Passing git-crypt symmtric key in CirclCI


#1

Hi All,

I am planning to safeguard sensitive information such as key, passwords using git-crypt and source code stored in git repo is getting deployed via circleCI. How can i pass symmetric private key to decrypt sensitive data for use in CirclCI?


#2

You can store the symmetric key in your env vars. Click on the cog icon of your project in the CircleCI app, and then go to “Environment Variables”. Once you add something in here, you can only see a few characters of it in the interface, so it is safe from prying eyes.

Just bear in mind that anyone who has commit access to your project can set up a run step to expose it, but that’s not a CircleCI-specific problem.