strongbox-mark
commented
7 months ago Hi @joshuaks - Unfortunately this would entail a significant amount of work/re-design which, I'll be honest, is not going to get prioritised in the foreseeable future. The best thing to do here is to store your SSH keys without the extra passphrase protection layer.
This something you can do within Strongbox itself, simply export the SSH key without a passphrase, then re-add and remove the old one.
Hope that makes sense.
Due to performance issues related to database launching performance (from documentation), would it be possible to only decrypt SSH keys upon request?
Instead of one big performance hit from multiple keys at launch, only the performance hit of decrypting one key when required would be inflicted.