Skip to main content
31 questions
Newest Active Bountied Unanswered
Best practices
0 votes
1 replies
60 views

I'm a DevOps engineer trying to implement password rotation for multiple services, some are Python, some Node but most are Kotlin and are using spring-boot, Our passwords are encrypted outside AWS and ...
Erez Hochman's user avatar
  • 1,708
0 votes
1 answer
113 views

I'm trying to use fluxcd on my kubernetes cluster, which is working perfectly fine. Now I wanted to add prometheus/grafana stack and use sops to decrypt the basic_auth part in the scrapingConfig from ...
Epi's user avatar
  • 31
2 votes
1 answer
1k views

I can't use docker compose and sops together, I don't know why sops exec-file file.env "docker compose --env-file {} up -d" hangs forever, but this works: sops exec-file file.env "cat ...
Ado's user avatar
  • 51
0 votes
1 answer
117 views

I am using sops to encrypt the realm.properties file which has the credentials for users to login to Rundeck. It is working on the ECS mode of deployment but seeing a Invalid User and Password. error ...
skp15's user avatar
  • 41
3 votes
1 answer
1k views

Mozilla Sops uses a .sops.yaml files which among others contains the public keys that are used for encryption. It would be convenient to include these in your repo so you can easily keep track what ...
musicformellons's user avatar
  • 13.6k
1 vote
0 answers
393 views

In the our Helm repository, we have a CI/CD with GitHub actions, when we change helm templates or values, then CI will package helm stuff and push it to GCR as an image. see it as following GitHub ...
Joe's user avatar
  • 713
0 votes
1 answer
159 views

Lets imaging we have configured in sops.yaml that 2 out of 3 users have to present their private keys to decrypt the encrypted values. Lets imagine a situation Bob and Alice decided to change the file ...
Alex K's user avatar
  • 145
1 vote
1 answer
4k views

I'm using Grafana with Helm https://github.com/grafana/helm-charts/tree/main/charts/grafana. I would like to switch from SQLite 3 to PostgreSQL as my backend database. However, I'm concerned about the ...
Julio Enrique Guzmán Barraza's user avatar
  • 21
0 votes
1 answer
2k views

I'm trying to extract values from a SOPS-encrypted JSON file to export them into environment variables in order to run a web app, but the extraneous newlines keeps driving me crazy. For example, given ...
toraritte's user avatar
  • 8,735
3 votes
1 answer
3k views

I'm trying to create a secrets.json file that can be checked into git. I want for my entire team to be able to add / encrypt a value to the secrets file, but not decrypt a value. We're using Google ...
Scott Pierce's user avatar
  • 81
-1 votes
1 answer
1k views

i have a working sops solution to encrypt files using 1 aws accounts (aws_sops) KMS and then deploy the secrets to another aws accounts secret manager (aws_secrets). This is done via connecting to the ...
Staggerlee011's user avatar
  • 1,053
0 votes
1 answer
850 views

I need to encrypt a file using SOPS. The string I am trying to encrypt is the "XXXXXXXX" part below: aws=($(aws sts assume-role --role-arn arn:aws:iam::XXXXXXXXXXXXX:role/dummy --role-...
Bluz's user avatar
  • 6,560
1 vote
0 answers
122 views

I want to integrate sops with Kubernetes to decrypt the K8's resource. We are using Helm chart for deployment through Jenkins CICD. Our Kubernetes charts is placed on Git where we run a scripts to ...
Saleem Ullah's user avatar
  • 11
9 votes
3 answers
12k views

I'm using Mozilla SOPS to encrypt secrets, the results of which are committed to a git repo shared by the other members of a project. When using SOPS for personal projects, I am using age to encrypt/...
Tyler's user avatar
  • 101
1 vote
2 answers
3k views

I have configured Flux to use SOPS to decrypt. Here's a brief highlight of what I did. In the gotk-sync.yaml file I have added the decryption property. apiVersion: kustomize.toolkit.fluxcd.io/v1beta2 ...
RajV's user avatar
  • 7,272

15 30 50 per page
1
2 3