Specifically you should compare and contrast to tools like SOPS, Ansible Vault, pass, etc.
> Specifically you should compare and contrast to tools like SOPS, Ansible Vault, pass, etc.
What a boring proposition for hobby projects.
This Github star hunting—, CV padding—, make-it-big-and-BDFL-yourself—approach to open source that has crept in over the last decade is bewildering and rather unpleasant.
Might also extend it with an API. Not sure. cheers!
CBLT•21h ago
Also, while I get the appeal of just storing it all in a giant JSON, I don't really feel that's the final word in simple storage formats. I'd personally just use SQLite, or some other format I could rsync.
renerick•21h ago
CBLT•20h ago
[0] https://www.passwordstore.org/
ecb_penguin•20h ago
Are you just looking for keywords? That's not how a quality security review should be done.
> I don't see any reason to use a tool that's not AEAD.
Do you have an actual attack? Non AEAD schemes have been used for decades without any attack.
There might be entirely valid complaints against this. Lack of AEAD is not one...
> I don't really feel that's the final word in simple storage formats.
Literally nobody said it was
> I'd personally just use SQLite, or some other format I could rsync.
You can rsync a JSON file just as you can rsync a SQLite file....
CBLT•20h ago
`sqlite-rsync` does a deep comparison and only transmits new rows, without deleting other data. `rsync` on a json file just replaces the file.
w1nt3rmut3•18h ago