https://github.com/yc-actions/yc-lockbox

GitHub Action to fetch secret from Yandex Cloud Lockbox.
https://github.com/yc-actions/yc-lockbox

github-actions secret-management secrets yandex-cloud

Last synced: about 2 months ago
JSON representation

GitHub Action to fetch secret from Yandex Cloud Lockbox.

• Host: GitHub
• URL: https://github.com/yc-actions/yc-lockbox
• Owner: yc-actions
• License: mit
• Created: 2021-11-02T16:00:12.000Z (almost 4 years ago)
• Default Branch: main
• Last Pushed: 2024-04-08T14:57:45.000Z (over 1 year ago)
• Last Synced: 2024-04-08T18:17:39.616Z (over 1 year ago)
• Topics: github-actions, secret-management, secrets, yandex-cloud
• Language: TypeScript
• Homepage:
• Size: 3.62 MB
• Stars: 3
• Watchers: 2
• Forks: 0
• Open Issues: 1
• Metadata Files:
  • Readme: README.md
  • License: LICENSE

Awesome Lists containing this project

README

          
## GitHub Action to fetch secret from Yandex Cloud Lockbox.

The action fetches secret from Yandex Cloud Lockbox.

**Table of Contents**

- [Usage](#usage)

- [Permissions](#permissions)

- [License Summary](#license-summary)

## Usage

```yaml

    - name: Fetch secret

      id: lockbox-secret

      uses: yc-actions/yc-lockbox@v1

      with:

        yc-sa-json-credentials: ${{ secrets.YC_SA_JSON_CREDENTIALS }}

        secret-id: e6q************

```

`yc-sa-json-credentials` should contain JSON with authorized key for Service Account. More info in [Yandex Cloud IAM documentation](https://cloud.yandex.ru/docs/container-registry/operations/authentication#sa-json).

See [action.yml](action.yml) for the full documentation for this action's inputs and outputs.

## Permissions

To perform this action, it is required that the service account on behalf of which we are acting has granted the `lockbox.payloadViewer` role or greater.

## License Summary

This code is made available under the MIT license.