Open Constantine19 opened 8 months ago
For sensitive values, I think it should be opt-in only. Otherwise the values will be copied and written to the local machine. I'd rather have an option to export them to AWS Secrets Manager or Azure Key Vault, instead of storing locally.
When using the tool to migrate secret values, it currently sets all of them to the same value:
secret_value_from_terraform_cloud
. Ideally, the tool should keep the original secret values during migration.