1GIT-SECRET-HIDE(1)             git-secret 0.4.0             GIT-SECRET-HIDE(1)
2
3
4

NAME

6       git-secret-hide - encrypts all added files with the inner keyring.
7

SYNOPSIS

9       git secret hide [-c] [-F] [-P] [-v] [-d] [-m]
10

DESCRIPTION

12       git-secret-hide  creates  an  encrypted version (typically called file‐
13       name.txt.secret) of each file added by git-secret-add command. Now any‐
14       one  enabled  via  ´git secret tell´ can can decrypt these files. Under
15       the hood, git-secret uses the keyring in .gitsecret/keys and user´s se‐
16       cret keys to decrypt the files.
17
18       It is recommended to encrypt (or re-encrypt) all the files in a git-se‐
19       cret repo each time git secret hide is run.
20
21       Otherwise the keychain (the one stored in  .gitsecret/keys/*.gpg),  may
22       have  changed  since  the  last time the files were encrypted, and it´s
23       possible to create a state where the users in the output of git  secret
24       whoknows  may not be able to decrypt the some files in the repo, or may
25       be able decrypt files they´re not supposed to be able to.
26
27       In other words, unless you re-encrypt all the files in a repo each time
28       you ´hide´ any, it´s possible to make it so some files can no longer be
29       decrypted by users who should be (and would  appear)  able  to  decrypt
30       them, and vice-versa.
31
32       If you know what you are doing and wish to encrypt or re-encrypt only a
33       subset of the files even after reading the above  paragraphs,  you  can
34       use the -F or -m option to only encrypted a subset of files. The -F op‐
35       tion forces git secret hide to skip any hidden files  where  the  unen‐
36       crypted  versions  aren´t present. The -m option skips any hidden files
37       that have not be modified since the last time they were encrypted.
38
39       Also, it is possible to modify the names of the encrypted files by set‐
40       ting SECRETS_EXTENSION variable.
41
42       (See   git-secret(7)  http://git-secret.io/git-secret  for  information
43       about renaming the .gitsecret folder using the SECRETS_DIR  environment
44       variable.
45
46       You  can  also  enable  verbosity using the SECRETS_VERBOSE environment
47       variable, as documented at git-secret(7) http://git-secret.io/
48

OPTIONS

50       -v  - verbose, shows extra information.
51       -c  - deletes encrypted files before creating new ones.
52       -F  - forces hide to continue if a file to encrypt is missing.
53       -P  - preserve permissions of unencrypted file in encrypted file.
54       -d  - deletes unencrypted files after encryption.
55       -m  - encrypt files only when modified.
56       -h  - shows help.
57

MANUAL

59       Run man git-secret-hide to see this note.
60

SEE ALSO

62       git-secret-init(1)    http://git-secret.io/git-secret-init,     git-se‐
63       cret-tell(1)   http://git-secret.io/git-secret-tell,  git-secret-add(1)
64       http://git-secret.io/git-secret-add,               git-secret-reveal(1)
65       http://git-secret.io/git-secret-reveal,
66       git-secret-cat(1) http://git-secret.io/git-secret-cat
67
68
69
70sobolevn                           May 2021                 GIT-SECRET-HIDE(1)
Impressum