v0.1.4

Overview

Features 🚀

• feat: switch to log/slog by @csatib02 in #189
• feat: general codebase improvements by @csatib02 in #205
• feat: rework command structure by @csatib02 in #215
• refactor: remove scheduling by @csatib02 in #217
• feat: add image signing by @csatib02 in #229

Maintenance 🚧

• chore: update repo config by @csatib02 in #188
• chore: update flake.nix by @csatib02 in #196
• chore: add ldflags for version by @csatib02 in #211
• chore: update deps by @csatib02 in #261
• chore: prepare release by @csatib02 in #265

Documentation 📄

• docs: update examples by @csatib02 in #190
• docs: CNCF onboarding by @csatib02 in #232
• docs: update by @csatib02 in #218

Dependency Updates ⬆️

View all dependency changes

• build(deps): Bump DeterminateSystems/magic-nix-cache-action from 6 to 7 by @dependabot in #191
• build(deps): Bump aquasecurity/trivy-action from 0.21.0 to 0.22.0 by @dependabot in #192
• build(deps): Bump actions/dependency-review-action from 4.3.2 to 4.3.3 by @dependabot in #194
• build(deps): Bump github/codeql-action from 3.25.7 to 3.25.8 by @dependabot in #193
• chore(deps): lock file maintenance by @renovate in #195
• build(deps): Bump github/codeql-action from 3.25.8 to 3.25.10 by @dependabot in #197
• build(deps): Bump docker/build-push-action from 5.3.0 to 5.4.0 by @dependabot in #198
• build(deps): Bump actions/checkout from 4.1.6 to 4.1.7 by @dependabot in #199
• build(deps): Bump github.com/spf13/cobra from 1.8.0 to 1.8.1 by @dependabot in #200
• chore(deps): lock file maintenance by @renovate in #201
• build(deps): Bump docker/build-push-action from 5.4.0 to 6.1.0 by @dependabot in #206
• build(deps): Bump aquasecurity/trivy-action from 0.22.0 to 0.23.0 by @dependabot in #207
• build(deps): Bump alpine from 3.20.0 to 3.20.1 by @dependabot in #208
• chore(deps): lock file maintenance by @renovate in #209
• build(deps): Bump github.com/hashicorp/go-retryablehttp from 0.7.6 to 0.7.7 by @dependabot in #210
• build(deps): Bump docker/build-push-action from 6.1.0 to 6.2.0 by @dependabot in #213
• build(deps): Bump github/codeql-action from 3.25.10 to 3.25.11 by @dependabot in #212
• chore(deps): lock file maintenance by @renovate in #214
• build(deps): Bump actions/upload-artifact from 4.3.3 to 4.3.4 by @dependabot in #219
• build(deps): Bump docker/setup-buildx-action from 3.3.0 to 3.4.0 by @dependabot in #221
• build(deps): Bump docker/build-push-action from 6.2.0 to 6.3.0 by @dependabot in #222
• build(deps): Bump docker/setup-qemu-action from 3.0.0 to 3.1.0 by @dependabot in #220
• build(deps): Bump google.golang.org/grpc from 1.64.0 to 1.64.1 by @dependabot in #224
• build(deps): Bump github.com/samber/slog-multi from 1.1.0 to 1.2.0 by @dependabot in #225
• build(deps): Bump aquasecurity/trivy-action from 0.23.0 to 0.24.0 by @dependabot in #228
• build(deps): Bump actions/dependency-review-action from 4.3.3 to 4.3.4 by @dependabot in #227
• build(deps): Bump github/codeql-action from 3.25.11 to 3.25.12 by @dependabot in #226
• build(deps): Bump docker/build-push-action from 6.3.0 to 6.4.1 by @dependabot in #231
• build(deps): Bump github/codeql-action from 3.25.12 to 3.25.13 by @dependabot in #230
• chore(deps): lock file maintenance by @renovate in #223
• chore(deps): lock file maintenance by @renovate in #233
• build(deps): Bump golang.org/x/sync from 0.7.0 to 0.8.0 by @dependabot in #234
• build(deps): Bump alpine from 3.20.1 to 3.20.2 by @dependabot in #242
• build(deps): Bump docker/setup-qemu-action from 3.1.0 to 3.2.0 by @dependabot in #241
• build(deps): Bump docker/login-action from 3.2.0 to 3.3.0 by @dependabot in #240
• build(deps): Bump docker/build-push-action from 6.4.1 to 6.5.0 by @dependabot in #235
• build(deps): Bump github/codeql-action from 3.25.13 to 3.25.15 by @dependabot in #237
• build(deps): Bump actions/upload-artifact from 4.3.4 to 4.3.5 by @dependabot in #238
• build(deps): Bump ossf/scorecard-action from 2.3.3 to 2.4.0 by @dependabot in #239
• build(deps): Bump docker/setup-buildx-action from 3.4.0 to 3.6.1 by @dependabot in #236
• build(deps): Bump sigstore/cosign-installer from 3.5.0 to 3.6.0 by @dependabot in #247
• build(deps): Bump github/codeql-action from 3.25.15 to 3.26.0 by @dependabot in #245
• build(deps): Bump github.com/spf13/cast from 1.6.0 to 1.7.0 by @dependabot in #243
• build(deps): Bump docker/build-push-action from 6.5.0 to 6.6.1 by @dependabot in #246
• build(deps): Bump actions/upload-artifact from 4.3.5 to 4.3.6 by @dependabot in #244
• build(deps): Bump docker/build-push-action from 6.6.1 to 6.7.0 by @dependabot in #248
• build(deps): Bump github/codeql-action from 3.26.0 to 3.26.2 by @dependabot in #249
• build(deps): Bump tonistiigi/xx from 1.4.0 to 1.5.0 by @dependabot in #251
• build(deps): Bump github/codeql-action from 3.26.2 to 3.26.5 by @dependabot in #252
• build(deps): Bump actions/upload-artifact from 4.3.6 to 4.4.0 by @dependabot in #253
• build(deps): Bump github.com/samber/slog-multi from 1.2.0 to 1.2.1 by @dependabot in #256
• build(deps): Bump github/codeql-action from 3.26.5 to 3.26.6 by @dependabot in #254
• build(deps): Bump alpine from 3.20.2 to 3.20.3 by @dependabot in #257
• build(deps): Bump DeterminateSystems/magic-nix-cache-action from 7 to 8 by @dependabot in #258
• build(deps): Bump cachix/install-nix-action from 27 to 28 by @dependabot in #260
• build(deps): Bump github/codeql-action from 3.26.6 to 3.26.7 by @dependabot in #259
• chore(deps): lock file maintenance by @renovate in #250
• chore(deps): lock file maintenance by @renovate in #264
• build(deps): Bump github.com/samber/slog-multi from 1.2.1 to 1.2.2 by @dependabot in #262
• build(deps): Bump github/codeql-action from 3.26.7 to 3.26.8 by @dependabot in #263

Full Changelog: v0.1.3...v0.1.4

v0.1.3

Overview

Features 🚀

• feat: add issue template by @csatib02 in #183

Maintenance 🚧

• fix: vault get/set secrets, add new example by @csatib02 in #168
• chore: update nix by @csatib02 in #178
• chore: bump go version and Bank-Vaults packages by @csatib02 in #187

Dependency Updates ⬆️

View all dependency changes

• build(deps): Bump actions/dependency-review-action from 4.1.0 to 4.1.3 by @dependabot in #136
• build(deps): Bump aquasecurity/trivy-action from 0.17.0 to 0.18.0 by @dependabot in #139
• build(deps): Bump docker/setup-buildx-action from 3.0.0 to 3.1.0 by @dependabot in #138
• build(deps): Bump actions/cache from 4.0.0 to 4.0.1 by @dependabot in #140
• build(deps): Bump github.com/stretchr/testify from 1.8.4 to 1.9.0 by @dependabot in #141
• build(deps): Bump github.com/go-jose/go-jose/v3 from 3.0.1 to 3.0.3 by @dependabot in #142
• build(deps): Bump aquasecurity/trivy-action from 0.18.0 to 0.19.0 by @dependabot in #155
• build(deps): Bump actions/dependency-review-action from 4.1.3 to 4.2.5 by @dependabot in #154
• build(deps): Bump actions/cache from 4.0.1 to 4.0.2 by @dependabot in #152
• build(deps): Bump docker/login-action from 3.0.0 to 3.1.0 by @dependabot in #150
• build(deps): Bump cachix/install-nix-action from 25 to 26 by @dependabot in #143
• build(deps): Bump google.golang.org/protobuf from 1.32.0 to 1.33.0 by @dependabot in #146
• build(deps): Bump golang from 2745a45 to 010f3b3 by @dependabot in #145
• build(deps): Bump docker/build-push-action from 5.1.0 to 5.3.0 by @dependabot in #147
• build(deps): Bump docker/setup-buildx-action from 3.1.0 to 3.2.0 by @dependabot in #149
• build(deps): Bump actions/checkout from 4.1.1 to 4.1.2 by @dependabot in #151
• build(deps): Bump DeterminateSystems/magic-nix-cache-action from 3 to 4 by @dependabot in #148
• build(deps): Bump golang.org/x/sync from 0.6.0 to 0.7.0 by @dependabot in #156
• build(deps): Bump golang from 010f3b3 to d995eb6 by @dependabot in #157
• build(deps): Bump docker/setup-buildx-action from 3.2.0 to 3.3.0 by @dependabot in #159
• build(deps): Bump golang.org/x/net from 0.21.0 to 0.23.0 by @dependabot in #161
• build(deps): Bump actions/checkout from 4.1.2 to 4.1.3 by @dependabot in #162
• build(deps): Bump actions/upload-artifact from 4.3.1 to 4.3.2 by @dependabot in #163
• build(deps): Bump actions/checkout from 4.1.3 to 4.1.4 by @dependabot in #164
• build(deps): Bump actions/upload-artifact from 4.3.2 to 4.3.3 by @dependabot in #165
• build(deps): Bump actions/dependency-review-action from 4.2.5 to 4.3.2 by @dependabot in #166
• build(deps): Bump golang from d995eb6 to 4531927 by @dependabot in #173
• build(deps): Bump actions/checkout from 4.1.4 to 4.1.5 by @dependabot in #172
• build(deps): Bump DeterminateSystems/magic-nix-cache-action from 4 to 6 by @dependabot in #169
• build(deps): Bump aquasecurity/trivy-action from 0.19.0 to 0.20.0 by @dependabot in #170
• build(deps): Bump ossf/scorecard-action from 2.3.1 to 2.3.3 by @dependabot in #171
• build(deps): Bump cachix/install-nix-action from 26 to 27 by @dependabot in #174
• build(deps): Bump golang from 4531927 to d1a601b by @dependabot in #177
• build(deps): Bump github/codeql-action from 2.13.4 to 3.25.5 by @dependabot in #176
• build(deps): Bump actions/checkout from 4.1.5 to 4.1.6 by @dependabot in #175
• build(deps): Bump aquasecurity/trivy-action from 0.20.0 to 0.21.0 by @dependabot in #179
• build(deps): Bump alpine from 3.19.1 to 3.20.0 by @dependabot in #181
• build(deps): Bump github/codeql-action from 3.25.5 to 3.25.6 by @dependabot in #180
• chore(deps): lock file maintenance by @renovate in #182
• build(deps): Bump github/codeql-action from 3.25.6 to 3.25.7 by @dependabot in #184
• build(deps): Bump docker/login-action from 3.1.0 to 3.2.0 by @dependabot in #185
• chore(deps): lock file maintenance by @renovate in #186

Full Changelog: v0.1.2...v0.1.3

v0.1.2

Overview

This release targets dependency and pipeline updates.

Maintenance 🚧

• feat(GA): add common pipeline actions by @ramizpolic in #92
• build(deps): Bump aquasecurity/trivy-action from 0.12.0 to 0.16.0 by @dependabot in #97
• build(deps): Bump golang.org/x/sync from 0.4.0 to 0.5.0 by @dependabot in #78
• build(deps): Bump github.com/spf13/cast from 1.5.1 to 1.6.0 by @dependabot in #89
• build(deps): Bump docker/metadata-action from 5.0.0 to 5.3.0 by @dependabot in #98
• build(deps): Bump golang from 1.21.3-alpine3.18 to 1.21.5-alpine3.18 by @dependabot in #95
• build(deps): Bump ossf/scorecard-action from 2.3.0 to 2.3.1 by @dependabot in #71
• build(deps): Bump actions/dependency-review-action from 3.1.2 to 3.1.4 by @dependabot in #91
• build(deps): Bump docker/build-push-action from 5.0.0 to 5.1.0 by @dependabot in #86
• build(deps): Bump cachix/install-nix-action from 23 to 24 by @dependabot in #90
• build(deps): Bump google.golang.org/grpc from 1.54.0 to 1.56.3 by @dependabot in #72
• build(deps): Bump actions/upload-artifact from 3.1.3 to 4.0.0 by @dependabot in #100
• build(deps): Bump docker/metadata-action from 5.3.0 to 5.4.0 by @dependabot in #102
• build(deps): Bump golang.org/x/crypto from 0.14.0 to 0.17.0 by @dependabot in #101
• build(deps): Bump golang from 5c1cabd to 9390a99 by @dependabot in #99
• chore: update dependency packages by @ramizpolic in #103
• build(deps): Bump golang from 9390a99 to d8b9994 by @dependabot in #105
• build(deps): Bump aquasecurity/trivy-action from 0.16.0 to 0.16.1 by @dependabot in #107
• build(deps): Bump docker/metadata-action from 5.4.0 to 5.5.0 by @dependabot in #110
• build(deps): Bump actions/dependency-review-action from 3.1.4 to 3.1.5 by @dependabot in #108
• build(deps): Bump golang from 1.21.5-alpine3.18 to 1.22rc1-alpine3.18 by @dependabot in #111
• build(deps): Bump actions/cache from 3.3.2 to 3.3.3 by @dependabot in #112
• build(deps): Bump actions/upload-artifact from 4.0.0 to 4.1.0 by @dependabot in #114
• build(deps): Bump actions/dependency-review-action from 3.1.5 to 4.0.0 by @dependabot in #117
• build(deps): Bump actions/upload-artifact from 4.1.0 to 4.3.0 by @dependabot in #118
• build(deps): Bump actions/cache from 3.3.3 to 4.0.0 by @dependabot in #115
• build(deps): Bump alpine from 3.18.4 to 3.19.1 by @dependabot in #121
• build(deps): Bump cachix/install-nix-action from 24 to 25 by @dependabot in #113
• build(deps): Bump golang from 1.22rc1-alpine3.18 to 1.22rc2-alpine3.18 by @dependabot in #120
• build(deps): Bump DeterminateSystems/magic-nix-cache-action from 2 to 3 by @dependabot in #123
• build(deps): Bump actions/upload-artifact from 4.3.0 to 4.3.1 by @dependabot in #125
• build(deps): Bump docker/metadata-action from 5.5.0 to 5.5.1 by @dependabot in #122
• ci: update dependabot config by @akijakya in #128
• build(deps): Bump golang from 1.22rc2-alpine3.18 to 1.22-alpine3.18 by @dependabot in #129
• build(deps): Bump haya14busa/action-cond from 1.1.1 to 1.2.1 by @dependabot in #130
• build(deps): Bump aquasecurity/trivy-action from 0.16.1 to 0.17.0 by @dependabot in #126
• build(deps): Bump tonistiigi/xx from 1.3.0 to 1.4.0 by @dependabot in #127
• build(deps): Bump golang.org/x/sync from 0.5.0 to 0.6.0 by @dependabot in #109
• refactor: bump vault-sdk version by @ramizpolic in #131
• feat: Cancel previous workflow on push by @csatib02 in #134
• build(deps): Bump actions/dependency-review-action from 4.0.0 to 4.1.0 by @dependabot in #135

New Contributors

• @akijakya made their first contribution in #128
• @csatib02 made their first contribution in #134

Full Changelog: v0.1.1...v0.1.2

v0.1.1

What's Changed

• build(deps): Bump golang from 1.21.2-alpine3.18 to 1.21.3-alpine3.18 by @dependabot in #62
• docs: minor improvements by @ramizpolic in #63
• feat: verify pull request by @ramizpolic in #64
• build(deps): Bump actions/checkout from 4.1.0 to 4.1.1 by @dependabot in #67
• chore(deps): lock file maintenance by @renovate in #66
• build(deps): Bump golang.org/x/net from 0.13.0 to 0.17.0 by @dependabot in #65
• build(deps): Bump tonistiigi/xx from 1.2.1 to 1.3.0 by @dependabot in #69
• chore(deps): lock file maintenance by @renovate in #70
• build(deps): Bump github.com/spf13/cobra from 1.7.0 to 1.8.0 by @dependabot in #79
• build(deps): Bump actions/dependency-review-action from 3.1.0 to 3.1.2 by @dependabot in #82
• chore: update docs and makefile by @ramizpolic in #83
• docs: add examples by @ramizpolic in #87

Full Changelog: v0.1.0...v0.1.1

v0.1.0

Secret Sync - Alpha Release v0.1.0 🎉

We are excited to announce the alpha release of Secret Sync, a project designed to streamline secret synchronization.

Secret Sync exposes a generic way to interact with external secret storage systems like HashiCorp Vault and provides a set of API models to interact and orchestrate the synchronization of secrets between them.

🌟 Features

• Simple integration with a variety of secret storage systems
• User-friendly API to facilitate interaction between different stores
• Pipeline-like syntax for defining synchronization actions on a secret level
• Advanced templating capabilities for transforming secrets

To get familiarized, find the Getting Started guide which will walk you through how to use Secret Sync in a GitOps way.

❓ What's next?

We are actively working on consolidating our APIs and expanding the list of supported secret storage providers.
Check out our Roadmap to see the new features we are working on.

🗣️ We are looking for feedback!

Your insights are crucial to us. You can support us with your feedback, bug reports, and feature requests by responding to this announcement, or opening an issue.

This release marks another important milestone for Bank-Vaults in our mission to simplify and enhance secret management in the Cloud Native ecosystem.

🔗 Useful links

• Contributing guide
• Security procedures
• Code of Conduct
• Email: [email protected]

© License

The project is licensed under the Apache 2.0 License.

📢 Release Notes

• feat: secrets store sync CLI by @ramizpolic in #1
• chore: add codeowners by @ramizpolic in #25
• chore: fix codeowners by @ramizpolic in #26
• Build by @sagikazarmark in #27
• feat: extend and improve API by @ramizpolic in #28
• feat: update docs and usage by @ramizpolic in #49
• docs: simplify docs references by @ramizpolic in #57
• docs: fix docker usage by @ramizpolic in #58
• docs: update readme by @ramizpolic in #60

New Contributors

• @ramizpolic made their first contribution in #1
• @sagikazarmark made their first contribution in #27
• @dependabot made their first contribution in #32
• @renovate made their first contribution in #35

Full Changelog: https://github.com/bank-vaults/secret-sync/commits/v0.1.0