v0.5.1

Notable Changes

Below are some of the most relevant changes that are introduced with this release.
You should read at least the Breaking Changes section.

Bugfixes

• Fixed a bug that prevented decrypting pass secrets in environments where not all keys of the password store were known.
  This behavior has been changed so that now only one private key is required while all other public keys need not be known.

v0.5.0

Notable Changes

Below are some of the most relevant changes that are introduced with this release.
You should read at least the Breaking Changes section.

Additions

• Add support for reading ssh keys from ~/.ssh/id_rsa
• Add support for reading username/password credentials from program specified by GIT_ASKPASS environment variable or by core.askPass configuration.

Internal Changes

• The code regarding git credentials has been restructured a bit to only supply correct credential types to libgit.
  This means that no SSH key will be given to git to authenticate an HTTPS pull (because that cannot ever work).

v0.4.0

Notable Changes

Below are some of the most relevant changes that are introduced with this release.
You should read at least the Breaking Changes section.

Additions

• Add support for plain data in PassSecrets

v0.3.1

There are no user-facing changes in this release.
Instead, some internal handling was changed to be more precise.

v0.3.0

Notable Changes

Below are some of the most relevant changes that are introduced with this release.
You should read at least the Breaking Changes section.

Additions

• Add support for setting how kustomize behaves when handling the generated resource.
  This can be done by setting a dedicated behavior field in PassSecret resources.
• Print input and output resources on trace log level

v0.2.11

This release has no notable changes but the CI pipeline has been adapted to publish an additional binary for ubuntu 22.04

v0.2.1

Notable Changes

Below are some of the most relevant changes that are introduced with this release.
You should read at least the Breaking Changes section.

• The public (yaml) api has been refined to be more precise.
  This also has the additional benefit that we do not require the schemars patch that supports serde_yaml primitives.

v0.2.0

Notable Changes

Below are some of the most relevant changes that are introduced with this release.
You should read at least the Breaking Changes section.

Additions

• Add support for specifying a password store's remote repository source.

  This kustomize plugin will automatically try to clone the repository and then retrieve data from it.

  To use this, you can add the following property to your PassSecret manifests:

  apiVersion: ftsell.de/v1beta1
  kind: PassSecret
  metadata:
    name: something
  source:     # leave empty for local ~/.password-store
  # or
  source:
    url: [email protected]:some-user/some-repo.git   # a git clone url

v0.1.0

This is the first release of kustomize-pass.
It is currently very minimal but supports basic functionality to extract secrets from pass and genereate kubernetes Secrets from that information.