mirrors/sops-nix
1
0
Fork 0
mirror of https://github.com/Mic92/sops-nix.git synced 2024-12-14 11:57:52 +00:00
Code Activity

Merge pull request #38 from ryantm/patch-1

Browse source 
slight rewording of README
This commit is contained in:
Jörg Thalheim 2020-08-28 14:16:19 +01:00 committed by GitHub
commit 412ba17f0d
No known key found for this signature in database
GPG key ID: 4AEE18F83AFDEB23
1 changed files with 1 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

2
README.md
View file

@ -21,7 +21,7 @@ key management APIs such as AWS KMS, GCP KMS, Azure Key Vault or Hashicorp's vau
- Works well in teams: sops-nix comes with nix-shell hooks that allows quickly import multiple people to import all used keys.
The cryptography used in sops is designed to be scalable: Secrets are only encrypted once with a master key
instead of each machine/developer key.
- CI friendly: Since sops files can be added to the nix store as well without leaking secrets, machine definition can be build as a whole.
- CI friendly: Since sops files can be added to the Nix store without leaking secrets, a machine definition can be built as a whole.
- Atomic upgrades: New secrets are written to a new directory which replaces the old directory in an atomic step.
- Rollback support: If sops files are added to Nix store, old secrets can be rolled back. This is optional.
- Fast: Unlike solutions implemented by NixOps, krops and morph there is no extra step required to upload secrets