Novops is a cross-platform, open-source secret and configuration manager designed to securely handle secrets and environment configurations for development, applications, and CI pipelines.
Cross-platform secret & config manager for development and CI environments
Novops is primarily used by developers and DevOps teams to safely load and manage secrets from multiple sources like Hashicorp Vault, AWS, GCloud, Azure, and SOPS, ensuring secure handling of sensitive data during development and continuous integration workflows. It enables seamless configuration as code and temporary credential management to automate security in cloud and local environments.
Novops emphasizes in-memory secret handling to reduce risk of secret leakage; users should ensure their .novops.yml configuration files do not contain plaintext secrets. It supports multiple cloud providers and secret backends, making it versatile but requiring proper IAM permissions and secure storage backend configurations. Always discard secrets promptly after use to maintain security.
Run the install script: sh -c "$(curl --location https://raw.githubusercontent.com/PierreBeucher/novops/main/install.sh)"source <(novops load)
Load secrets and environment variables into the current shell session using process substitution (bash).
source =(novops load)
Load secrets and environment variables into the current shell session using process substitution (zsh/ksh).
novops run -- sh
Run a sub-process (e.g., shell or any command) with secrets loaded and automatically discarded afterward.
novops load -s .envrc && source .envrc
Load secrets into a .env file (created as a secure symlink) and source it into the shell.