msw/CISS.debian.installer
SHA256
2
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

V8.00.000.2025.06.17
All checks were successful
🛡️ Shell Script Linting / 🛡️ Shell Script Linting (push) Successful in 2m15s
Details

Browse Source 
Signed-off-by: Marc S. Weidner <msw@coresecret.dev>
This commit is contained in:
Marc S. Weidner
2025-10-24 21:59:13 +01:00
parent d035127a67
commit 8ba80fbb38
1 changed files with 6 additions and 8 deletions
Download Patch File Download Diff File Expand all files Collapse all files

14
func/cdi_1250_yaml/1256_secret_parser.sh
View File

@@ -148,10 +148,9 @@ yaml_secret() {
### Decrypt once, stream into yq; avoid storing full doc in memory; emits '<path>\0<value>\0' for each 'secrets.*.value' ### Decrypt once, stream into yq; avoid storing full doc in memory; emits '<path>\0<value>\0' for each 'secrets.*.value'
# shellcheck disable=SC2016,SC2312 # shellcheck disable=SC2016,SC2312
exec {__pipe_fd}< <( exec {__pipe_fd}< <(
sops -d --input-type=yaml --output-type=yaml -- "${secrets_yaml}" | yq -r -N -0 ' sops -d --input-type=yaml --output-type=yaml -- "${secrets_yaml}" | yq -r -N -0 'leaf_paths as $p
paths(scalars) as $p | select($p[0]=="secrets" and $p[-1]=="value")
| select($p[0] == "secrets" and $p[-1] == "value") | ($p[0:-1] | join(".")), ((getpath($p)//"") | tostring)
| ($p[0:-1] | join(".")), ((getpath($p) // "") | tostring)
' - ' -
) )
@@ -163,10 +162,9 @@ yaml_secret() {
# -0 : NUL between *each* result # -0 : NUL between *each* result
# shellcheck disable=SC2016,SC2312 # shellcheck disable=SC2016,SC2312
exec {__pipe_fd}< <( exec {__pipe_fd}< <(
yq -r -N -0 ' yq -r -N -0 'leaf_paths as $p
paths(scalars) as $p | select($p[0]=="secrets" and $p[-1]=="value")
| select($p[0] == "secrets" and $p[-1] == "value") | ($p[0:-1] | join(".")), ((getpath($p)//"") | tostring)
| ($p[0:-1] | join(".")), ((getpath($p) // "") | tostring)
' -- "${secrets_yaml}" ' -- "${secrets_yaml}"
) )