mirrors/external-secrets
1
0
Fork 0
mirror of https://github.com/external-secrets/external-secrets.git synced 2026-03-03 11:55:58 -08:00
Code Issues Projects Releases Packages Wiki Activity
External Secrets Operator reads information from a third-party service like AWS Secrets Manager and automatically injects the values as Kubernetes Secrets. https://external-secrets.io/main
4,249 commits 222 branches 248 tags 276 MiB
  • Go 97.7%
  • HCL 0.6%
  • Shell 0.6%
  • Makefile 0.6%
  • Smarty 0.3%
Find a file
Exact
dependabot[bot] 9d16c0a745
 chore(deps): bump distroless/static from 972618c to 28efbe9 (#6008) 
Bumps distroless/static from `972618c` to `28efbe9`.

---
updated-dependencies:
- dependency-name: distroless/static
  dependency-version: 28efbe90d0b2f2a3ee465cc5b44f3f2cf5533514cf4d51447a977a5dc8e526d0
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-03-02 15:38:52 +00:00
.github chore(deps): bump actions/attest-build-provenance from 3.2.0 to 4.1.0 (#6009) 2026-03-02 16:38:32 +01:00
apis chore: update controller runtime (#5930) 2026-02-13 14:38:23 +01:00
assets chore: update docs sponsors & broken links (#3877) 2024-09-06 10:12:14 -03:00
cmd chore(lint): enable concurrent execution for the linter and enable formatters (#5752) 2026-01-05 12:18:37 +01:00
config/crds/bases chore: remove unmaintained secret stores (#5918) 2026-02-06 13:21:41 +01:00
deploy feat(charts): add new flag enable leader for cert-manager (#5863) 2026-02-26 08:16:54 +01:00
design design: feature flag consolidation (#5801) 2026-01-14 22:57:36 +01:00
docs feat(kubernetes): fall back to system CA roots when no CA is configured (#5961) 2026-02-27 16:34:45 +01:00
e2e chore(deps): update Masterminds/sprig to 8cb06fe3c8b0f1163c26b0a558669da72ee14656 (#5747) 2026-02-19 16:01:27 +01:00
generators/v1 chore(deps): update Masterminds/sprig to 8cb06fe3c8b0f1163c26b0a558669da72ee14656 (#5747) 2026-02-19 16:01:27 +01:00
hack chore(deps): bump certifi from 2026.1.4 to 2026.2.25 in /hack/api-docs (#6013) 2026-03-02 12:52:43 +00:00
overrides feat: fix a bunch of Sonar issues (#4208) 2024-12-20 10:31:27 +01:00
pkg fix: the informer can not register use GetInformer instead (#5931) 2026-02-13 18:52:05 +01:00
providers/v1 feat(kubernetes): fall back to system CA roots when no CA is configured (#5961) 2026-02-27 16:34:45 +01:00
runtime chore(deps): update Masterminds/sprig to 8cb06fe3c8b0f1163c26b0a558669da72ee14656 (#5747) 2026-02-19 16:01:27 +01:00
terraform feat: re-implement e2e managed tests (#5444) 2025-10-15 06:40:43 +02:00
tests chore: remove unmaintained secret stores (#5918) 2026-02-06 13:21:41 +01:00
.clomonitor.yml feat: attach sbom/provenance files to GH release, fix clomonitor (#1656) 2022-10-27 08:59:19 +02:00
.dockerignore Add standalone Dockerfile (#1328) 2022-07-12 05:55:22 -03:00
.editorconfig cleanup: add lint and editorconfig 2020-12-21 14:38:48 -05:00
.gitattributes Add support for Vault kvv1 (#3790) 2024-09-17 17:57:08 -03:00
.gitignore fix: lint (#5536) 2025-11-03 14:11:02 -03:00
.golangci.yaml chore(lint): enable concurrent execution for the linter and enable formatters (#5752) 2026-01-05 12:18:37 +01:00
.licenserc.yaml feat: go module separation (#5498) 2025-11-03 08:23:35 +01:00
.sonarcloud.properties chore(linter): fix linter issue in api and cmd package (#5413) 2025-10-24 07:19:57 +02:00
ADOPTERS.md chore: add loblaw to adopter md (#5937) 2026-02-07 12:24:24 +01:00
changelog.json feat: helm release workflow 2021-05-03 22:12:39 +02:00
CNAME Create CNAME 2021-03-05 18:26:07 +01:00
codecov.yml Configure codecov (#2995) 2024-01-05 23:26:39 +01:00
CODEOWNERS.md chore: remove unmaintained secret stores (#5918) 2026-02-06 13:21:41 +01:00
CONTRIBUTING.md Add CONTRIBUTING.md file (#2925) 2023-12-04 21:43:05 +01:00
CONTRIBUTOR_LADDER.md doc: update the ladder with two new tracks: documentation and community (#5298) 2025-09-11 06:31:45 +02:00
DEPRECATING.md Update CyberArk branding from Conjur to CyberArk Secrets Manager (#5359) 2025-09-29 17:32:06 +02:00
Dockerfile chore(deps): bump distroless/static from 972618c to 28efbe9 (#6008) 2026-03-02 15:38:52 +00:00
Dockerfile.standalone chore(deps): bump distroless/static from 972618c to 28efbe9 (#6008) 2026-03-02 15:38:52 +00:00
Dockerfile.ubi chore(deps): bump ubi9/ubi from b8923f5 to cecb1cd (#5984) 2026-02-24 21:53:39 +01:00
go.mod chore(deps): update Masterminds/sprig to 8cb06fe3c8b0f1163c26b0a558669da72ee14656 (#5747) 2026-02-19 16:01:27 +01:00
go.sum chore(deps): update Masterminds/sprig to 8cb06fe3c8b0f1163c26b0a558669da72ee14656 (#5747) 2026-02-19 16:01:27 +01:00
GOVERNANCE.md Update CyberArk branding from Conjur to CyberArk Secrets Manager (#5359) 2025-09-29 17:32:06 +02:00
LICENSE initial commit 2020-11-19 16:34:16 +01:00
main.go chore(lint): enable concurrent execution for the linter and enable formatters (#5752) 2026-01-05 12:18:37 +01:00
MAINTAINERS.md feat: add contributor ladder (#5150) 2025-08-26 06:34:16 +02:00
Makefile Removed the unused check for Windows in Makefile (#5870) 2026-01-28 09:02:17 +01:00
OWNERS.md feat: add contributor ladder (#5150) 2025-08-26 06:34:16 +02:00
PROJECT fix: restore 0.16.0 (#4659) 2025-04-14 13:19:34 -03:00
README.md Update CyberArk branding from Conjur to CyberArk Secrets Manager (#5359) 2025-09-29 17:32:06 +02:00
SECURITY.md chore(docs): update helm charts (#5203) 2025-08-26 14:43:38 -03:00
SECURITY_RESPONSE.md chore: fixup security response suggestions (#3056) 2024-01-21 19:57:15 +01:00
tilt.debug.dockerfile chore: bump golang to 1.25.7 because of cve (#5938) 2026-02-08 11:59:45 +01:00
tilt.dockerfile chore(deps): bump alpine from 865b95f to 2510918 (#5906) 2026-02-02 13:55:19 +01:00
Tiltfile fix: Include all providers in default dev build (#5851) 2026-01-22 07:01:02 +01:00
tools.go chore(license): add automated license header checking using Apache SkyWalking Eyes GitHub Action (#5290) 2025-09-10 12:00:52 +02:00
ubi-build-files-amd64.txt chore(build): Update ubi Docker builds to UBI9 (#5465) 2025-10-22 16:20:21 +03:00
ubi-build-files-arm64.txt chore(build): Update ubi Docker builds to UBI9 (#5465) 2025-10-22 16:20:21 +03:00
ubi-build-files-ppc64le.txt chore(build): Update ubi Docker builds to UBI9 (#5465) 2025-10-22 16:20:21 +03:00
ubi-build-files-s390x.txt chore(build): Update ubi Docker builds to UBI9 (#5465) 2025-10-22 16:20:21 +03:00

README.md

external-secrets

External Secrets

ci CII Best Practices OpenSSF Scorecard Go Report Card FOSSA Status Artifact Hub operatorhub.io

External Secrets Operator is a Kubernetes operator that integrates external secret management systems like AWS Secrets Manager, HashiCorp Vault, Google Secrets Manager, Azure Key Vault, IBM Cloud Secrets Manager, Akeyless, CyberArk Secrets Manager, Pulumi ESC and many more. The operator reads information from external APIs and automatically injects the values into a Kubernetes Secret.

Multiple people and organizations are joining efforts to create a single External Secrets solution based on existing projects. If you are curious about the origins of this project, check out this issue and this PR.

Documentation

External Secrets Operator guides and reference documentation is available at external-secrets.io. Also see our stability and support policy.

Contributing

We welcome and encourage contributions to this project! Please read the Developer and Contribution process guides. Also make sure to check the Code of Conduct and adhere to its guidelines.

Also, please take a look our Contribution Ladder for a very detailed explanation of what roles and tracks are available for people to try and help this project.

Sponsoring

Please consider sponsoring this project, there are many ways you can help us with: engineering time, providing infrastructure, donating money, etc. We are open to cooperations, feel free to approach as and we discuss how this could look like. We can keep your contribution anonymized if that's required (depending on the type of contribution), and anonymous donations are possible inside Opencollective.

Bi-weekly Development Meeting

We host our development meeting every odd wednesday on Zoom. We run the meeting with alternating times 8:00 PM Berlin Time and 1:00 PM Berlin Time. Be sure to check the CNCF Calendar to see when the next meeting is scheduled, we'll also announce the time in our Kubernetes Slack channel. Meeting notes are recorded on this google document.

Anyone is welcome to join. Feel free to ask questions, request feedback, raise awareness for an issue, or just say hi. ;)

Security

Please report vulnerabilities by email to cncf-ExternalSecretsOp-maintainers@lists.cncf.io. Also see our SECURITY.md file for details.

Software bill of materials

We attach SBOM and provenance file to our GitHub release. Also, they are attached to container images.

Adopters

Please create a PR and add your company or project to our ADOPTERS.md file if you are using our project!

Roadmap

You can find the roadmap in our documentation: https://external-secrets.io/main/contributing/roadmap/

Kicked off by

Sponsored by

External Secrets Inc. Container Solutions Form 3 Pento

License

FOSSA Status