Committing secrets to your Git Repo can expose information like passwords, access tokens, and other types of sensitive information. Some might think that committing secrets to a private Git Repo is OK, but I am here to tell you it’s not. If you’re going to commit secrets to a git repo, private or public, you should encrypt them first using Mozilla SOPS (Secret Operations) and AGE. SOPS is an editor of encrypted files that supports YAML, JSON, ENV, INI and BINARY formats and encrypts with AWS KMS, GCP KMS, Azure Key Vault, age, and PGP. Age is a simple, modern and secure file encryption tool, format, and build using Go. it can encrypt and decrypt your files making then safe enough to commit to your Git repos!
A HUGE thanks to Datree for sponsoring this video!
Combat misconfigurations. Empower engineers.
★ Subscribe! https://l.technotim.live/subscribe
★ I’m Live on Twitch https://l.technotim.live/twitch
★ Get Help in Our Discord Community! https://l.technotim.live/discord
★ Subscribe to Techno Tim Talks! https://l.technotim.live/subscribe-ttt
★ Documentation found here https://l.technotim.live/docs
⚙ Gear Recommendations ⚙
(Affiliate links may be included in this description. I may receive a small commission at no cost to you.)
♦ Patreon https://l.technotim.live/patreon
♦ GitHub https://l.technotim.live/github
♦ Twitch https://l.technotim.live/twitch
♦ Twitter https://l.technotim.live/twitter
♦ Discord https://l.technotim.live/discord
♦ Instagram https://l.technotim.live/instagram
♦ Facebook https://l.technotim.live/facebook
♦ TikTok https://l.technotim.live/tiktok