On 2023-07-12 13:55:06 +0530 (+0530), Gk Gk wrote:
Is the file secret.yaml encrypted or plain text ? [...]
It's plain text, but you could for example LUKS mount an encrypted file on a loopback and store it inside that. The bigger question is, if you encrypt the file with your password in it, then where do you safely store the decryption key? Without knowing more about your use case, it sounds like you're back to the same problem you had with the password. If you're only using the software interactively anyway then just don't put the password in your configuration, enter it when prompted instead. You can also supply it as an environment variable (OS_PASSWORD) or command line argument (--os-password) if you don't want to be prompted but also don't want to put it in your configuration. -- Jeremy Stanley