-
First run with a `.gitignore` file extension. The file is not treated as an ENV file despite the `--input-type dotenv` flag.
```
❯ sops -e --input-type dotenv cloud/sops_kms/prod_secrets.gitignore …
-
Hi,
I would like to enquire if SigStore has any plans to facilitiate integrating technology partners to act as KMS service providers via the the KMIP standard.
I note Sigstore has integratio…
-
### Build
- [x] Enable Kubernetes build on k8s-infra via Prow
- [x] (https://github.com/kubernetes/release/pull/900) Add support for running Kubernetes builds via Google Cloud Build
- [x] (http…
-
### What happened?
I followed the instruction in the Readme and passed in my gcpkms `secret-provider`, but I'm still getting error that ask me for `PULUMI_CONFIG_PASSPHRASE` or `PULUMI_CONFIG_PASSPHR…
-
The strategy of [`Harvest Now, Decrypt Later`](https://en.wikipedia.org/wiki/Harvest_now,_decrypt_later) relies on the ability to collect and store encrypted secrets for later decryption through e.g. …
-
Create a simple YAML file:
```cat foo.yaml
foo:
bar_PWD: bar
```
Create a simple `.sops.yaml` file:
```
creation_rules:
# - encrypted_regex: '(password|.*_PWD)'
- pgp: "FBC7B9E2A4…
-
At present, `app.yaml` includes hard-coded values for the database name, user, password, etc.
We should support securely fetching these values within the GCP environment using something like KMS, d…
-
**Help us help you**
We are using Tink extensively to provide encryption for calls through out GRPC proxy as part of our platform offering.
**Is your feature request related to a problem?**
T…
-
## Hello!
- Vote on this issue by adding a 👍 reaction
- If you want to implement this feature, comment to let us know (we'll work with you on design, scheduling, etc.)
## Issue details
…
-
The Flux project has been granted AWS credits for 2024. We should extend our end-to-end test suite to cover all the integrations of Flux with AWS services in a similar fashion with the ones developed …