awesome-repositories.com
Blog
awesome-repositories.com

Entdecke die besten Open-Source-Repositories mit KI-gestützter Suche.

EntdeckenKuratierte SuchenOpen-Source-AlternativenSelf-hosted SoftwareBlogSitemap
ProjektÜber unsRanking-MethodikPresseMCP-Server
RechtlichesDatenschutzAGB
© 2026 Bringes Technology SRL·VAT RO45896025·hello@awesome-repositories.com
·
getsops avatar

getsops/sops

0
View on GitHub↗
22,111 Stars·1,038 Forks·Go·MPL-2.0·4 Aufrufegetsops.io↗

Sops

This tool is a command-line utility designed to manage sensitive data by encrypting specific values within structured files such as YAML or JSON. By protecting only the sensitive portions of a file while leaving the structure intact, it ensures that configuration files remain readable for version control systems and automated workflows.

The utility provides a secure development workflow by transparently decrypting files into memory for editing and automatically re-encrypting them upon saving, which prevents plaintext secrets from being written to the local disk. It supports a variety of encryption methods, including PGP, age, and integration with cloud-based key management services, allowing teams to choose between local offline security and managed infrastructure providers.

Beyond file-level protection, the tool automates the injection of decrypted secrets directly into the environment of child processes. It uses path-based configuration matching to apply consistent security policies across a project, ensuring that encryption parameters and key selection remain uniform throughout the development lifecycle.

Features

  • Configuration Encryption - Encrypts sensitive values within structured configuration files while maintaining file readability for version control and automated workflows.
  • Secrets Management - Secures sensitive data using PGP, age, or cloud KMS to prevent plaintext exposure on local disks.
  • Secret Management - Manages sensitive application settings by encrypting values within structured files for version control.
  • Encryption Key Management - Integrates with cloud-based key management services to offload cryptographic operations and simplify secret access.
  • Secret Injection Tools - Injects decrypted secrets directly into child process environments to prevent plaintext exposure on disk.
  • Data Encryption - Encrypts specific values within structured files while preserving the surrounding keys for version control compatibility.
  • Structured Data Encryptors - Protects individual values within YAML or JSON files while keeping the file structure intact.
  • Transparent Interceptors - Decrypts files into memory for transparent editing and automatically re-encrypts them upon saving.
  • Cryptographic Providers - Supports multiple encryption backends like PGP and age to provide flexible key management strategies.
  • Developer Security - Provides a secure development workflow by transparently handling encrypted configuration files.
  • Secret Encryption - Protects sensitive data using local PGP or age encryption for secure offline management.
  • Path Matching Tools - Uses path-based matching to automatically apply encryption rules and security policies to specific configuration files.

Star-Verlauf

Star-Verlauf für getsops/sopsStar-Verlauf für getsops/sops

KI-Suche

Entdecke weitere awesome Repositories

Beschreibe in einfachen Worten, was du brauchst — die KI bewertet tausende kuratierte Open-Source-Projekte nach Relevanz.

Start searching with AI

Open-Source-Alternativen zu Sops

Ähnliche Open-Source-Projekte, sortiert nach der Anzahl der gemeinsamen Funktionen mit Sops.
  • twpayne/chezmoiAvatar von twpayne

    twpayne/chezmoi

    18,075Auf GitHub ansehen↗

    chezmoi is a command-line utility designed to manage and synchronize system configuration files across multiple machines. It uses a local Git repository as the single source of truth, allowing users to track, version, and distribute dotfiles while maintaining a consistent state across diverse operating systems and hardware architectures. The project distinguishes itself through a declarative reconciliation model that computes the difference between the current filesystem and the desired state defined in the repository. It features a robust templating engine that processes configuration files

    Goconfigurationdotfiledotfile-management
    Auf GitHub ansehen↗18,075
  • bitwarden/androidAvatar von bitwarden

    bitwarden/android

    8,457Auf GitHub ansehen↗

    This project is an Android password manager application that provides an end-to-end encrypted vault for storing and synchronizing login credentials, secure notes, and identities. It functions as a secure storage system using zero-knowledge encryption to ensure that only the user can decrypt their stored data. The application integrates directly with the Android system to provide an autofill service that populates usernames and passwords into mobile apps and browser login fields. It also serves as a passkey management wallet for FIDO2 cryptographic passkeys and a time-based one-time password a

    Kotlinandroidbitwardencompose
    Auf GitHub ansehen↗8,457
  • jedisct1/libsodiumAvatar von jedisct1

    jedisct1/libsodium

    13,467Auf GitHub ansehen↗

    Libsodium is a portable, C-based cryptographic library that provides a collection of modern primitives for encryption, decryption, digital signatures, password hashing, and secure key exchange. It is designed to facilitate secure communication and data integrity across diverse hardware architectures and operating systems. The library distinguishes itself by utilizing constant-time primitive execution to prevent side-channel attacks and employing memory-hard algorithms to increase the difficulty of brute-force password attacks. It abstracts complex mathematical operations into simplified inter

    Cccryptocryptography
    Auf GitHub ansehen↗13,467
  • hashicorp/boundaryAvatar von hashicorp

    hashicorp/boundary

    4,041Auf GitHub ansehen↗

    Boundary is an identity-aware access proxy and privileged access management tool. It brokers secure network connections to infrastructure targets by mapping verified user identities to granular permissions, providing a gateway to servers and databases without the need for static credentials or VPNs. The system distinguishes itself through just-in-time connectivity and automated credential injection, delivering short-lived secrets to users during session initialization. It implements a composable security model using allow-only role-based access control and hierarchical resource scoping to iso

    Gohacktoberfesthashicorpsecurity
    Auf GitHub ansehen↗4,041
Alle 30 Alternativen zu Sops anzeigen→

Häufig gestellte Fragen

Was macht getsops/sops?

This tool is a command-line utility designed to manage sensitive data by encrypting specific values within structured files such as YAML or JSON. By protecting only the sensitive portions of a file while leaving the structure intact, it ensures that configuration files remain readable for version control systems and automated workflows.

Was sind die Hauptfunktionen von getsops/sops?

Die Hauptfunktionen von getsops/sops sind: Configuration Encryption, Secrets Management, Secret Management, Encryption Key Management, Secret Injection Tools, Data Encryption, Structured Data Encryptors, Transparent Interceptors.

Welche Open-Source-Alternativen gibt es zu getsops/sops?

Open-Source-Alternativen zu getsops/sops sind unter anderem: twpayne/chezmoi — chezmoi is a command-line utility designed to manage and synchronize system configuration files across multiple… bitwarden/android — This project is an Android password manager application that provides an end-to-end encrypted vault for storing and… jedisct1/libsodium — Libsodium is a portable, C-based cryptographic library that provides a collection of modern primitives for encryption,… hashicorp/boundary — Boundary is an identity-aware access proxy and privileged access management tool. It brokers secure network… infisical/infisical — Infisical is a centralized secrets management platform designed to store, synchronize, and control access to sensitive… mozilla/sops — Sops is a secrets encryption tool designed to encrypt and decrypt sensitive values within configuration files. It…