dotfiles
git-crypt
Our great sponsors
dotfiles | git-crypt | |
---|---|---|
12 | 44 | |
117 | 7,176 | |
- | - | |
7.2 | 2.8 | |
14 days ago | about 1 month ago | |
Vim Script | C++ | |
- | GNU General Public License v3.0 only |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
dotfiles
-
would you use rust for scripting?
find-invalid-utf8: walks a directory tree and prints invalid UTF-8 in files using nice hex escapes with coloring. This is useful for honing on in where invalid UTF-8 occur. You have a good bet of finding some by checking out any moderately sized repository of code. The Linux kernel used to have some. The Mozilla repo does. The CPython repo does too. This is why it's important for CLI tools to deal with invalid UTF-8 gracefully in some way.
-
What are some less popular but well-made crates you'd like others to know about?
Yeah it's great! I used it to implement a little utility to convert a subset of SMS/MMS messages from an XML backup to a more readable plain text version: https://github.com/BurntSushi/dotfiles/blob/0b075d79a6ff8812a1f48a37b9858938b3eadc58/bin/rust/searchsms/main.rs
-
Ask HN: Can I see your scripts?
My dotfiles: https://github.com/BurntSushi/dotfiles
Here are some selected scripts folks might find interesting.
Here's my backup script that I use to encrypt my data at rest before shipping it off to s3. Runs every night and is idempotent. I use s3 lifecycle rules to keep data around for 6 months after it's deleted. That way, if my script goofs, I can recover: https://github.com/BurntSushi/dotfiles/blob/2f58eedf3b7f7dae...
I have so many machines running Archlinux that I wrote my own little helper for installing Arch that configures the machine in the way I expect: https://github.com/BurntSushi/dotfiles/blob/2f58eedf3b7f7dae...
A tiny little script to recover the git commit message you spent 10 minutes writing, but "lost" because something caused the actual commit to fail (like a gpg error): https://github.com/BurntSushi/dotfiles/blob/2f58eedf3b7f7dae...
A script that produces a GitHub permalink from just a file path and some optional file numbers. Pass --clip to put it on your clipboard: https://github.com/BurntSushi/dotfiles/blob/2f58eedf3b7f7dae... --- I use it with this vimscript function to quickly generate permalinks from my editor: https://github.com/BurntSushi/dotfiles/blob/2f58eedf3b7f7dae...
A wrapper around 'gh' (previously: 'hub') that lets you run 'hub-rollup pr-number' and it will automatically rebase that PR into your current branch. This is useful for creating one big "rollup" branch of a bunch of PRs. It is idempotent. https://github.com/BurntSushi/dotfiles/blob/2f58eedf3b7f7dae...
Scale a video without having to memorize ffmpeg's crazy CLI syntax: https://github.com/BurntSushi/dotfiles/blob/2f58eedf3b7f7dae...
Under X11, copy something to your clipboard using the best tool available: https://github.com/BurntSushi/dotfiles/blob/2f58eedf3b7f7dae...
-
Is it common for you guys to have an update break your system?
Otherwise, the most common "breakage" I get is when I forget to update in a while. Used to be a mostly non-issue until package signing became a thing. Now I get lots of signing errors when I update. When that happens, I run this script and it usually fixes things: https://github.com/BurntSushi/dotfiles/blob/2f58eedf3b7f7dae7f0a7cea1a641459e25e5d07/bin/pacman-fix-keys
-
Tauri reached 1.0
Sadly, at work, I can't use my own bespoke setup any more. I'm effectively forced to use GNOME, which has the same braindead support for multiple monitors that KDE has. These days, I just gave up on multiple monitors and work on my laptop in my sunroom at home. Back when I was in the office and using multiple monitors, it pretty much sucked, but I did write a little script that lets me at least move focus between monitors using my keyboard while respecting the window stacking order. I had intended to expand it with more stuff, but then COVID hit, my sunroom became my work environment and multiple monitors became a luxury I didn't care about any more. For work, anyway.
-
Fd: A simple, fast and user-friendly alternative to 'find'
The zsh builtin with a custom TIMEFMT: https://github.com/BurntSushi/dotfiles/blob/965383e6eeb0bad4...
-
Git ignores .gitignore with .gitignore in .gitignore
That's what I used to do, but I switched to Josh's strategy a couple years ago.[1] It doesn't "blow up" git-status. If some new piece of software creates a new directory with a bunch of random stuff in it, git-status will just show you the directory since it is is untracked, and not everything in it.
[1]: https://github.com/BurntSushi/dotfiles/blob/965383e6eeb0bad4...
-
archinstall is actually good
But I did that enough that I've scripted most of it: https://github.com/BurntSushi/dotfiles/blob/caed7921e48d112cc8932b33b81013fcbbcb2e08/bin/arch-install
-
What do you use for writing rust code?
For docs and license, see: https://github.com/BurntSushi/dotfiles/tree/master/.doc
This is why I kept mine private for so many years too. A bit ago, I cleaned house and published them: https://github.com/BurntSushi/dotfiles
git-crypt
-
How to Deploy and Scale Strapi on a Kubernetes Cluster 1/2
Store the Secrets in a repo using gitcrypt or another encryption tool.
-
I moved all my input files to a private repo and used it as a submodule
Consider using git-crypt for transparent encryption instead.
-
[2022][Friendly Reminder] Don't commit your input files to Git
Thereās plugins like https://github.com/AGWA/git-crypt or https://git-secret.io that you can use to encrypt the files for yourself, so that they are available on multiple machines to you
-
How to deal with unintended information leakage when using GitHub as your GIT?
There aren't really alternatives to being very very careful, tbh. But it's a bit of a smell that there are secrets kept alongside your source code. There are cases where you might want secrets in git, but if they're there on purpose you'll hopefully be doing something about it, like encrypting them first. git-crypt is useful here.
-
Ensure that an ansible secrets.yml is never committed unencrypted
Use either Mozilla SOPS to encrypt the values in the file, or got-encrypt to encrypt the whole repo
-
is there such thing as "encrypting" a repo hosted on Github?
https://github.com/AGWA/git-crypt for whole repo
-
Learning with K3s at home. Is it "better" to store secrets encrypted in the git repo (e.g., sealed-secrets) or in a separately managed secret database (e.g., vault)?
git-crypt
-
Is it safe to publish my NixOS system config on GitHub?
You could use git-crypt on the flake.lock file to have it managed by Git but be opaque to anybody without the encryption keys.
-
environment variables in respository?
I put secrets like API access keys on github using git-crypt and it's been working flawlessly for years. I do plan to eventually migrate to agebox, which is incredibly simple to use, as getting the gpg-agent working in Windows and WSL is very difficult (works okay on Linux).
-
How to manage secrets of my deployed services?
I've been thinking about this a lot lately too, but I'm going to settle on encrypting them and storing them in my private git repo using git crypt.
What are some alternatives?
git-secrets - Commit files with sensitive information like environment secrets safely encrypted in GitHub
sops - Simple and flexible tool for managing secrets
sealed-secrets - A Kubernetes controller and tool for one-way encrypted Secrets
age - A simple, modern and secure encryption tool (and Go library) with small explicit keys, no config options, and UNIX-style composability.
dendron - The personal knowledge management (PKM) tool that grows as you do!
nvim-tree.lua - A file explorer tree for neovim written in lua
emanote - Emanate a structured view of your plain-text notes
gopass - The slightly more awesome standard unix password manager for teams
rust-script - Run Rust files and expressions as scripts without any setup or compilation step.
nixpkgs - Nix Packages collection
helm-secrets - A helm plugin that help manage secrets with Git workflow and store them anywhere
rust.vim - Vim configuration for Rust.