GCP Secret Manager Buildkite Plugin

A Buildkite plugin to read secrets from GCP Secret Manager.

This plugin requires a Google Cloud credentials file to be available on your Buildkite Agent machines.

Other preinstalled requirements:

gcloud
jq

Example

Add the following to your pipeline.yml:

steps:
  - command: 'echo \$SECRET_VAR'
    plugins:
      - avaly/gcp-secret-manager#v1.0.0:
          credentials_file: /etc/gcloud-credentials.json
          env:
            SECRET_VAR: my-secret-name
            OTHER_SECRET_VAR: my-other-secret-name

Configuration

`credentials_file` (Required, string)

The file path of a Google Cloud credentials file, which is used to access the secrets. The account of the credentials file needs to have the Secret Manager Secret Accessor role (roles/secretmanager.secretAccessor).

`env` (object)

An object defining the export variables names and the secret names which will populate the values.

Developing

To run the tests:

docker-compose run --rm shellcheck
docker-compose run --rm tests

Contributing

Fork the repo
Make the changes
Run the tests
Commit and push your changes
Send a pull request

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

README.md

README.md

GCP Secret Manager Buildkite Plugin

Example

Configuration

`credentials_file` (Required, string)

`env` (object)

Developing

Contributing

Files

README.md

Latest commit

History

README.md

File metadata and controls

GCP Secret Manager Buildkite Plugin

Example

Configuration

credentials_file (Required, string)

env (object)

Developing

Contributing

`credentials_file` (Required, string)

`env` (object)