Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[FEATURE] Integrate Secret File with SOPS #5840

Open
dwisiswant0 opened this issue Nov 20, 2024 · 0 comments · May be fixed by #5841
Open

[FEATURE] Integrate Secret File with SOPS #5840

dwisiswant0 opened this issue Nov 20, 2024 · 0 comments · May be fixed by #5841
Assignees
@dwisiswant0
Labels
Type: Enhancement Most issues will probably ask for additions or changes.

Comments

@dwisiswant0
Copy link
Member

dwisiswant0 commented Nov 20, 2024
edited
Loading

Describe your feature request

Support secret files encrypted with SOPS (Secrets Operations). Basically, the idea is to let users work with encrypted files directly, so stuff like API keys, credentials, and sensitive configs stay secure. Nuclei would handle the decryption part on the fly, making things way safer and easier to manage.

Describe the use case of the feature

  • Encrypt any sensitive data, store it in repo, and never worry about exposing plaintext secrets.
  • Just point Nuclei to a SOPS-encrypted file, and it handles the rest. No extra steps like decrypting manually.
  • Makes it easier to follow security policies that require encryption while reducing the risk of leaks.

Describe alternatives you've considered

Store secrets as env vars. This is okay for small setups, but it gets messy with lots of secrets.

Ref:

Additional context

SOPS is super handy for encrypting files and works with backends like GCP KMS, AWS KMS, Azure Key Vault, HashiCorp Vault, and even age.
@dwisiswant0 dwisiswant0 added the Type: Enhancement Most issues will probably ask for additions or changes. label Nov 20, 2024
@dwisiswant0 dwisiswant0 self-assigned this Nov 20, 2024
@dwisiswant0 dwisiswant0 linked a pull request Nov 20, 2024 that will close this issue
Open
4 tasks
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@dwisiswant0 dwisiswant0

Labels
Type: Enhancement Most issues will probably ask for additions or changes.
Projects
None yet
Milestone
No milestone
Development

Successfully merging a pull request may close this issue.

feat(authx): SOPS integration projectdiscovery/nuclei
1 participant
@dwisiswant0