Scrt: A CLI secret manager for developers, sysadmins and DevOps

 (github.com)

20 points | by Olshansky 21 hours ago

7 comments

  • moontear 20 hours ago
    I thought SOPS with age is what we were doing now. Do we need yet another tooling?

    https://github.com/getsops/sops

    [-]
    • patabyte 20 hours ago
      SOPS with Age is simple, and simple is good. I strongly recommend this approach.
      [-]
      • sam_lowry_ 20 hours ago
        SOPS is simple? You are kidding me. Pass from https://www.passwordstore.org/ fame is simple. SOPS is ultra-complicated for a security tool.
        [-]
        • sevg 20 hours ago
          I dunno, it seems mostly simple to me.

          You have a .sops.yaml with some Age public keys, and then you run “sops secrets.yml” to create an encrypted file.

        • jmholla 18 hours ago
          Can you explain what you find complicated about sops? I've used it with ease for the last two years, both personally and professionally.
    • oulipo2 17 hours ago
      There's also https://github.com/jdx/fnox
  • ComputerGuru 20 hours ago
    Possibly of interest to readers (but not directly competing) is securestore, our open-source, open-protocol, cross-language framework (cli tool + libraries) for securely storing secrets and programmatically retrieving them in production: https://neosmart.net/blog/securestore-open-secrets-format/

    donet version: https://github.com/neosmart/SecureStore

    rust version: https://github.com/neosmart/securestore-rs

    (This one is production ready)

  • Arrowmaster 6 hours ago
    The latest release was June 2022 and the last non dependabot commit was March 2023, until new activity 4 days ago using AI. Why should anyone use this?
  • johng 21 hours ago
    Looks like every other CLI manager I've ever seen. It says not ready for production use. What's different for this than the others?
  • microheart 16 hours ago
    I wonder what does the solution do differently than the rest of the CLI managers?
  • opan 21 hours ago
    Dangerously close to "scrot" which is both an X11 screenshot tool and general slang for a screenshot.
    [-]
    • voidfunc 20 hours ago
      Ive been working with Linux for 25ish years and have never heard of scrot. I think there's low probability of confusion lol.
      [-]
      • imcritic 16 hours ago
        Same. First time hearing about scrot.
  • oulipo2 17 hours ago
    How does it compare to https://github.com/jdx/fnox