Whispr introduces a new `secret` command group with useful utilities

New feature 🎉 - Useful Secret Utilities

This release introduces a new command group called secret.

whispr secret sub_command [OPTIONS]

With two new sub_commands:

1. get: Audit a secret from a vault. This is very helpful in fetching raw secret that is jq parseable.

Usage:

whispr secret get -v aws -s my_secret -r us-west-2

2. gen-random: Generate a crypto-safe random sequence to use for key rotations.

Usage:

whispr secret gen-random -l 16 -e '*^/'

See README.md for more details on usage or run whispr secret --help after installing the tool.

What's Changed

• feat/23: add secret command group with get & gen-random sub-commands by @narenaryan in #25

Full Changelog: v0.5.0...v0.6.0

Support to override AWS Default region

This release supports configuring AWS region through whispr configuration file:

vault: aws
secret_name: <mysecret>
env_file: .env
region: us-west-2

Note: If you set both region key and AWS_DEFAULT_REGION, region key will take precedence.

What's Changed

• feat/4: Add AWS Default region support by @narenaryan in #24

Full Changelog: v0.4.0...v0.5.0

Support for AWS SSO Profile in whispr

What's Changed

• Feature: Add support for AWS SSO profile in config by @narenaryan in #19

Usage:

vault: aws
sso_profile: dev

• Code Quality: Improve test coverage from 72% to 79%

Full Changelog: v0.3.0...v0.4.0

Simplify programmatic access of whispr

Description

• This release simplified programmatic access of code whispr utilities
• execute_command will not fail silently if there is a problem with subprocess.
• Add programmatic sue guide in usage-guides.

What's Changed

• Update issue templates by @narenaryan in #14
• test(ISSUE-4): Improve code coverage by @narenaryan in #15
• docs: create programmatic-access guide by @narenaryan in #16
• release: bump up version to v0.3.0 by @narenaryan in #17

Full Changelog: v0.2.0...v0.3.0

Support passing secrets via STDIN args instead of environment

Features

• New no_env configuration key to control mode of secret sharing
• Backwards compatible

This release consists of a new feature to avoid passing secrets as environment variables but command args. This is secure way to collect secrets instead of causing environment pollution.

env_file: .env
secret_name:  <your_secret>
vault: aws
no_env: true # New key to control no environment vs command args. Default: false

This also lets Whispr hand-off secrets to subprocess and not own anything.

FIxing a bug in PyPi publish

Description

This is a release bug fix for v0.1.0. No feature updates or fixes

Launch of Whispr, a secure code development tool

Description

This is the first version of Whispr.

Whispr (Pronounced as whisp-r) is a CLI tool to safely inject secrets from your favorite secret vault (Ex: AWS Secrets Manager, Azure Key Vault etc.) into your app's environment. This is very useful for enabling secure local software development.

Full Changelog: https://github.com/narenaryan/whispr/commits/v0.1.0