Difference between revisions of "Secrets"
Jump to navigation
Jump to search
(24 intermediate revisions by 4 users not shown) | |||
Line 2: | Line 2: | ||
− | * [[Secrets (Kubernetes)|Kubernetes Secrets]]: <code>[[kubectl create secret]]</code> | + | * [[Secrets (Kubernetes)|Kubernetes Secrets]]: <code>[[kubectl create secret]], [[kubectl get secret]], [[kubectl describe secret]]</code> |
* <code>[[docker secret]]</code> | * <code>[[docker secret]]</code> | ||
+ | * [[Docker compose]] (since 2017): [[Docker compose file: docker-compose.yml]] | ||
* <code>[[ansible-vault]]</code> | * <code>[[ansible-vault]]</code> | ||
− | * [[Hashicorp Vault]] (2015) | + | * [[Hashicorp Vault]] (2015): <code>[[vault kv put]]</code> |
− | * [[ | + | |
− | * [[GitLab]]: [[HashiCorp Vault secrets in CI jobs as variables]] | + | * [[GitHub]]: <code>[[gh secret list]]</code> |
+ | * [[GitLab]]: <code>[[Settings]] > CI/CD > Variables</code> | ||
+ | ** [[HashiCorp Vault secrets in CI jobs as variables]] | ||
* [[Chef]]: <code>[[knife vault]]</code> | * [[Chef]]: <code>[[knife vault]]</code> | ||
* [[CyberArk]] Enterprise Password Vault (EPV) | * [[CyberArk]] Enterprise Password Vault (EPV) | ||
− | |||
* [[Cisco IOS: Associate a user with default higher privileges]] | * [[Cisco IOS: Associate a user with default higher privileges]] | ||
− | * [[Mozilla Secrets OPerationS (SOPS)]] | + | * [[Mozilla Secrets OPerationS (SOPS)]]: <code>[[sops]]</code> |
+ | * <code>[[git-crypt]]</code> | ||
+ | * [[Azure Key Vault]] | ||
+ | * <code>[[metricbeat keystore]]</code> | ||
+ | * [[SOPS: Secrets OPerationS]]: <code>[[sops]]</code> | ||
+ | * [[Conjur]] ([[CyberArk]]) | ||
== Cloud == | == Cloud == | ||
− | * [[AWS Secrets Manager]] (April 2018) | + | * [[AWS Secrets Manager]] (April 2018): <code>[[aws secretsmanager list-secrets]]</code> |
− | * [[Google Secret Manager]] (2020) | + | * [[Google Cloud Secret Manager]] (Jan 2020) |
== Related terms == | == Related terms == | ||
− | * <code>[[openssl]]</code> | + | * <code>[[openssl enc]]</code> |
− | * [[Password manager]] | + | * [[Password manager]]: [[OneDrive Personal Vault]] |
+ | * [[GitLab Auto Secret Detection]] | ||
+ | * [[GitHub Advanced Security (GHAS) secret scanning]] | ||
+ | * [[How can I pass secrets or sensitive information securely to containers in an Amazon ECS task?]] | ||
+ | * [[Container scanning]] | ||
== See also == | == See also == |
Latest revision as of 11:32, 8 November 2024
- Kubernetes Secrets:
kubectl create secret, kubectl get secret, kubectl describe secret
docker secret
- Docker compose (since 2017): Docker compose file: docker-compose.yml
ansible-vault
- Hashicorp Vault (2015):
vault kv put
- GitHub:
gh secret list
- GitLab:
Settings > CI/CD > Variables
- Chef:
knife vault
- CyberArk Enterprise Password Vault (EPV)
- Cisco IOS: Associate a user with default higher privileges
- Mozilla Secrets OPerationS (SOPS):
sops
git-crypt
- Azure Key Vault
metricbeat keystore
- SOPS: Secrets OPerationS:
sops
- Conjur (CyberArk)
Cloud[edit]
- AWS Secrets Manager (April 2018):
aws secretsmanager list-secrets
- Google Cloud Secret Manager (Jan 2020)
Related terms[edit]
openssl enc
- Password manager: OneDrive Personal Vault
- GitLab Auto Secret Detection
- GitHub Advanced Security (GHAS) secret scanning
- How can I pass secrets or sensitive information securely to containers in an Amazon ECS task?
- Container scanning
See also[edit]
Advertising: