{"id":19963695,"url":"https://github.com/cyberark/summon-aws-secrets","last_synced_at":"2025-05-03T22:32:45.014Z","repository":{"id":31510046,"uuid":"128110795","full_name":"cyberark/summon-aws-secrets","owner":"cyberark","description":"Summon provider for AWS Secrets Manager","archived":false,"fork":false,"pushed_at":"2023-10-17T17:32:00.000Z","size":367,"stargazers_count":50,"open_issues_count":6,"forks_count":18,"subscribers_count":21,"default_branch":"main","last_synced_at":"2024-06-20T11:10:53.711Z","etag":null,"topics":["aws","aws-secrets-manager","conjbot-notify","conjur-community-team","secrets-management","summon","summon-provider"],"latest_commit_sha":null,"homepage":null,"language":"Go","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"mit","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/cyberark.png","metadata":{"files":{"readme":"README.md","changelog":"CHANGELOG.md","contributing":"CONTRIBUTING.md","funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":".github/CODEOWNERS","security":"SECURITY.md","support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null}},"created_at":"2018-04-04T19:26:02.000Z","updated_at":"2023-08-13T01:12:11.000Z","dependencies_parsed_at":"2024-06-20T10:19:00.779Z","dependency_job_id":"792ae9ea-b782-4d18-b030-e5d599ade4fa","html_url":"https://github.com/cyberark/summon-aws-secrets","commit_stats":null,"previous_names":[],"tags_count":6,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/cyberark%2Fsummon-aws-secrets","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/cyberark%2Fsummon-aws-secrets/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/cyberark%2Fsummon-aws-secrets/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/cyberark%2Fsummon-aws-secrets/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/cyberark","download_url":"https://codeload.github.com/cyberark/summon-aws-secrets/tar.gz/refs/heads/main","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":224374644,"owners_count":17300691,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["aws","aws-secrets-manager","conjbot-notify","conjur-community-team","secrets-management","summon","summon-provider"],"created_at":"2024-11-13T02:17:06.637Z","updated_at":"2024-11-13T02:17:07.334Z","avatar_url":"https://github.com/cyberark.png","language":"Go","funding_links":[],"categories":[],"sub_categories":[],"readme":"# summon-aws-secrets\n[Summon](https://github.com/cyberark/summon) provider for AWS Secrets Manager\n\n## Install\nUse the auto-install script. This will install the latest version of summon-aws-secrets.\nThe script requires sudo to place summon-aws-secrets in `/usr/local/lib/summon`.\n\n```\ncurl -sSL https://raw.githubusercontent.com/cyberark/summon-aws-secrets/master/install.sh | bash\n```\n\nOtherwise, download the [latest release](https://github.com/cyberark/summon-aws-secrets/releases) and extract it to the directory `/usr/local/lib/summon`.\n\n**If you are running an Alpine-based system, you will need to add libc6 compatiblity package (`apk add libc6-compat`)!**\n\n## Variable IDs\nVariable IDs are used as identifiers for fetching Secrets. These are made up of a secret name (required) and secret key path (optional). \n\nThe format used is `my/secret/name#mysecretkeypath`, where `#mysecretkeypath` is optional and only relevant when the value returned by `my/secret/name` alone is valid JSON.\n\n### secret name (required)\nThis is the AWS secret name, which must be ASCII letters, digits, or any of the following characters: /_+=.@-\n\n### secret key path (optional)\nThe secret key path provides access to top-level values inside secrets stored as valid JSON.\n\n### Example\nExample Secret JSON in aws:\n\n```json\n{\n  \"user-1\": \"password-1\",\n  \"user-2\": \"password-2\",\n  \"user-3\": \"password-3\"\n}\n```\n\nUse of `summon-aws-secrets` without secret key path:\n```bash\n$ summon-aws-secrets prod/aws/iam/user/robot/access_key_id\n{ \"user-1\": \"password-1\", \"user-2\": \"password-2\", \"user-3\": \"password-3\"}\n```\n\nUse of `summon-aws-secrets` with secret key path:\n```bash\n$ summon-aws-secrets prod/aws/iam/user/robot/access_key_id#user-2\npassword-2\n```\n\n## Usage in isolation\nGive summon-aws-secrets a variable ID and it will fetch it for you and print the value to stdout.\n\n```sh-session\n$ # Configure in similar fashion to AWS CLI see https://docs.aws.amazon.com/cli/latest/userguide/cli-chap-getting-started.html\n$ summon-aws-secrets prod/aws/iam/user/robot/access_key_id\n8h9psadf89sdahfp98\n```\n\n### Flags\n`summon-aws-secrets` supports a single flag.\n\n* `-v, --version` Output version number and quit\n\n## Usage as a provider for Summon\n[Summon](https://github.com/cyberark/summon/) is a command-line tool that reads a file in secrets.yml format and injects secrets as environment variables into any process. Once the process exits, the secrets are gone.\n\n*Example*\n\nAs an example let's use the `env` command: \n\nFollowing installation, define your keys in a `secrets.yml` file\n\n```yml\nAWS_ACCESS_KEY_ID: !var aws/iam/user/robot/access_key_id\nAWS_SECRET_ACCESS_KEY: !var aws/iam/user/robot/secret_access_key\n```\n\nBy default, summon will look for `secrets.yml` in the directory it is called from and export the secret values to the environment of the command it wraps.\n\nWrap the `env` in summon:\n\n```sh\n$ # Configure in similar fashion to AWS CLI see https://docs.aws.amazon.com/cli/latest/userguide/cli-chap-getting-started.html\n$ summon --provider summon-aws-secrets env\n...\nAWS_ACCESS_KEY_ID=AKIAJS34242K1123J3K43\nAWS_SECRET_ACCESS_KEY=A23MSKSKSJASHDIWM\n...\n```\n\n`summon` resolves the entries in secrets.yml with the AWS Secrets Manager provider and makes the secret values available to the environment of the command `env`.\n\n## Configuration\nThis provider uses the same configuration pattern as the [AWS CLI\n](https://docs.aws.amazon.com/cli/latest/userguide/cli-chap-getting-started.html) to connect to AWS.\n\n\n## Contributing\n\nWe welcome contributions of all kinds to this repository. For instructions on how to get started and descriptions of our development workflows, please see our [contributing\nguide][contrib].\n\n[contrib]: CONTRIBUTING.md\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fcyberark%2Fsummon-aws-secrets","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fcyberark%2Fsummon-aws-secrets","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fcyberark%2Fsummon-aws-secrets/lists"}