git-secret
homeshick
git-secret | homeshick | |
---|---|---|
22 | 8 | |
3,621 | 2,040 | |
- | - | |
5.7 | 0.0 | |
11 days ago | 3 months ago | |
Shell | Shell | |
MIT License | MIT License |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
git-secret
-
Gittuf – a security layer for Git using some concepts introduced by TUF
I've happily been using git-secret (https://sobolevn.me/git-secret/) for encrypting non-critical (i.e. non-production) secrets for a while now. It sounds like Gittuf will do a lot more than git-secret, but for the use case of encrypted files specifically, is there a significant different about with the approach that Gittuf has taken?
-
Ansible-based dotfiles with fancy nvchad-based neovim + tmux setup
Secrets inside the repo. All the credentials, ssh keys, VPN configs can be stored directly in the repo with support of the git secret. gpg key is optional: config works fine if it is not provided and secrets are not decrypted.
-
Modern Perl Catalyst: Docker Setup
You might notice that some of the environmental variables have funky values that look more like template placeholders. For example "SESSION_STORAGE_SECRET=${SESSION_STORAGE_SECRET}". That's because there's a .env file that contains those (you can see it in the root of the GitHub repository page. As a good practice I try to isolate anything that needs to be secret right off the top. So even though this is a development setup and would need work to turn it into a something suitable for production let's try to start off right not doing the wrong thing by hardcoding all our secrets into various files. At least now there's just one file to secure. And later on if you move to something really secure like Hashicorp's Vault product, or even something open source like git secret you won't have to hunt all over the place for the secrets to keep. Lets now look at the rest of the Catalyst application setup:
-
Terraform - How do you handle secrets?
Checkout git-secret. https://git-secret.io/
-
[2022][Friendly Reminder] Don't commit your input files to Git
There‘s plugins like https://github.com/AGWA/git-crypt or https://git-secret.io that you can use to encrypt the files for yourself, so that they are available on multiple machines to you
- how to automate the sharing .env file with the team?
-
How to hide changes in GitHub repository from the public?
If you really want to have private repositories in GitHub, you will need to set up something like https://git-secret.io on top of git.
- Using GNU Stow to manage your dotfiles (2012)
-
Would it be worth using a secrets management system?
If you want a low config solution and not scared of gpg, https://git-secret.io/
-
git-secret vs Mozilla SOPS?
Hey guys, so I'm using git-secret as of now. Just stumbled across Mozilla SOPS today and finding it interesting. Which one you guys recommend and why? Advantages and disadvantages of each? I think SOPS is more robust and stable since it is being maintained by a large organization? Please correct me if I'm wrong. Help is appreciated.
homeshick
-
Ask HN: What Underrated Open Source Project Deserves More Recognition?
I have a work mac, work linux, and home mac. I want the same terminal-based development environment on all of them, but each requires just a little bit of customization.
For example, the .gitconfig for work is different from home (e.g. my username/email). Ditto for my .ssh/config and my shell aliases.
I also use Nix to manage all my tools, and the home-manager configuration is slightly different between mac & linux due to platform support.
I've gone through a few iterations of home-built solutions, including extending homeshick[1], before discovering YADM which implemented everything I had done but better.
[1] https://github.com/andsens/homeshick
-
How do you manage your shell scripts?
I do roughly the same and then manage them with 'homeshick' ( https://github.com/andsens/homeshick )
-
VIM for remote server file editing
Have a look at https://github.com/andsens/homeshick project, it makes this workflow much easier.
- Using GNU Stow to manage your dotfiles (2012)
-
Ask HN: How do you sync your computers development configurations/environment?
Homeshick for dotfiles: https://github.com/andsens/homeshick
Docker for Obsidian and Alfred syncing - the three target limit on the free tier is just barely enough for 2 of my own computers and my work laptop.
I've also got a Brewfile for installing the basic tooling on macOS
I also have a "how to set up a new computer/server" document on Notion that I use so I don't forget any steps.
- Fish 3.4.0
- Homeshick – Git dotfiles synchronizer written in bash
-
Fish Shell 3.2.0 Released
This is the exact reason I use Fish. The only thing I _need_ to get installed on random servers is Fish itself.
No need to install and configure oh-my-$shell or other huge monstrosities. Most of my stuff comes from a simple homeshick[1] sync with a few files in it.
[1] https://github.com/andsens/homeshick
What are some alternatives?
sops - Simple and flexible tool for managing secrets
GNU Stow - GNU Stow - mirror of savannah git repository occasionally with more bleeding-edge branches
vaultwarden - Unofficial Bitwarden compatible server written in Rust, formerly known as bitwarden_rs
homesick - Your home directory is your castle. Don't leave your dotfiles behind.
secret - Share Secrets securily
yadm - Yet Another Dotfiles Manager
Blackbox - Safely store secrets in Git/Mercurial/Subversion
Ansible - Ansible is a radically simple IT automation platform that makes your applications and systems easier to deploy and maintain. Automate everything from code deployment to network configuration to cloud management, in a language that approaches plain English, using SSH, with no agents to install on remote systems. https://docs.ansible.com.
git-crypt - Transparent file encryption in git
Chef - Chef Infra, a powerful automation platform that transforms infrastructure into code automating how infrastructure is configured, deployed and managed across any environment, at any scale
passff - zx2c4 pass manager extension for Firefox, Chrome and Opera
rcm - rc file (dotfile) management