You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
We would like to have a better solution to handle sencrets within helm usage in the ods-pipeline, basically required within ods-deploy-helm and documentation for the initial/updating project and component secrets.
We have seen that age is being recommended to be used by sops and helm-secrets is adding support to it.
The proposal is then to add support for age (make it default) and replace the current default pgp approach.
@gerardcl Depends how you do it. If we replace PGP, then this is a breaking change. That said, we are pre-1.0, which means any breaking change can be introduced in a minor version. Whatever is in master is going to be released as 0.2.0, so you can introduce the change in master. Personally I am OK with going all-in with age - otherwise we need to test+support two ways of doing the same thing. Until we encounter a use case that needs PGP I would try to live without it.
From conversations here: #282
We would like to have a better solution to handle sencrets within helm usage in the
ods-pipeline
, basically required withinods-deploy-helm
and documentation for the initial/updating project and component secrets.We have seen that
age
is being recommended to be used bysops
andhelm-secrets
is adding support to it.The proposal is then to add support for
age
(make it default) and replace the current defaultpgp
approach.FYI @renedupont @michaelsauter @kuebler
The text was updated successfully, but these errors were encountered: