Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

RFC on a SOPS security linter / compliance checker #1657

Open
schlomo opened this issue Oct 23, 2024 · 0 comments
Open

RFC on a SOPS security linter / compliance checker #1657

schlomo opened this issue Oct 23, 2024 · 0 comments

Comments

@schlomo
Copy link

schlomo commented Oct 23, 2024

Hi,

first of all I would like to express my deepest gratitude for SOPS - it is a game changer for managing operational secrets!

We are currently working on an Open Source SOPS file security linter and compliance checker and would be happy for more thoughts from the SOPS community: https://github.com/Bonial-International-GmbH/sops-compliance-checker/pull/1/files and comments / suggestions are welcome there or here in this issue.

The purpose is to check SOPS files for correct and compliant usage without decrypting the SOPS files to ensure that all SOPS files are configured in the desired fashion. The goal is to provide a security linter that safeguards the security of the data protected by the SOPS files against common mistakes and against malicious configurations.

See the slides or English video / German video of my Cloud & Offline Secrets Management - Managing operational secrets with SOPS talk for more background and the motivation.

Kind regards,
Schlomo Schapiro

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

No branches or pull requests

1 participant