Skip to content

README.md

Latest commit

 

History

History
36 lines (26 loc) · 1.78 KB

README.md

File metadata and controls

36 lines (26 loc) · 1.78 KB

Bitbucket Git Crypt Pipe

semantic-release XO code style Snyk Security CodeQL OpenSSF Scorecard

Decrypts git-crypt encrypted repositories in Bitbucket Pipelines.

YAML Definition

Add the following snippet to the script section of your bitbucket-pipelines.yml file:

script:
  - pipe: docker://tomerh2001/git-crypt-pipe:latest
    variables:
      SECRETS_KEY: $SECRETS_KEY
      # GIT_STASH: 'true' # Optional

Variables

Name Usage Type
SECRETS_KEY The base64 encoded git-crypt key. Mandatory
GIT_STASH When true, runs git stash before decrypting, and git stash apply after. Optional

Details

This pipe is built to help you decrypt files in your git repository encrypted using git-crypt during a Bitbucket Pipeline run. Ensure that you have git-crypt setup properly in your repository before using this pipe.

Prerequisites

  • You must have your repository encrypted with git-crypt.
  • A base64 encoded git-crypt key stored in your Bitbucket Pipelines environment variables as SECRETS_KEY.