This project began as a shell script to invoke the
on the variables in the environment, looking for anything with a prefix of
"decrypt:", decrypting it using AWS KMS using the instance's profile, and
exporting the decrypted value back to the environment before exec to the
This is used as a Docker entrypoint for containers to be able to decrypt encrypted environment variables passed into it.
This project is a replacement for the ApplauseOSS/kms-encryption-toolbox
supplied shell script,