SCTL is not End2End encryption, instead SCTL is more of an envelope, in which you store secrets until they are needed, and those secrets should only remain available in plain text while the operation that needs them is active.
GNU General Public License v3.0
8
stars
2
forks
source link
sctl run on 1.2.1 does not respect envelope keys #51
sctl version: 1.2.1 sctl command: run
expectation:
With a key URI in the envelope, sctl should surface that and consume it in the context of
sctl run. Otherwise the user expectation is broken.What happened: