Skip to content
/ sops-action Public

This action decrypts a SOPS-encrypted file using an AGE private key provided via environment variable.

License

Unknown and 2 other licenses found

Licenses found

Unknown
LICENSE
MIT
LICENSE.DavidTesar
MIT
LICENSE.GitHubActions
0 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

r26D/sops-action

BranchesTags

Repository files navigation

SOPS AGE Decrypt Action

This action decrypts a SOPS-encrypted file using an AGE private key provided via environment variable.

Environment

  • AGE_PRIVATE_KEY: required. The AGE private key string. Exported internally as SOPS_AGE_KEY for sops.

Inputs

  • encrypted_path: required. Path to the encrypted file (relative to the working directory or absolute).
  • decrypted_path: required. Path to write the decrypted file (created/overwritten).
  • working_directory: optional. Directory to cd into before running decryption.

.sops.yml (or .sops.yaml) should exist in your repository to guide SOPS. In GitHub Actions, the repository is mounted at /github/workspace, so your .sops.yml is available to the container automatically.

Example usage

  - name: Decrypt secrets
    uses: r26d/[email protected]"
    env:
      AGE_PRIVATE_KEY: ${{ secrets.AGE_PRIVATE_KEY }}
    with:
      working_directory: .
      encrypted_path: secrets.enc.yaml
      decrypted_path: secrets.yaml

About

This action decrypts a SOPS-encrypted file using an AGE private key provided via environment variable.

Resources

Readme

License

Unknown and 2 other licenses found

Licenses found

Unknown
LICENSE
MIT
LICENSE.DavidTesar
MIT
LICENSE.GitHubActions
Activity
Custom properties

Stars

0 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases

2 tags

Packages

 
 
 

Languages