Working with real KMS key arns is hard to decipher, it'd be great if the SOPS_KMS_ARN field was somehow able to take kms aliases instead. Consider supporting another env var like SOPS_KMS_ALIAS_ARN that will be a wrapper around the SOPS_KMS_ARN abilities (multiple kms keys, assume roles, etc).
Working with real KMS key arns is hard to decipher, it'd be great if the
SOPS_KMS_ARNfield was somehow able to take kms aliases instead. Consider supporting another env var likeSOPS_KMS_ALIAS_ARNthat will be a wrapper around theSOPS_KMS_ARNabilities (multiple kms keys, assume roles, etc).