## howto create a gpg key
- please follow instruction on following link: https://docs.github.com/en/authentication/managing-commit-signature-verification/generating-a-new-gpg-key
- add ONLY the _PUBLIC_ part of your gpg key!!!
- checkin via MergeRequest/PullRequest

### import gpg keys
gpg --import /path/to/keys/*.gpg.pub

### list imported gpg keys
gpg --list-keys --keyid-format=long

# Configure SOPS

```bash
GPG_TTY=$(tty) sops secrets.yaml
```

# GPG_TTY src: https://www.varokas.com/secrets-in-code-with-mozilla-sops/

## Example
```bash
#!/usr/bin/env bash
set -ueo pipefail
# demo: create a file with a mock secret, src: https://bash-org-archive.com/?244321
yq -n '.demo.credentials.secret = "hunter2"' > secret.yaml
# encrypt
sops -e -i secret.yaml

# decript, print to console
sops -d secret.yaml
```