Salastil/odysseus
1
0
Fork 0
mirror of https://github.com/pewdiepie-archdaemon/odysseus.git synced 2026-06-17 18:25:26 -04:00
Code Issues Packages Projects Releases Wiki Activity

chore: align secrets env ignore patterns

Browse Source 
Align git and Docker ignore patterns for secrets.env artifacts while preserving the intended encrypted-file workflow.
This commit is contained in:
nickorlabs
2026-06-15 00:49:46 -05:00
committed by GitHub
parent 9d7a3d66c0
commit 2e99825a29
2 changed files with 13 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files
.dockerignore
+6
View File
@@ -10,6 +10,12 @@ dist/
build/ build/
.env .env
.env.bak.* .env.bak.*
# Secrets: keep plaintext and every transient secrets.env variant out of
# the build context. If an encrypted secrets.env is used, it is mounted
# at runtime — never baked into the image. Mirrored in .gitignore.
secrets.env
secrets.env.*
!secrets.env.example
/data/ /data/
/logs/ /logs/
.git/ .git/
.gitignore
+7
View File
@@ -15,6 +15,13 @@ venv/
.env.bak.* .env.bak.*
!.env.example !.env.example
# SOPS workflow — encrypted `secrets.env` is intentionally committable,
# but every variant (plaintext, manual decrypt copy, editor backup)
# must stay out of git. Mirrored in .dockerignore so the same artifacts
# also cannot enter image build layers.
secrets.env.*
!secrets.env.example
# Data — all user data stays local # Data — all user data stays local
data/ data/
!services/hwfit/data/ !services/hwfit/data/