Enable cleartext diffs for SOPS secrets

2025-06-24 16:14:42 +02:00 · 2025-06-24 16:14:42 +02:00 · 8def445ac0
commit 8def445ac0
parent 1fb702bcd1
2 changed files with 3 additions and 0 deletions
--- a/.gitattributes
+++ b/.gitattributes
@ -0,0 +1 @@
+*.secrets.yaml diff=sopsdiffer
--- a/README.md
+++ b/README.md
@ -233,6 +233,8 @@ If the accessing process is not root it must be member of the group `config.user
 for systemd services this can be archived by setting `serviceConfig.SupplementaryGroups = [ config.users.groups.keys.name ];`
 it the service configuration.

+For cleartext diffs configure your local clone with `git config diff.sopsdiffer.textconv "sops decrypt"` (see [Github](https://github.com/getsops/sops?tab=readme-ov-file#showing-diffs-in-cleartext-in-git)).
+
 ## impermanence

 These machines are setup with `"/"` as a tmpfs. This is there to keep the machines clean. So no clutter in home