Skip to content

craftypath/kubectl-sops

BranchesTags

Repository files navigation

kubectl-sops

License

A kubectl plugin for creating SopsSecret resources.

See https://github.com/craftypath/sops-operator.

The plugin automatically encrypts data using Mozilla SOPS and wraps them into a SopsSecret. The interface is the same as that of kubectl create secret. Additional args for SOPS must be passed after the -- delimiter.

Installation

Download a release for your platform and add it to the PATH. A distribution via Krew is planned.

Examples

From literal values

kubectl sops create secret generic test-secret --from-literal foo=foo_secret --from-literal bar=bar_secret -- \
    --kms arn:aws:kms:eu-central-1:123456789012:key/ffad06af-a6cc-43e5-ad61-51db75d17c77

From file

kubectl sops create secret generic test-secret --from-file test.yaml -- \
    --kms arn:aws:kms:eu-central-1:123456789012:key/ffad06af-a6cc-43e5-ad61-51db75d17c77

From file printing resulting YAML without applying it

kubectl sops create secret generic test-secret --from-literal foo.yaml="bar: barvalue" --dry-run -o yaml -- \
    --kms arn:aws:kms:eu-central-1:123456789012:key/ffad06af-a6cc-43e5-ad61-51db75d17c77

About

A kubectl-plugin for SOPS operator https://github.com/craftypath/sops-operator

Topics

plugin kubernetes kubectl kubernetes-operator sops sops-operator

Resources

Readme

License

Apache-2.0 license
Activity
Custom properties

Stars

2 stars

Watchers

2 watching

Forks

2 forks
Report repository

Releases 4

v0.4.0 Latest
Feb 15, 2021
+ 3 releases

Languages