fnox vs secretspec

codekiln · codekiln · commit 95ca05a2b200 · 2026-04-24T09:15:14.000-04:00
diff --git a/journals/2026_04_23.md b/journals/2026_04_23.md
@@ -1,8 +1,8 @@
 - [exe.dev](https://exe.dev/docs/what-is-exe) - see blog post [crawshaw - 2026-04-22](https://crawshaw.io/blog/building-a-cloud) - this is a bespoke micro neocloud provider made by an individual.
 - interesting discussions
 	- of [[NixOS]] integration with [[secretspec]] [NixOS integration · Issue #65 · cachix/secretspec](https://github.com/cachix/secretspec/issues/65)
-	- of [[mise]] creator's new [[secretspec]]-type project that integrates with mise, [Mention fnox · Issue #42 · cachix/secretspec](https://github.com/cachix/secretspec/issues/42) - derailed into [[AI/Anti]] rant
-	- [[@jdx]]
+	- of [[mise]] creator [[@jdx]]'s new [[secretspec]]-type project that integrates with mise, [[fnox]] - [Mention fnox · Issue #42 · cachix/secretspec](https://github.com/cachix/secretspec/issues/42) - derailed into [[AI/Anti]] rant
+		- see also [[fnox/vs/secretspec]]
 - ## with [[Adobe]], the simplest things are the hardest
 	- This morning I wanted to a lightweight edits of a movie file that was in [[Lightroom/Classic]]. I just needed to edit the start and end times and add some text.
 		- Discovered that [[Adobe/Rush]] was discontinued (technically, it will no longer be available in September). Apparently Adobe no longer has a lightweight, desktop-native video editor; the closest thing is [[Adobe/Premiere/Pro]], which is, needless to say, overkill for this use case.
diff --git a/journals/2026_04_24.md b/journals/2026_04_24.md
@@ -5,6 +5,7 @@
 		- [[Learning/Idea/26/03/Terminal toolbelt learning]]
 		- [[OpenAI/Codex/CLI]] renamed from `OpenAI/GitHub/codex`
 	- ### [[Filed]]
+		- [[Google/AI/Edge/Eloquent]]
 		- [[Interop/Adversarial]] created with [[Person/Cory Doctorow]] definitions and verified EFF Deeplinks citations (2019 interoperability series)
 		- [[Lazygit/26/04/24 Fri Issues with git merge conflict resolution]]
 		- [[Lazygit/Keyshort/Show Reflog]]
@@ -13,4 +14,4 @@
 		- [[git/reflog]]
 		- [[git/show]]
 		- [[OpenAI/Codex/CLI/Q/Is there a way to export a transcript of a conversation to a file?]]
-		- [[pbcopy]]
+		- [[pbcopy]]
diff --git a/pages/GitHub___Issue.md b/pages/GitHub___Issue.md
@@ -0,0 +1,6 @@
+alias:: [[GitHub Issues]]
+tags:: [[Project Management]]
+
+- # GitHub Issues
+	- By default each [[GitHub/Repo]] comes with an Issues tab where the public can post issues.
+	- Typically, each [[PR]] closes at least one github issue.
diff --git a/pages/fnox___vs___secretspec.md b/pages/fnox___vs___secretspec.md
@@ -1,6 +1,10 @@
-- Purpose of this page
-	- Highlight **capabilities that show up in one tool’s public story but not the other’s**, so you can scan for gaps instead of reading two parallel product pitches. Provider catalogs change; treat bullets as **“documented on the official site when this note was written”**, then verify in each project’s current docs. [^1] [^2]
-- ## Features emphasized for **fnox** but not for **[[secretspec]]**
+# [[fnox]] vs [[secretspec]]
+	- An attempt to highlight **capabilities that show up in one tool’s public story but not the other’s**.
+	- [[My Notes]]
+		- [[My Thoughts]] [[2026-04-24 Fri]]
+			- think that [[@jdx]] took a look at secretspec's blog post [[devenv/Blog/25/07/Announcing SecretSpec]] and said "this seems too perfectionistic" and "i could do better than that" w.r.t. how [[secretspec]] thinks that using tools like [[sops]] and `age` to encrypt [[Secrets]] in a [[git/repo]] repo is not a good idea, while [[@jdx]] included that as a core featureset in [[fnox]].
+			- in general, [[fnox]] seems like it has more integrations and is moving faster, but it doesn't have a [[GitHub Issues]] tab, which is the first time I've ever seen that. this decision reminds me of when youtube videos and blog posts have comments disabled. basically, he's offering his own solution for himself to the public, but not asking for contributions. part of me reticulates a bit at that thought; how will he catch all the bugs? but then again, this makes me think about how [[nvim/treesitter]]'s creator recently archived the project because the [[Open Source]] community was just nasty to him. If this is his way of making his personally useful stuff public while staying sane, ... that seems fine to me!
+- ## Features emphasized for [[fnox]] but not for **[[secretspec]]**
 	- **Encrypt-to-git in the project file**
 		- **fnox** documents storing **encrypted ciphertext** (or KMS-style encrypted payloads) **inside `fnox.toml`** that you commit—for example via **age** (including SSH-key flows) or **AWS / Azure / GCP KMS**—so teammates clone **values-in-repo** without plaintext in history. [^1]
 		- **[[secretspec]]**’s public positioning is the opposite: **`secretspec.toml` declares requirements only**; it should **not** carry real secret material, even encrypted—the committed file is the **contract**, not the vault. [^2]
@@ -44,4 +48,4 @@
 	- [[Person/Jeff Dickey/GitHub/fnox]] — canonical repo link
 - ## Footnotes
 	- [^1]: https://fnox.jdx.dev/
-	- [^2]: https://secretspec.dev/
+	- [^2]: https://secretspec.dev/
