ideas here:
1. support built-in encryption. Allow committing a…
-
Currently, this is my personal system and there are no important / sensitive secrets included besides the default password
As I make the setup better, I should integrate secrets management into the…
-
### Expected Behavior
as a gradle user, I would like to specify secrets (credentials, ssh keys, ...) at possibly one place, with gradle providing variable binding, so I can later use any given secret…
-
## Reproduction steps
Ensure that a cloud credential has been created before starting these steps. For this issue, a Digital Ocean cloud credential was created.
1. Navigate to Cluster Management…
-
dotbot recommends using a whole separate repo for secrets, and then coordinating install scripts so that the secrets get placed where they need to go.
another approach is to handwave over where the…
-
Find a way to seamlessly integrate `SealedSecrets`.
Or consider `gruntkms` or `sops` such that secrets are decrypted as they are mounted into pods as an alternative. Need some way to ensure the IAM…
-
How secrets should be managed using `gordon`? Can we imagine that gordon would build a file similar to `.context` called `.secrets` and leverage KMS to encrypt it?