I am a retired software engineer. I have a small home lab of less than 10 servers and
workstations. I also manage a very small number of cloud instances. Having a networked
secrets system is not a viable solution for me for several reasons, so I needed a local
secrets tool that could be managed easily via ansible.
Before you mention how insecure this tool is, I must say that it is protected by file
permissions in the home directory of my concierge user account. I take normal
precautions to protect access to this (and other user accounts) so if the concierge or
root account is breached, the contents of my secrets files are the least of my worries.
Features
Wrapper functions to allow adding, updating, and looking up data from a keepass database file
Fully typed with annotations and checked with mypy, PEP561 compatible
