#go#devops_workflow#encrypt_secrets#gitops#kubernetes#kubernetes_secrets
Sealed Secrets is a tool for Kubernetes that lets you safely store sensitive information—like passwords or API keys—in your code repository by encrypting them so only your Kubernetes cluster can decrypt them. You use a tool called `kubeseal` to encrypt secrets on your computer, and then store the encrypted result in your repository. When you apply this encrypted secret to your cluster, a special controller inside Kubernetes decrypts it and creates a regular secret that your apps can use. This means you can manage all your configuration in Git, even secrets, without worrying about exposing sensitive data, and only the cluster itself can access the real secret[2][5][1]. The benefit is that your secrets are protected at every step, and you can use Git workflows for everything, making your setup more secure and easier to manage.
https://github.com/bitnami-labs/sealed-secrets
#LemonHD#LHD#柠檬#拆门
由于某些原因,9月12日晚上22点关闭游客浏览。
Due to some reasons, guest blowsing will be turn off at 22:00 12th September.
请各位小伙伴保持登录状态,不要点击“退出”按键,备份好cookies。
Please keep your login status and do not press the "logout" button. Backup your cookies.
重开时间计划在11月后。
The date of re-open may be after November.