Skip to main content

pre-commit hook to ensure that files that should be encrypted with sops are in fact encrypted

Project description

pre-commit-hook-ensure-sops

A pre-commit hook to ensure that users don't accidentally check-in unencrypted files into a repository that uses sops to safely store encrypted secrets.

By default, any file with the word secret in its path is required to be encrypted with sops. This means any files under a directory named secret are also required to be encrypted. If you want to exempt specific files or directories from this requirement in your repository, use the exclude option in your .pre-commit-config.yaml. When pushing secrets to a repo, better safe than sorry :)

Installation

Add this to your .pre-commit-config.yaml:

  - repo: https://github.com/yuvipanda/pre-commit-hook-ensure-sops
    rev: v1.0
    hooks:
      - id: sops-encryption
        # Uncomment to exclude all markdown files from encryption
        # exclude: *.\.md

Project details


Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Source Distribution

pre-commit-hook-ensure-sops-1.1.tar.gz (3.8 kB view hashes)

Uploaded Source

Built Distribution

Supported by

AWS AWS Cloud computing and Security Sponsor Datadog Datadog Monitoring Fastly Fastly CDN Google Google Download Analytics Microsoft Microsoft PSF Sponsor Pingdom Pingdom Monitoring Sentry Sentry Error logging StatusPage StatusPage Status page