Expand description
Shared secret vault helpers used by the CLI and task execution
Structs§
- Secret
Config - Secret
Settings - Vault
Meta - Metadata stored inside a vault directory that describes how the vault should be accessed.
Written by
mk secrets vault init --gpg-key-idso subsequent commands (store, show, export, …) pick up the GPG key automatically without flags.
Enums§
Functions§
- encrypt_
with_ gpg - Encrypt
plaintextusing the systemgpgbinary for the given key ID or fingerprint. The output is ASCII-armored PGP data suitable for storing as adata.ascvault file. - infer_
secret_ backend - list_
secret_ paths - load_
secret_ env - load_
secret_ value - load_
secret_ values - merge_
optional_ secret_ settings - read_
vault_ backend - read_
vault_ gpg_ key_ id - Read the GPG key ID stored in a vault’s metadata file, if present.
Returns
Nonewhen the file does not exist or cannot be parsed. - read_
vault_ meta - resolve_
secret_ config - verify_
vault - write_
vault_ meta - Write (or overwrite) the vault’s metadata file with the supplied settings.