Add support for OVH KMS in SOPS#1904
Closed
arunbhagyanath wants to merge 124 commits intogetsops:mainfrom
Closed
Conversation
arunbhagyanath
force-pushed
the
feature/ovh-kms
branch
from
e60a351 to
3b12f6a
Compare
![github-advanced-security[bot]](https://avatars.githubusercontent.com/in/57789?s=60&v=4){kind=small}
| if err != nil { | ||
| return rotateOpts{}, err | ||
| } | ||
| rmMasterKeys, err := getMasterKeys(c, kmsEncryptionContext, "rm-kms", "rm-pgp", "rm-gcp-kms", "rm-azure-kv", "rm-hc-vault-transit", "rm-age", "rm-ovh-kms") |
Check warning
Code scanning / CodeQL
Useless assignment to local variable
| return rotateOpts{}, err | ||
| } | ||
| var masterKeys []keys.MasterKey | ||
| masterKeys = append(masterKeys, addMasterKeys...) |
Check warning
Code scanning / CodeQL
Useless assignment to local variable
Signed-off-by: Charlie Getzen <charlie_g@regrello.com> Signed-off-by: Arun Bhagyanath <a.bhagyanath@eclecticiq.com>
Signed-off-by: sledzikowy <48012758+sledzikowy@users.noreply.github.com> Signed-off-by: Arun Bhagyanath <a.bhagyanath@eclecticiq.com>
Bumps [github.com/go-jose/go-jose/v4](https://github.com/go-jose/go-jose) from 4.0.4 to 4.0.5. - [Release notes](https://github.com/go-jose/go-jose/releases) - [Changelog](https://github.com/go-jose/go-jose/blob/main/CHANGELOG.md) - [Commits](go-jose/go-jose@v4.0.4...v4.0.5) --- updated-dependencies: - dependency-name: github.com/go-jose/go-jose/v4 dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: Arun Bhagyanath <a.bhagyanath@eclecticiq.com>
Signed-off-by: Brian McGee <brian@bmcgee.ie> Signed-off-by: Arun Bhagyanath <a.bhagyanath@eclecticiq.com>
Signed-off-by: Felix Fontein <felix@fontein.de> Signed-off-by: Arun Bhagyanath <a.bhagyanath@eclecticiq.com>
Basically readPassphrase was replaced by readSecret in FiloSottile/age@c0e80ef so we can just use that and stick to the latest version of cmd/age/tui.go. Signed-off-by: Felix Fontein <felix@fontein.de> Signed-off-by: Arun Bhagyanath <a.bhagyanath@eclecticiq.com>
Signed-off-by: Felix Fontein <felix@fontein.de> Signed-off-by: Arun Bhagyanath <a.bhagyanath@eclecticiq.com>
Signed-off-by: Felix Fontein <felix@fontein.de> Signed-off-by: Arun Bhagyanath <a.bhagyanath@eclecticiq.com>
Signed-off-by: Felix Fontein <felix@fontein.de> Signed-off-by: Arun Bhagyanath <a.bhagyanath@eclecticiq.com>
Bumps the go group with 11 updates: | Package | From | To | | --- | --- | --- | | [github.com/ProtonMail/go-crypto](https://github.com/ProtonMail/go-crypto) | `1.1.5` | `1.1.6` | | [github.com/aws/aws-sdk-go-v2](https://github.com/aws/aws-sdk-go-v2) | `1.36.2` | `1.36.3` | | [github.com/aws/aws-sdk-go-v2/config](https://github.com/aws/aws-sdk-go-v2) | `1.29.7` | `1.29.8` | | [github.com/aws/aws-sdk-go-v2/credentials](https://github.com/aws/aws-sdk-go-v2) | `1.17.60` | `1.17.61` | | [github.com/aws/aws-sdk-go-v2/feature/s3/manager](https://github.com/aws/aws-sdk-go-v2) | `1.17.63` | `1.17.64` | | [github.com/aws/aws-sdk-go-v2/service/kms](https://github.com/aws/aws-sdk-go-v2) | `1.37.19` | `1.38.0` | | [github.com/aws/aws-sdk-go-v2/service/s3](https://github.com/aws/aws-sdk-go-v2) | `1.77.1` | `1.78.0` | | [github.com/aws/aws-sdk-go-v2/service/sts](https://github.com/aws/aws-sdk-go-v2) | `1.33.15` | `1.33.16` | | [golang.org/x/crypto](https://github.com/golang/crypto) | `0.34.0` | `0.35.0` | | [google.golang.org/api](https://github.com/googleapis/google-api-go-client) | `0.222.0` | `0.223.0` | | [google.golang.org/genproto/googleapis/rpc](https://github.com/googleapis/go-genproto) | `0.0.0-20250212204824-5a70512c5d8b` | `0.0.0-20250219182151-9fdb1cabc7b2` | Updates `github.com/ProtonMail/go-crypto` from 1.1.5 to 1.1.6 - [Release notes](https://github.com/ProtonMail/go-crypto/releases) - [Commits](ProtonMail/go-crypto@v1.1.5...v1.1.6) Updates `github.com/aws/aws-sdk-go-v2` from 1.36.2 to 1.36.3 - [Release notes](https://github.com/aws/aws-sdk-go-v2/releases) - [Changelog](https://github.com/aws/aws-sdk-go-v2/blob/main/changelog-template.json) - [Commits](aws/aws-sdk-go-v2@v1.36.2...v1.36.3) Updates `github.com/aws/aws-sdk-go-v2/config` from 1.29.7 to 1.29.8 - [Release notes](https://github.com/aws/aws-sdk-go-v2/releases) - [Changelog](https://github.com/aws/aws-sdk-go-v2/blob/main/changelog-template.json) - [Commits](aws/aws-sdk-go-v2@config/v1.29.7...config/v1.29.8) Updates `github.com/aws/aws-sdk-go-v2/credentials` from 1.17.60 to 1.17.61 - [Release notes](https://github.com/aws/aws-sdk-go-v2/releases) - [Changelog](https://github.com/aws/aws-sdk-go-v2/blob/main/changelog-template.json) - [Commits](aws/aws-sdk-go-v2@credentials/v1.17.60...credentials/v1.17.61) Updates `github.com/aws/aws-sdk-go-v2/feature/s3/manager` from 1.17.63 to 1.17.64 - [Release notes](https://github.com/aws/aws-sdk-go-v2/releases) - [Changelog](https://github.com/aws/aws-sdk-go-v2/blob/main/changelog-template.json) - [Commits](aws/aws-sdk-go-v2@feature/s3/manager/v1.17.63...feature/s3/manager/v1.17.64) Updates `github.com/aws/aws-sdk-go-v2/service/kms` from 1.37.19 to 1.38.0 - [Release notes](https://github.com/aws/aws-sdk-go-v2/releases) - [Changelog](https://github.com/aws/aws-sdk-go-v2/blob/service/s3/v1.38.0/CHANGELOG.md) - [Commits](aws/aws-sdk-go-v2@service/kms/v1.37.19...service/s3/v1.38.0) Updates `github.com/aws/aws-sdk-go-v2/service/s3` from 1.77.1 to 1.78.0 - [Release notes](https://github.com/aws/aws-sdk-go-v2/releases) - [Changelog](https://github.com/aws/aws-sdk-go-v2/blob/main/changelog-template.json) - [Commits](aws/aws-sdk-go-v2@service/s3/v1.77.1...service/s3/v1.78.0) Updates `github.com/aws/aws-sdk-go-v2/service/sts` from 1.33.15 to 1.33.16 - [Release notes](https://github.com/aws/aws-sdk-go-v2/releases) - [Changelog](https://github.com/aws/aws-sdk-go-v2/blob/main/changelog-template.json) - [Commits](aws/aws-sdk-go-v2@service/sns/v1.33.15...service/sns/v1.33.16) Updates `golang.org/x/crypto` from 0.34.0 to 0.35.0 - [Commits](golang/crypto@v0.34.0...v0.35.0) Updates `google.golang.org/api` from 0.222.0 to 0.223.0 - [Release notes](https://github.com/googleapis/google-api-go-client/releases) - [Changelog](https://github.com/googleapis/google-api-go-client/blob/main/CHANGES.md) - [Commits](googleapis/google-api-go-client@v0.222.0...v0.223.0) Updates `google.golang.org/genproto/googleapis/rpc` from 0.0.0-20250212204824-5a70512c5d8b to 0.0.0-20250219182151-9fdb1cabc7b2 - [Commits](https://github.com/googleapis/go-genproto/commits) --- updated-dependencies: - dependency-name: github.com/ProtonMail/go-crypto dependency-type: direct:production update-type: version-update:semver-patch dependency-group: go - dependency-name: github.com/aws/aws-sdk-go-v2 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: go - dependency-name: github.com/aws/aws-sdk-go-v2/config dependency-type: direct:production update-type: version-update:semver-patch dependency-group: go - dependency-name: github.com/aws/aws-sdk-go-v2/credentials dependency-type: direct:production update-type: version-update:semver-patch dependency-group: go - dependency-name: github.com/aws/aws-sdk-go-v2/feature/s3/manager dependency-type: direct:production update-type: version-update:semver-patch dependency-group: go - dependency-name: github.com/aws/aws-sdk-go-v2/service/kms dependency-type: direct:production update-type: version-update:semver-minor dependency-group: go - dependency-name: github.com/aws/aws-sdk-go-v2/service/s3 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: go - dependency-name: github.com/aws/aws-sdk-go-v2/service/sts dependency-type: direct:production update-type: version-update:semver-patch dependency-group: go - dependency-name: golang.org/x/crypto dependency-type: direct:production update-type: version-update:semver-minor dependency-group: go - dependency-name: google.golang.org/api dependency-type: direct:production update-type: version-update:semver-minor dependency-group: go - dependency-name: google.golang.org/genproto/googleapis/rpc dependency-type: direct:production update-type: version-update:semver-patch dependency-group: go ... Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: Arun Bhagyanath <a.bhagyanath@eclecticiq.com>
Bumps the ci group with 5 updates: | Package | From | To | | --- | --- | --- | | [actions/cache](https://github.com/actions/cache) | `4.2.1` | `4.2.2` | | [actions/download-artifact](https://github.com/actions/download-artifact) | `4.1.8` | `4.1.9` | | [docker/setup-qemu-action](https://github.com/docker/setup-qemu-action) | `3.4.0` | `3.6.0` | | [docker/setup-buildx-action](https://github.com/docker/setup-buildx-action) | `3.9.0` | `3.10.0` | | [slsa-framework/slsa-github-generator](https://github.com/slsa-framework/slsa-github-generator) | `2.0.0` | `2.1.0` | Updates `actions/cache` from 4.2.1 to 4.2.2 - [Release notes](https://github.com/actions/cache/releases) - [Changelog](https://github.com/actions/cache/blob/main/RELEASES.md) - [Commits](actions/cache@0c907a7...d4323d4) Updates `actions/download-artifact` from 4.1.8 to 4.1.9 - [Release notes](https://github.com/actions/download-artifact/releases) - [Commits](actions/download-artifact@fa0a91b...cc20338) Updates `docker/setup-qemu-action` from 3.4.0 to 3.6.0 - [Release notes](https://github.com/docker/setup-qemu-action/releases) - [Commits](docker/setup-qemu-action@4574d27...2910929) Updates `docker/setup-buildx-action` from 3.9.0 to 3.10.0 - [Release notes](https://github.com/docker/setup-buildx-action/releases) - [Commits](docker/setup-buildx-action@f7ce87c...b5ca514) Updates `slsa-framework/slsa-github-generator` from 2.0.0 to 2.1.0 - [Release notes](https://github.com/slsa-framework/slsa-github-generator/releases) - [Changelog](https://github.com/slsa-framework/slsa-github-generator/blob/main/CHANGELOG.md) - [Commits](slsa-framework/slsa-github-generator@v2.0.0...v2.1.0) --- updated-dependencies: - dependency-name: actions/cache dependency-type: direct:production update-type: version-update:semver-patch dependency-group: ci - dependency-name: actions/download-artifact dependency-type: direct:production update-type: version-update:semver-patch dependency-group: ci - dependency-name: docker/setup-qemu-action dependency-type: direct:production update-type: version-update:semver-minor dependency-group: ci - dependency-name: docker/setup-buildx-action dependency-type: direct:production update-type: version-update:semver-minor dependency-group: ci - dependency-name: slsa-framework/slsa-github-generator dependency-type: direct:production update-type: version-update:semver-minor dependency-group: ci ... Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: Arun Bhagyanath <a.bhagyanath@eclecticiq.com>
Bumps the rust group in /functional-tests with 1 update: [serde_json](https://github.com/serde-rs/json). Updates `serde_json` from 1.0.139 to 1.0.140 - [Release notes](https://github.com/serde-rs/json/releases) - [Commits](serde-rs/json@v1.0.139...v1.0.140) --- updated-dependencies: - dependency-name: serde_json dependency-type: direct:production update-type: version-update:semver-patch dependency-group: rust ... Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: Arun Bhagyanath <a.bhagyanath@eclecticiq.com>
Signed-off-by: Felix Fontein <felix@fontein.de> Signed-off-by: Arun Bhagyanath <a.bhagyanath@eclecticiq.com>
Signed-off-by: Sebastien Duthil <duthils@duthils.net> Signed-off-by: Arun Bhagyanath <a.bhagyanath@eclecticiq.com>
Bumps the go group with 13 updates: | Package | From | To | | --- | --- | --- | | [github.com/aws/aws-sdk-go-v2/config](https://github.com/aws/aws-sdk-go-v2) | `1.29.8` | `1.29.9` | | [github.com/aws/aws-sdk-go-v2/credentials](https://github.com/aws/aws-sdk-go-v2) | `1.17.61` | `1.17.62` | | [github.com/aws/aws-sdk-go-v2/feature/s3/manager](https://github.com/aws/aws-sdk-go-v2) | `1.17.64` | `1.17.65` | | [github.com/aws/aws-sdk-go-v2/service/kms](https://github.com/aws/aws-sdk-go-v2) | `1.38.0` | `1.38.1` | | [github.com/aws/aws-sdk-go-v2/service/s3](https://github.com/aws/aws-sdk-go-v2) | `1.78.0` | `1.78.1` | | [github.com/aws/aws-sdk-go-v2/service/sts](https://github.com/aws/aws-sdk-go-v2) | `1.33.16` | `1.33.17` | | [golang.org/x/crypto](https://github.com/golang/crypto) | `0.35.0` | `0.36.0` | | [golang.org/x/net](https://github.com/golang/net) | `0.35.0` | `0.37.0` | | [golang.org/x/sys](https://github.com/golang/sys) | `0.30.0` | `0.31.0` | | [golang.org/x/term](https://github.com/golang/term) | `0.29.0` | `0.30.0` | | [google.golang.org/api](https://github.com/googleapis/google-api-go-client) | `0.223.0` | `0.224.0` | | [google.golang.org/genproto/googleapis/rpc](https://github.com/googleapis/go-genproto) | `0.0.0-20250219182151-9fdb1cabc7b2` | `0.0.0-20250227231956-55c901821b1e` | | [google.golang.org/grpc](https://github.com/grpc/grpc-go) | `1.70.0` | `1.71.0` | Updates `github.com/aws/aws-sdk-go-v2/config` from 1.29.8 to 1.29.9 - [Release notes](https://github.com/aws/aws-sdk-go-v2/releases) - [Changelog](https://github.com/aws/aws-sdk-go-v2/blob/main/changelog-template.json) - [Commits](aws/aws-sdk-go-v2@config/v1.29.8...config/v1.29.9) Updates `github.com/aws/aws-sdk-go-v2/credentials` from 1.17.61 to 1.17.62 - [Release notes](https://github.com/aws/aws-sdk-go-v2/releases) - [Changelog](https://github.com/aws/aws-sdk-go-v2/blob/main/changelog-template.json) - [Commits](aws/aws-sdk-go-v2@credentials/v1.17.61...credentials/v1.17.62) Updates `github.com/aws/aws-sdk-go-v2/feature/s3/manager` from 1.17.64 to 1.17.65 - [Release notes](https://github.com/aws/aws-sdk-go-v2/releases) - [Changelog](https://github.com/aws/aws-sdk-go-v2/blob/main/changelog-template.json) - [Commits](aws/aws-sdk-go-v2@feature/s3/manager/v1.17.64...feature/s3/manager/v1.17.65) Updates `github.com/aws/aws-sdk-go-v2/service/kms` from 1.38.0 to 1.38.1 - [Release notes](https://github.com/aws/aws-sdk-go-v2/releases) - [Changelog](https://github.com/aws/aws-sdk-go-v2/blob/service/s3/v1.38.1/CHANGELOG.md) - [Commits](aws/aws-sdk-go-v2@service/s3/v1.38.0...service/s3/v1.38.1) Updates `github.com/aws/aws-sdk-go-v2/service/s3` from 1.78.0 to 1.78.1 - [Release notes](https://github.com/aws/aws-sdk-go-v2/releases) - [Changelog](https://github.com/aws/aws-sdk-go-v2/blob/main/changelog-template.json) - [Commits](aws/aws-sdk-go-v2@service/s3/v1.78.0...service/s3/v1.78.1) Updates `github.com/aws/aws-sdk-go-v2/service/sts` from 1.33.16 to 1.33.17 - [Release notes](https://github.com/aws/aws-sdk-go-v2/releases) - [Changelog](https://github.com/aws/aws-sdk-go-v2/blob/main/changelog-template.json) - [Commits](aws/aws-sdk-go-v2@service/sns/v1.33.16...service/sns/v1.33.17) Updates `golang.org/x/crypto` from 0.35.0 to 0.36.0 - [Commits](golang/crypto@v0.35.0...v0.36.0) Updates `golang.org/x/net` from 0.35.0 to 0.37.0 - [Commits](golang/net@v0.35.0...v0.37.0) Updates `golang.org/x/sys` from 0.30.0 to 0.31.0 - [Commits](golang/sys@v0.30.0...v0.31.0) Updates `golang.org/x/term` from 0.29.0 to 0.30.0 - [Commits](golang/term@v0.29.0...v0.30.0) Updates `google.golang.org/api` from 0.223.0 to 0.224.0 - [Release notes](https://github.com/googleapis/google-api-go-client/releases) - [Changelog](https://github.com/googleapis/google-api-go-client/blob/main/CHANGES.md) - [Commits](googleapis/google-api-go-client@v0.223.0...v0.224.0) Updates `google.golang.org/genproto/googleapis/rpc` from 0.0.0-20250219182151-9fdb1cabc7b2 to 0.0.0-20250227231956-55c901821b1e - [Commits](https://github.com/googleapis/go-genproto/commits) Updates `google.golang.org/grpc` from 1.70.0 to 1.71.0 - [Release notes](https://github.com/grpc/grpc-go/releases) - [Commits](grpc/grpc-go@v1.70.0...v1.71.0) --- updated-dependencies: - dependency-name: github.com/aws/aws-sdk-go-v2/config dependency-type: direct:production update-type: version-update:semver-patch dependency-group: go - dependency-name: github.com/aws/aws-sdk-go-v2/credentials dependency-type: direct:production update-type: version-update:semver-patch dependency-group: go - dependency-name: github.com/aws/aws-sdk-go-v2/feature/s3/manager dependency-type: direct:production update-type: version-update:semver-patch dependency-group: go - dependency-name: github.com/aws/aws-sdk-go-v2/service/kms dependency-type: direct:production update-type: version-update:semver-patch dependency-group: go - dependency-name: github.com/aws/aws-sdk-go-v2/service/s3 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: go - dependency-name: github.com/aws/aws-sdk-go-v2/service/sts dependency-type: direct:production update-type: version-update:semver-patch dependency-group: go - dependency-name: golang.org/x/crypto dependency-type: direct:production update-type: version-update:semver-minor dependency-group: go - dependency-name: golang.org/x/net dependency-type: direct:production update-type: version-update:semver-minor dependency-group: go - dependency-name: golang.org/x/sys dependency-type: direct:production update-type: version-update:semver-minor dependency-group: go - dependency-name: golang.org/x/term dependency-type: direct:production update-type: version-update:semver-minor dependency-group: go - dependency-name: google.golang.org/api dependency-type: direct:production update-type: version-update:semver-minor dependency-group: go - dependency-name: google.golang.org/genproto/googleapis/rpc dependency-type: direct:production update-type: version-update:semver-patch dependency-group: go - dependency-name: google.golang.org/grpc dependency-type: direct:production update-type: version-update:semver-minor dependency-group: go ... Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: Arun Bhagyanath <a.bhagyanath@eclecticiq.com>
Bumps the rust group in /functional-tests with 3 updates: [tempfile](https://github.com/Stebalien/tempfile), [serde](https://github.com/serde-rs/serde) and [serde_derive](https://github.com/serde-rs/serde). Updates `tempfile` from 3.17.1 to 3.18.0 - [Changelog](https://github.com/Stebalien/tempfile/blob/master/CHANGELOG.md) - [Commits](Stebalien/tempfile@v3.17.1...v3.18.0) Updates `serde` from 1.0.218 to 1.0.219 - [Release notes](https://github.com/serde-rs/serde/releases) - [Commits](serde-rs/serde@v1.0.218...v1.0.219) Updates `serde_derive` from 1.0.218 to 1.0.219 - [Release notes](https://github.com/serde-rs/serde/releases) - [Commits](serde-rs/serde@v1.0.218...v1.0.219) --- updated-dependencies: - dependency-name: tempfile dependency-type: direct:production update-type: version-update:semver-minor dependency-group: rust - dependency-name: serde dependency-type: direct:production update-type: version-update:semver-patch dependency-group: rust - dependency-name: serde_derive dependency-type: direct:production update-type: version-update:semver-patch dependency-group: rust ... Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: Arun Bhagyanath <a.bhagyanath@eclecticiq.com>
Bumps the ci group with 1 update: [github/codeql-action](https://github.com/github/codeql-action). Updates `github/codeql-action` from 3.28.10 to 3.28.11 - [Release notes](https://github.com/github/codeql-action/releases) - [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md) - [Commits](github/codeql-action@b56ba49...6bb031a) --- updated-dependencies: - dependency-name: github/codeql-action dependency-type: direct:production update-type: version-update:semver-patch dependency-group: ci ... Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: Arun Bhagyanath <a.bhagyanath@eclecticiq.com>
Bumps the go group with 6 updates: | Package | From | To | | --- | --- | --- | | [cloud.google.com/go/kms](https://github.com/googleapis/google-cloud-go) | `1.21.0` | `1.21.1` | | [cloud.google.com/go/storage](https://github.com/googleapis/google-cloud-go) | `1.50.0` | `1.51.0` | | [github.com/aws/aws-sdk-go-v2/feature/s3/manager](https://github.com/aws/aws-sdk-go-v2) | `1.17.65` | `1.17.66` | | [github.com/aws/aws-sdk-go-v2/service/s3](https://github.com/aws/aws-sdk-go-v2) | `1.78.1` | `1.78.2` | | [google.golang.org/api](https://github.com/googleapis/google-api-go-client) | `0.224.0` | `0.226.0` | | [google.golang.org/genproto/googleapis/rpc](https://github.com/googleapis/go-genproto) | `0.0.0-20250227231956-55c901821b1e` | `0.0.0-20250303144028-a0af3efb3deb` | Updates `cloud.google.com/go/kms` from 1.21.0 to 1.21.1 - [Release notes](https://github.com/googleapis/google-cloud-go/releases) - [Changelog](https://github.com/googleapis/google-cloud-go/blob/main/documentai/CHANGES.md) - [Commits](googleapis/google-cloud-go@kms/v1.21.0...dlp/v1.21.1) Updates `cloud.google.com/go/storage` from 1.50.0 to 1.51.0 - [Release notes](https://github.com/googleapis/google-cloud-go/releases) - [Changelog](https://github.com/googleapis/google-cloud-go/blob/main/CHANGES.md) - [Commits](googleapis/google-cloud-go@spanner/v1.50.0...spanner/v1.51.0) Updates `github.com/aws/aws-sdk-go-v2/feature/s3/manager` from 1.17.65 to 1.17.66 - [Release notes](https://github.com/aws/aws-sdk-go-v2/releases) - [Changelog](https://github.com/aws/aws-sdk-go-v2/blob/main/changelog-template.json) - [Commits](aws/aws-sdk-go-v2@feature/s3/manager/v1.17.65...feature/s3/manager/v1.17.66) Updates `github.com/aws/aws-sdk-go-v2/service/s3` from 1.78.1 to 1.78.2 - [Release notes](https://github.com/aws/aws-sdk-go-v2/releases) - [Changelog](https://github.com/aws/aws-sdk-go-v2/blob/main/changelog-template.json) - [Commits](aws/aws-sdk-go-v2@service/s3/v1.78.1...service/s3/v1.78.2) Updates `google.golang.org/api` from 0.224.0 to 0.226.0 - [Release notes](https://github.com/googleapis/google-api-go-client/releases) - [Changelog](https://github.com/googleapis/google-api-go-client/blob/main/CHANGES.md) - [Commits](googleapis/google-api-go-client@v0.224.0...v0.226.0) Updates `google.golang.org/genproto/googleapis/rpc` from 0.0.0-20250227231956-55c901821b1e to 0.0.0-20250303144028-a0af3efb3deb - [Commits](https://github.com/googleapis/go-genproto/commits) --- updated-dependencies: - dependency-name: cloud.google.com/go/kms dependency-type: direct:production update-type: version-update:semver-patch dependency-group: go - dependency-name: cloud.google.com/go/storage dependency-type: direct:production update-type: version-update:semver-minor dependency-group: go - dependency-name: github.com/aws/aws-sdk-go-v2/feature/s3/manager dependency-type: direct:production update-type: version-update:semver-patch dependency-group: go - dependency-name: github.com/aws/aws-sdk-go-v2/service/s3 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: go - dependency-name: google.golang.org/api dependency-type: direct:production update-type: version-update:semver-minor dependency-group: go - dependency-name: google.golang.org/genproto/googleapis/rpc dependency-type: direct:production update-type: version-update:semver-patch dependency-group: go ... Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: Arun Bhagyanath <a.bhagyanath@eclecticiq.com>
Bumps the rust group in /functional-tests with 1 update: [tempfile](https://github.com/Stebalien/tempfile). Updates `tempfile` from 3.18.0 to 3.19.0 - [Changelog](https://github.com/Stebalien/tempfile/blob/master/CHANGELOG.md) - [Commits](Stebalien/tempfile@v3.18.0...v3.19.0) --- updated-dependencies: - dependency-name: tempfile dependency-type: direct:production update-type: version-update:semver-minor dependency-group: rust ... Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: Arun Bhagyanath <a.bhagyanath@eclecticiq.com>
Bumps the ci group with 1 update: [docker/login-action](https://github.com/docker/login-action). Updates `docker/login-action` from 3.3.0 to 3.4.0 - [Release notes](https://github.com/docker/login-action/releases) - [Commits](docker/login-action@9780b0c...74a5d14) --- updated-dependencies: - dependency-name: docker/login-action dependency-type: direct:production update-type: version-update:semver-minor dependency-group: ci ... Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: Arun Bhagyanath <a.bhagyanath@eclecticiq.com>
Bumps [github.com/golang-jwt/jwt/v5](https://github.com/golang-jwt/jwt) from 5.2.1 to 5.2.2. - [Release notes](https://github.com/golang-jwt/jwt/releases) - [Changelog](https://github.com/golang-jwt/jwt/blob/main/VERSION_HISTORY.md) - [Commits](golang-jwt/jwt@v5.2.1...v5.2.2) --- updated-dependencies: - dependency-name: github.com/golang-jwt/jwt/v5 dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: Arun Bhagyanath <a.bhagyanath@eclecticiq.com>
Signed-off-by: Danilo Bürger <danilo.buerger@helsing.ai> Signed-off-by: Arun Bhagyanath <a.bhagyanath@eclecticiq.com>
Signed-off-by: Danilo Bürger <danilo.buerger@helsing.ai> Signed-off-by: Arun Bhagyanath <a.bhagyanath@eclecticiq.com>
Bumps the go group with 3 updates: [github.com/Azure/azure-sdk-for-go/sdk/azcore](https://github.com/Azure/azure-sdk-for-go), [google.golang.org/api](https://github.com/googleapis/google-api-go-client) and [google.golang.org/genproto/googleapis/rpc](https://github.com/googleapis/go-genproto). Updates `github.com/Azure/azure-sdk-for-go/sdk/azcore` from 1.17.0 to 1.17.1 - [Release notes](https://github.com/Azure/azure-sdk-for-go/releases) - [Changelog](https://github.com/Azure/azure-sdk-for-go/blob/main/documentation/release.md) - [Commits](Azure/azure-sdk-for-go@sdk/azcore/v1.17.0...sdk/azcore/v1.17.1) Updates `google.golang.org/api` from 0.226.0 to 0.227.0 - [Release notes](https://github.com/googleapis/google-api-go-client/releases) - [Changelog](https://github.com/googleapis/google-api-go-client/blob/main/CHANGES.md) - [Commits](googleapis/google-api-go-client@v0.226.0...v0.227.0) Updates `google.golang.org/genproto/googleapis/rpc` from 0.0.0-20250303144028-a0af3efb3deb to 0.0.0-20250313205543-e70fdf4c4cb4 - [Commits](https://github.com/googleapis/go-genproto/commits) --- updated-dependencies: - dependency-name: github.com/Azure/azure-sdk-for-go/sdk/azcore dependency-type: direct:production update-type: version-update:semver-patch dependency-group: go - dependency-name: google.golang.org/api dependency-type: direct:production update-type: version-update:semver-minor dependency-group: go - dependency-name: google.golang.org/genproto/googleapis/rpc dependency-type: direct:production update-type: version-update:semver-patch dependency-group: go ... Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: Arun Bhagyanath <a.bhagyanath@eclecticiq.com>
Bumps the ci group with 5 updates: | Package | From | To | | --- | --- | --- | | [actions/setup-go](https://github.com/actions/setup-go) | `5.3.0` | `5.4.0` | | [actions/cache](https://github.com/actions/cache) | `4.2.2` | `4.2.3` | | [actions/upload-artifact](https://github.com/actions/upload-artifact) | `4.6.1` | `4.6.2` | | [actions/download-artifact](https://github.com/actions/download-artifact) | `4.1.9` | `4.2.1` | | [github/codeql-action](https://github.com/github/codeql-action) | `3.28.11` | `3.28.12` | Updates `actions/setup-go` from 5.3.0 to 5.4.0 - [Release notes](https://github.com/actions/setup-go/releases) - [Commits](actions/setup-go@f111f33...0aaccfd) Updates `actions/cache` from 4.2.2 to 4.2.3 - [Release notes](https://github.com/actions/cache/releases) - [Changelog](https://github.com/actions/cache/blob/main/RELEASES.md) - [Commits](actions/cache@d4323d4...5a3ec84) Updates `actions/upload-artifact` from 4.6.1 to 4.6.2 - [Release notes](https://github.com/actions/upload-artifact/releases) - [Commits](actions/upload-artifact@4cec3d8...ea165f8) Updates `actions/download-artifact` from 4.1.9 to 4.2.1 - [Release notes](https://github.com/actions/download-artifact/releases) - [Commits](actions/download-artifact@cc20338...95815c3) Updates `github/codeql-action` from 3.28.11 to 3.28.12 - [Release notes](https://github.com/github/codeql-action/releases) - [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md) - [Commits](github/codeql-action@6bb031a...5f8171a) --- updated-dependencies: - dependency-name: actions/setup-go dependency-type: direct:production update-type: version-update:semver-minor dependency-group: ci - dependency-name: actions/cache dependency-type: direct:production update-type: version-update:semver-patch dependency-group: ci - dependency-name: actions/upload-artifact dependency-type: direct:production update-type: version-update:semver-patch dependency-group: ci - dependency-name: actions/download-artifact dependency-type: direct:production update-type: version-update:semver-minor dependency-group: ci - dependency-name: github/codeql-action dependency-type: direct:production update-type: version-update:semver-patch dependency-group: ci ... Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: Arun Bhagyanath <a.bhagyanath@eclecticiq.com>
Bumps the ci group with 2 updates: [github/codeql-action](https://github.com/github/codeql-action) and [anchore/sbom-action](https://github.com/anchore/sbom-action). Updates `github/codeql-action` from 3.29.1 to 3.29.2 - [Release notes](https://github.com/github/codeql-action/releases) - [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md) - [Commits](github/codeql-action@39edc49...181d5ee) Updates `anchore/sbom-action` from 0.20.1 to 0.20.2 - [Release notes](https://github.com/anchore/sbom-action/releases) - [Changelog](https://github.com/anchore/sbom-action/blob/main/RELEASE.md) - [Commits](anchore/sbom-action@9246b90...cee1b8e) --- updated-dependencies: - dependency-name: github/codeql-action dependency-version: 3.29.2 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: ci - dependency-name: anchore/sbom-action dependency-version: 0.20.2 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: ci ... Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: Arun Bhagyanath <a.bhagyanath@eclecticiq.com>
Bumps the go group with 6 updates: | Package | From | To | | --- | --- | --- | | [github.com/Azure/azure-sdk-for-go/sdk/azcore](https://github.com/Azure/azure-sdk-for-go) | `1.18.0` | `1.18.1` | | [golang.org/x/crypto](https://github.com/golang/crypto) | `0.39.0` | `0.40.0` | | [golang.org/x/net](https://github.com/golang/net) | `0.41.0` | `0.42.0` | | [golang.org/x/sys](https://github.com/golang/sys) | `0.33.0` | `0.34.0` | | [golang.org/x/term](https://github.com/golang/term) | `0.32.0` | `0.33.0` | | [google.golang.org/api](https://github.com/googleapis/google-api-go-client) | `0.240.0` | `0.241.0` | Updates `github.com/Azure/azure-sdk-for-go/sdk/azcore` from 1.18.0 to 1.18.1 - [Release notes](https://github.com/Azure/azure-sdk-for-go/releases) - [Changelog](https://github.com/Azure/azure-sdk-for-go/blob/main/documentation/go-mgmt-sdk-release-guideline.md) - [Commits](Azure/azure-sdk-for-go@sdk/azcore/v1.18.0...sdk/azcore/v1.18.1) Updates `golang.org/x/crypto` from 0.39.0 to 0.40.0 - [Commits](golang/crypto@v0.39.0...v0.40.0) Updates `golang.org/x/net` from 0.41.0 to 0.42.0 - [Commits](golang/net@v0.41.0...v0.42.0) Updates `golang.org/x/sys` from 0.33.0 to 0.34.0 - [Commits](golang/sys@v0.33.0...v0.34.0) Updates `golang.org/x/term` from 0.32.0 to 0.33.0 - [Commits](golang/term@v0.32.0...v0.33.0) Updates `google.golang.org/api` from 0.240.0 to 0.241.0 - [Release notes](https://github.com/googleapis/google-api-go-client/releases) - [Changelog](https://github.com/googleapis/google-api-go-client/blob/main/CHANGES.md) - [Commits](googleapis/google-api-go-client@v0.240.0...v0.241.0) --- updated-dependencies: - dependency-name: github.com/Azure/azure-sdk-for-go/sdk/azcore dependency-version: 1.18.1 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: go - dependency-name: golang.org/x/crypto dependency-version: 0.40.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: go - dependency-name: golang.org/x/net dependency-version: 0.42.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: go - dependency-name: golang.org/x/sys dependency-version: 0.34.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: go - dependency-name: golang.org/x/term dependency-version: 0.33.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: go - dependency-name: google.golang.org/api dependency-version: 0.241.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: go ... Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: Arun Bhagyanath <a.bhagyanath@eclecticiq.com>
This allows running "sops set [...]" without leaking secrets in process listings. To read secrets from stdin, use "/dev/stdin" as the file path. Fixes getsops#729 Signed-off-by: Bjørn Forsman <bjorn.forsman@gmail.com> Signed-off-by: Arun Bhagyanath <a.bhagyanath@eclecticiq.com>
fix getsops#1896 Signed-off-by: Frederic R. <zougi.fr@gmail.com> Signed-off-by: Arun Bhagyanath <a.bhagyanath@eclecticiq.com>
Co-authored-by: Felix Fontein <felix@fontein.de> Signed-off-by: Frederic R. <zougi.fr@gmail.com> Signed-off-by: Arun Bhagyanath <a.bhagyanath@eclecticiq.com>
Signed-off-by: Frederic R. <zougi.fr@gmail.com> Signed-off-by: Arun Bhagyanath <a.bhagyanath@eclecticiq.com>
Signed-off-by: Arun Bhagyanath <a.bhagyanath@eclecticiq.com>
Signed-off-by: Arun Bhagyanath <a.bhagyanath@eclecticiq.com>
Signed-off-by: Arun Bhagyanath <a.bhagyanath@eclecticiq.com>
Signed-off-by: Arun Bhagyanath <a.bhagyanath@eclecticiq.com>
Signed-off-by: Arun Bhagyanath <a.bhagyanath@eclecticiq.com>
Signed-off-by: Arun Bhagyanath <a.bhagyanath@eclecticiq.com>
Signed-off-by: Felix Fontein <felix@fontein.de> Signed-off-by: Arun Bhagyanath <a.bhagyanath@eclecticiq.com>
Co-authored-by: Hidde Beydals <hiddeco@users.noreply.github.com> Signed-off-by: Felix Fontein <felix@fontein.de> Signed-off-by: Arun Bhagyanath <a.bhagyanath@eclecticiq.com>
Signed-off-by: Felix Fontein <felix@fontein.de> Signed-off-by: Arun Bhagyanath <a.bhagyanath@eclecticiq.com>
fix getsops#1896 Signed-off-by: Frederic R. <zougi.fr@gmail.com> Signed-off-by: Arun Bhagyanath <a.bhagyanath@eclecticiq.com>
Signed-off-by: Arun Bhagyanath <a.bhagyanath@eclecticiq.com>
Signed-off-by: Martin Dürrmeier <857448+md42@users.noreply.github.com> Signed-off-by: Arun Bhagyanath <a.bhagyanath@eclecticiq.com> # Conflicts: # README.rst
This may seem extremely minor, but I'd (jokingly) argue it falls under UX, since I was confused and thought I had dirt on my screen screen due to this lone '`'. It cost me a whole 5s, then another 5m to write this PR, but if it confuses at least 60 people a day then maybe its worth it? Anyways, enjoy this extremely minor change that will hopefully eliminate a still really minor annoyance. Signed-off-by: Bailey Stevens <me@mtxyz.me> Signed-off-by: Arun Bhagyanath <a.bhagyanath@eclecticiq.com>
arunbhagyanath
force-pushed
the
feature/ovh-kms
branch
from
0434a0a to
62a5f87
Compare
Signed-off-by: Arun Bhagyanath <a.bhagyanath@eclecticiq.com>
arunbhagyanath
force-pushed
the
feature/ovh-kms
branch
from
38f6802 to
262e27a
Compare
Signed-off-by: Arun Bhagyanath <a.bhagyanath@eclecticiq.com>
Signed-off-by: Arun Bhagyanath <a.bhagyanath@eclecticiq.com>
arunbhagyanath
force-pushed
the
feature/ovh-kms
branch
from
262e27a to
b6060b3
Compare
Signed-off-by: Arun Bhagyanath <arunbhagyanath@users.noreply.github.com>
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
19 participants
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
This PR adds support for encrypting and decrypting files using OVH Key Management Service.
Usage