|
|
|
|
|
|
by pxc
709 days ago
|
|
|
You can use direnv in conjunction with sops or your favorite cloud-centric secrets management utility to automate secrets handling without writing any plaintext secrets (or any secrets at all, if you want) to version control. .envrc is a whole bash script, so it can invoke command line tools that fetch secrets over the network or decrypt them from the disk. |
|
|