Giters

unguiculus / kubectl-sops

A kubectl-plugin for SOPS operator

Geek Repo:Geek Repo

Github PK Tool:Github PK Tool

kubectl-sops

License

A kubectl plugin for creating SopsSecret resources.

See https://github.com/craftypath/sops-operator.

The plugin automatically encrypts data using Mozilla SOPS and wraps them into a SopsSecret. The interface is the same as that of kubectl create secret. Additional args for SOPS must be passed after the -- delimiter.

Installation

Download a release for your platform and add it to the PATH. A distribution via Krew is planned.

Examples

From literal values

kubectl sops create secret generic test-secret --from-literal foo=foo_secret --from-literal bar=bar_secret -- \
    --kms arn:aws:kms:eu-central-1:123456789012:key/ffad06af-a6cc-43e5-ad61-51db75d17c77

From file

kubectl sops create secret generic test-secret --from-file test.yaml -- \
    --kms arn:aws:kms:eu-central-1:123456789012:key/ffad06af-a6cc-43e5-ad61-51db75d17c77

From file printing resulting YAML without applying it

kubectl sops create secret generic test-secret --from-literal foo.yaml="bar: barvalue" --dry-run -o yaml -- \
    --kms arn:aws:kms:eu-central-1:123456789012:key/ffad06af-a6cc-43e5-ad61-51db75d17c77

About

A kubectl-plugin for SOPS operator

License:Apache License 2.0

Languages

Language:Go 78.8%Language:Shell 21.2%