Added ignore MAC option #68
Conversation
ownercoder
force-pushed
the
added-ignore-mac-option
branch
from
4ad5e28 to
ddc4ca2
Compare
ownercoder
force-pushed
the
added-ignore-mac-option
branch
from
ddc4ca2 to
47258a1
Compare
|
I Hope it will be merged. |
|
I've just started getting a MAC mismatch error and now I can't decrypt my files in vscode. Is this what's needed for it to work? |
Now with the latest version of SOPS (3.9.0), you can use the "mac only encrypted" option during encryption. With this option, it becomes possible to modify the unencrypted values without encountering "mac" verification issues. You can specify the option in your .sops file (mac_only_encrypted: true) or as a flag (--mac-only-encrypted) during encryption. To resolve your current situation, however, you need to decrypt with the command line using the --ignore-mac option and then re-encrypt. |
Content may be changed, without regenerating MAC. SOPS have option
--ignore-macbefore opening, it's allow correctly open changed config/secret