forked from public/stack
update sops
This commit is contained in:
parent
66a88fddea
commit
b469e693dd
6
Makefile
6
Makefile
|
@ -6,8 +6,9 @@ MAIN_TF := $(wildcard infra/main/*.tf)
|
||||||
ENVIRONMENT := production
|
ENVIRONMENT := production
|
||||||
REGION := sfo3
|
REGION := sfo3
|
||||||
ROOT_DIR := $(shell pwd)
|
ROOT_DIR := $(shell pwd)
|
||||||
TERRAFORM := $(ROOT_DIR)/out/terraform
|
# TODO: automatically determine
|
||||||
SOPS := $(ROOT_DIR)/out/sops
|
TERRAFORM := $(ROOT_DIR)/out/terraform.linux-x86_64
|
||||||
|
SOPS := $(ROOT_DIR)/out/sops.linux-x86_64
|
||||||
KEYS := \
|
KEYS := \
|
||||||
6B61ECD76088748C70590D55E90A401336C8AAA9 \
|
6B61ECD76088748C70590D55E90A401336C8AAA9 \
|
||||||
88823A75ECAA786B0FF38B148E401478A3FBEF72 \
|
88823A75ECAA786B0FF38B148E401478A3FBEF72 \
|
||||||
|
@ -151,6 +152,7 @@ endef
|
||||||
# than the encrypted secrets, we want to reencrypt encrypted secrets.
|
# than the encrypted secrets, we want to reencrypt encrypted secrets.
|
||||||
define maybe_decrypt_secret
|
define maybe_decrypt_secret
|
||||||
test -f $(1) -a ! -f $(2) && \
|
test -f $(1) -a ! -f $(2) && \
|
||||||
|
mkdir -p `dirname $(2)` && \
|
||||||
$(SOPS) --decrypt $(1) > $(2) && \
|
$(SOPS) --decrypt $(1) > $(2) && \
|
||||||
touch -d 1970-01-01 $(2) || \
|
touch -d 1970-01-01 $(2) || \
|
||||||
true
|
true
|
||||||
|
|
|
@ -18,7 +18,7 @@ KUBERNETES_REPO=https://github.com/kubernetes/kubernetes.git
|
||||||
GO_URL=https://go.dev/dl/go1.21.0.src.tar.gz
|
GO_URL=https://go.dev/dl/go1.21.0.src.tar.gz
|
||||||
GO_HASH=818d46ede85682dd551ad378ef37a4d247006f12ec59b5b755601d2ce114369a
|
GO_HASH=818d46ede85682dd551ad378ef37a4d247006f12ec59b5b755601d2ce114369a
|
||||||
SOPS_REPO=https://github.com/getsops/sops
|
SOPS_REPO=https://github.com/getsops/sops
|
||||||
SOPS_REF=7b3a032adee818183189c89fcbbae212fbd50318
|
SOPS_REF=b6d3c9700d88e0c9348f3ec7cd2f10ce4a4b3ee1
|
||||||
BUSYBOX_URL=https://busybox.net/downloads/busybox-1.36.1.tar.bz2
|
BUSYBOX_URL=https://busybox.net/downloads/busybox-1.36.1.tar.bz2
|
||||||
BUSYBOX_HASH=b8cc24c9574d809e7279c3be349795c5d5ceb6fdf19ca709f80cde50e47de314
|
BUSYBOX_HASH=b8cc24c9574d809e7279c3be349795c5d5ceb6fdf19ca709f80cde50e47de314
|
||||||
TOFU_REPO=https://github.com/opentofu/opentofu
|
TOFU_REPO=https://github.com/opentofu/opentofu
|
||||||
|
|
BIN
fetch/sops.tar.gz (Stored with Git LFS)
BIN
fetch/sops.tar.gz (Stored with Git LFS)
Binary file not shown.
BIN
out/sops.linux-x86_64 (Stored with Git LFS)
BIN
out/sops.linux-x86_64 (Stored with Git LFS)
Binary file not shown.
Loading…
Reference in New Issue