You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
I'd like an agenix --check command for CI, to ensure fetched keys (e.g. https://github.com/jalil-salame.keys) are not out of date in the recipient files.
Running agenix --rekey in CI is not an option:
I don't want CI to have access to the secrets
agenix --rekey changes all files even if unnecessary.
This is because age uses a nonce which is generated when you call encrypt, calling --rekey regenerates this nonce and causes all the data to change.
The text was updated successfully, but these errors were encountered:
I'd like an
agenix --checkcommand for CI, to ensure fetched keys (e.g. https://github.com/jalil-salame.keys) are not out of date in the recipient files.Running
agenix --rekeyin CI is not an option:agenix --rekeychanges all files even if unnecessary.This is because
ageuses a nonce which is generated when you call encrypt, calling--rekeyregenerates this nonce and causes all the data to change.The text was updated successfully, but these errors were encountered: