Environment variable secrets

In addition to the current secret types (files and SSH/PGP keys), I would like to be able to add environment variables.

Currently, I'm putting values in a file and adding the following commands to all tasks, but this isn't very wieldy when there are many tasks in a manifest:

set +x
. ~/.buildsecrets
set -x

Related: https://todo.sr.ht/~sircmpwn/builds.sr.ht/184

Assigned to
4 years ago
1 year, 8 months ago
No labels applied.

~deph0 4 years ago

This would be a great addition, thumbs up for this from me.

~tristan957 4 years ago

Thanks for the set workaround.

~colbyhub 3 years ago

Thanks for the workaround ~evhan, but native support would be really nice!

~ajhalili2006 1 year, 8 months ago

For me, I usually use an secret management CLi (e.g. Doppler, HashiCorp Vault) and drop an init script or an prepared config for these as secret as workaround.

Register here or Log in to comment, or comment via email.