Offer a way to manage secrets in the source code, encrypted #929
Martinsos
started this conversation in
Feature suggestions / feedback
Replies: 2 comments
-
@cursorial also inquired in this direction:
|
Beta Was this translation helpful? Give feedback.
0 replies
-
https://infisical.com/ -> they are offering an open source solution for this, so potentially interesting. |
Beta Was this translation helpful? Give feedback.
0 replies
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
-
Similar like Codeship did some time ago -> you could have secrets in your source code, committed to vcs (git), encrypted with a master key that is not committed but is kept local.
So instead of defining them all via env vars which are local, you would keep only the master key local, which makes it easier to distribute and track secrets.
Also, you could organize secrets per environments.
This is still just an idea, it needs to be evaluated in more details, especially from the security side.
Here is an exchange @breadchris and I had about this:
Beta Was this translation helpful? Give feedback.
All reactions