• flashgnash@lemm.ee
      link
      fedilink
      English
      arrow-up
      1
      ·
      9 months ago

      It looks to me like a way to declaratively install your ssh keys which from what I’m reading sops doesn’t appear to do

      Am I wrong in taking the conclusion SOPS stores that stuff encrypted at rest, and the only way to use them is either through the SOPS cli, or through whatever tool that wants the secrets implementing their library?

      • InnerScientist@lemmy.world
        link
        fedilink
        English
        arrow-up
        1
        ·
        9 months ago

        Sops-nix decrypts secrets at runtime and allows you to create symlinks to the secret files (/run/secret.d…) so this could be used for ssh keys AFAIK.

  • flashgnash@lemm.ee
    link
    fedilink
    English
    arrow-up
    3
    ·
    9 months ago

    Looks cool, but why use yaml? I never understand why people choose to use yaml as their configuration format