Question 1

How do I encrypt a file with git-secret?

Accepted Answer

First, add the file using 'git secret add <file>', then encrypt it with 'git secret hide'. This creates an encrypted version tracked in git, as per the README's workflow examples.

Question 2

git-secret vs git-crypt: which should I use?

Accepted Answer

git-secret uses PGP public-key encryption for granular user access, while git-crypt uses symmetric encryption with a single key. Choose git-secret for team-based access control, but git-crypt if you prefer simplicity without user management.

Question 3

Does git-secret work on Windows?

Accepted Answer

Yes, it supports cross-platform via package managers, but on Windows, you may need to use WSL or similar tools since it's a bash-based tool with dependencies like gpg. Check the README for installation details.

Question 4

What happens if I lose my private key in git-secret?

Accepted Answer

You won't be able to decrypt secrets anymore, and an admin must remove your public key from the keyring and re-encrypt files. The README notes that secrets don't change on revocation, but key loss requires re-encryption.

Question 5

Can git-secret encrypt entire directories?

Accepted Answer

No, it encrypts individual files. You need to add each file separately using 'git secret add', as indicated in the README's commands for managing secret files.

Question 6

How to use git-secret in CI/CD pipelines?

Accepted Answer

Store encrypted files in git, and in CI, decrypt them using a trusted user's private key (often via environment variables). The README doesn't detail this, so it requires manual setup for automation.

Question 7

Is git-secret secure for storing passwords?

Accepted Answer

Yes, with caveats: it uses PGP encryption, but the README warns about sha collisions with the -m option, so avoid that or pad files for high-security scenarios like passwords.

git-secret

What is git-secret?

Overview

Use Cases

Best For

Related Projects

Found a gem we're missing?

Not Ideal For

Pros & Cons

Pros

Cons

Frequently Asked Questions