thomas11
commented
1 year ago I think this will need to be done on the provider side, i.e., in pulumi-gcp. In pulumi-aws, also a bridged provider, we use a patch management system for that purpose.
Closed cnunciato closed 11 months ago
thomas11
commented
1 year ago I think this will need to be done on the provider side, i.e., in pulumi-gcp. In pulumi-aws, also a bridged provider, we use a patch management system for that purpose.
mikhailshilkov
commented
1 year ago @thomas11 Your second link goes to our triage google doc, I think you may have wanted to link to another place?
lukehoban
commented
1 year ago Another user mentioned hitting this issue today. They believed the statement in the docs, and that led them to build a very complex and brittle workaround. Reminder of how important this is to fix.
A community user noticed our GCP secretversion docs contain a statement inherited from the Terraform docs about secrets being stored in plain text:
In our case, however, this isn't true; secret data is stored in cyphertext. We should correct this so users aren't alarmed by it.