SOPS reduces the surface area you need to cover. You can use Age as a backend an... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		CGamesPlay 2 days ago \| parent \| context \| favorite \| on: Home Depot GitHub token exposed for a year, grante... SOPS reduces the surface area you need to cover. You can use Age as a backend and then you only need a long lived private key on the server. https://github.com/getsops/sops

Nextgrid 2 days ago [–]

The bad guys will steal that private key and decrypt the encrypted secrets the same way they can steal the unencrypted secrets directly.

CGamesPlay 1 day ago | [–]

If they are already in your server, what are you protecting then?

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact