mirror of https://github.com/external-secrets/external-secrets.git synced 2024-12-14 11:57:59 +00:00

External Secrets Operator reads information from a third-party service like AWS Secrets Manager and automatically injects the values as Kubernetes Secrets.

external-secrets hacktoberfest kubernetes kubernetes-secrets secrets-manager

Find a file

Vishal Singha Roy a755a49422 Add IBM provider metadata to secret labels and/or annotations (#2429 ) * Set metadata to external secrets managed by cluster external secrets (#2413) Signed-off-by: shuheiktgw <s-kitagawa@mercari.com> Signed-off-by: Vishal Singha Roy <vishal.singha.roy@ibm.com> * Pull secret metadata from IBM Secrets Manager Signed-off-by: Vishal Singha Roy <vishal.singha.roy@ibm.com> * Add lower-kebab name transformer to Doppler provider (#2418) Signed-off-by: Joel Watson <joel.watson@doppler.com> Signed-off-by: Vishal Singha Roy <vishal.singha.roy@ibm.com> * Fix E2E test setup on non-linux machines (#2414) Signed-off-by: Michael Sauter <michael.sauter@boehringer-ingelheim.com> Signed-off-by: Vishal Singha Roy <vishal.singha.roy@ibm.com> * Removing IncludeSecretMetadata from externalsecret_types.go Signed-off-by: Vishal Singha Roy <vishal.singha.roy@ibm.com> * Changes to call IBM Secrets Manager once in case of KV Secret Signed-off-by: Vishal Singha Roy <vishal.singha.roy@ibm.com> * Removing extra parameters to getKVSecret() is not required Signed-off-by: Vishal Singha Roy <vishal.singha.roy@ibm.com> * Removing linting errors Signed-off-by: Vishal Singha Roy <vishal.singha.roy@ibm.com> --------- Signed-off-by: shuheiktgw <s-kitagawa@mercari.com> Signed-off-by: Vishal Singha Roy <vishal.singha.roy@ibm.com> Signed-off-by: Joel Watson <joel.watson@doppler.com> Signed-off-by: Michael Sauter <michael.sauter@boehringer-ingelheim.com> Co-authored-by: Shuhei Kitagawa <shuheiktgw@users.noreply.github.com> Co-authored-by: Vishal Singha Roy <vishal.singha.roy@ibm.com> Co-authored-by: Joel Watson <joel@watsonian.net> Co-authored-by: Michael Sauter <mail@michaelsauter.net>		2023-07-03 08:50:45 +02:00
.github	fix: run helm release on release branch as well (#2444 )	2023-06-22 23:22:21 +02:00
apis	Fix ClusterExternalSecret printcolumns (#2451 )	2023-06-27 11:06:05 +02:00
assets	chore: add pento to sponsors	2022-04-29 20:58:09 +02:00
cmd	feat: add e2e tests for aws role-based auth (#2376 )	2023-06-12 12:58:29 +02:00
config/crds/bases	Fix ClusterExternalSecret printcolumns (#2451 )	2023-06-27 11:06:05 +02:00
deploy	Fix ClusterExternalSecret printcolumns (#2451 )	2023-06-27 11:06:05 +02:00
design	Make ExternalSecret a provisioned service (#2263 )	2023-05-16 22:06:55 +02:00
docs	docs: refer to support table for deletionPolicy support (#2454 )	2023-06-27 22:33:48 +02:00
e2e	chore: update dependencies (#2448 )	2023-06-26 13:11:47 +02:00
hack	Add support for cert-manager managed webhook certs (#2394 )	2023-06-21 22:07:24 +02:00
overrides	Using new syntax for overrides	2022-02-01 15:41:50 -03:00
pkg	Add IBM provider metadata to secret labels and/or annotations (#2429 )	2023-07-03 08:50:45 +02:00
terraform	chore: bump dependencies (#2012 )	2023-02-14 17:42:44 +00:00
.clomonitor.yml	feat: attach sbom/provenance files to GH release, fix clomonitor (#1656 )	2022-10-27 08:59:19 +02:00
.dockerignore	✨Add standalone Dockerfile (#1328 )	2022-07-12 05:55:22 -03:00
.editorconfig	cleanup: add lint and editorconfig	2020-12-21 14:38:48 -05:00
.gitignore	Add Conjur provider (#2412 )	2023-06-21 11:17:00 +02:00
.golangci.yaml	Add reconcile_duration metrics (#2382 )	2023-06-05 21:26:25 +02:00
ADOPTERS.md	added PHOENIX MEDIA to the list of adopters (#2357 )	2023-05-25 19:34:40 +02:00
changelog.json	feat: helm release workflow	2021-05-03 22:12:39 +02:00
CNAME	Create CNAME	2021-03-05 18:26:07 +01:00
Dockerfile	chore: replace alpine by distroless	2021-12-06 14:17:24 +01:00
Dockerfile.standalone	chore(deps): bump golang from 1.20.4-alpine to 1.20.5-alpine (#2405 )	2023-06-12 11:51:02 +02:00
Dockerfile.ubi	chore: bump dependencies (#1667 )	2022-10-25 22:42:34 +02:00
go.mod	Add IBM provider metadata to secret labels and/or annotations (#2429 )	2023-07-03 08:50:45 +02:00
go.sum	Add IBM provider metadata to secret labels and/or annotations (#2429 )	2023-07-03 08:50:45 +02:00
GOVERNANCE.md	Propolsal for MAINTAINERS.md and GOVERNANCE.md (#1607 )	2022-10-25 22:51:52 +02:00
LICENSE	initial commit	2020-11-19 16:34:16 +01:00
main.go	fix: aws parameter store json decode, bump go 1.19 (#1525 )	2022-09-06 19:46:36 +02:00
MAINTAINERS.md	Propolsal for MAINTAINERS.md and GOVERNANCE.md (#1607 )	2022-10-25 22:51:52 +02:00
Makefile	Add Conjur provider (#2412 )	2023-06-21 11:17:00 +02:00
PROJECT	feat: implement ClusterExternalSecret (#542 )	2022-03-20 09:32:27 +01:00
README.md	fix: change meeting time (#2154 )	2023-03-25 00:47:10 +01:00
SECURITY.md	feat: security policy & dependabot (#60 )	2021-03-17 08:32:32 +01:00
tools.go	✨Feature/push secret (#1315 )	2022-11-29 16:04:46 -03:00

README.md

External Secrets

External Secrets Operator is a Kubernetes operator that integrates external secret management systems like AWS Secrets Manager, HashiCorp Vault, Google Secrets Manager, Azure Key Vault, IBM Cloud Secrets Manager, Akeyless and many more. The operator reads information from external APIs and automatically injects the values into a Kubernetes Secret.

Multiple people and organizations are joining efforts to create a single External Secrets solution based on existing projects. If you are curious about the origins of this project, check out this issue and this PR.

Documentation

External Secrets Operator guides and reference documentation is available at external-secrets.io. Also see our stability and support policy.

Contributing

We welcome and encourage contributions to this project! Please read the Developer and Contribution process guides. Also make sure to check the Code of Conduct and adhere to its guidelines.

Sponsoring

Please consider sponsoring this project, there are many ways you can help us with: engineering time, providing infrastructure, donating money, etc. We are open to cooperations, feel free to approach as and we discuss how this could look like. We can keep your contribution anonymized if that's required (depending on the type of contribution), and anonymous donations are possible inside Opencollective.

Bi-weekly Development Meeting

We host our development meeting every odd wednesday at 8:00 PM Berlin Time on Jitsi. Meeting notes are recorded on hackmd.

Anyone is welcome to join. Feel free to ask questions, request feedback, raise awareness for an issue, or just say hi. ;)

Security

Please report vulnerabilities by email to contact@external-secrets.io (or cncf-ExternalSecretsOp-maintainers@lists.cncf.io). Also see our SECURITY.md file for details.

software bill of materials

We attach SBOM and provenance file to our GitHub release. Also, they are attached to container images.

Adopters

Please create a PR and add your company or project to our ADOPTERS.md file if you are using our project!

Roadmap

You can find the roadmap in our documentation: https://external-secrets.io/main/contributing/roadmap/