@cole-h I'm newly interested in this because I really want to fix https://github.com/ryantm/agenix/issues/4 I tried it out some. It seems like it doesn't support rekeying all the paths at once. Is that right? If not, I'm up for trying to add that feature to learn more about the code.
What if a path or paths can't be decrypted (private key is not present)? Should we just skip those paths (and report them at the end), or abort the entire operation? (That would probably require a temporary staging directory where we just move the secrets to their proper places afterwards)
@cole-h I'm newly interested in this because I really want to fix https://github.com/ryantm/agenix/issues/4 I tried it out some. It seems like it doesn't support rekeying all the paths at once. Is that right? If not, I'm up for trying to add that feature to learn more about the code.
Originally posted by @ryantm in https://github.com/ryantm/agenix/issues/23#issuecomment-887078559
Some things to consider: