Secret env variables

[wrdls]

Hi,

I'd like support for secret variables. By this I mean that the value isn't shown when you run envman print.
Use case for this is to print the env in a CI pipeline so it's easier to see why your build is failing but I'd like to hide credentials from developers.

This commit seems to add support for what I'm asking but I'm not sure what is does. I tried to set this field but the value was still printed:

envs:
  - SECRET: password
    opts:
      is_sensitive: true

Workaround could be to use something like envman print | grep -v SECRET_VAR but a native solution would be nice.

[fehersanyi-bitrise]

Hello there!

are you trying to set this up locally?
if the secret is set up properly, in the logs it should write [REDACTED] instead of the value
on secrets you can read more on our devcenter: https://devcenter.bitrise.io/bitrise-cli/secrets/

[wrdls]

I don't use bitrise but found this tool while searching for something to manage environment variables.

So yes, I'm running this locally as well as in a CI pipeline.

[fehersanyi-bitrise]

in yml firmat, we use a different file called secrets.bitrise.yml to hold these values, I guess the cli can't handle it if you define this way 🤔