From 62456e8d608541a14006efcd4d9a1f2c0a3632a9 Mon Sep 17 00:00:00 2001
From: Sheogorath <sheogorath@shivering-isles.com>
Date: Wed, 14 Sep 2022 08:58:20 +0200
Subject: [PATCH] chore(sops): Update encryption regex

Add externalName to encrypt internal DNS names. They might not be secret
but also of no value for people to read.
---
 .sops.yaml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.sops.yaml b/.sops.yaml
index 27451f06d..83a51dca8 100644
--- a/.sops.yaml
+++ b/.sops.yaml
@@ -1,6 +1,6 @@
 creation_rules:
   - path_regex: (clusters|apps)/k8s01/.*.yaml
-    encrypted_regex: ^(data|stringData|email|dnsZones?|dnsNames?|.*(H|h)osts?|tang|externalURL|.*-secret|.*-url|.*Secrets?|.*-domain|password|subjects|node|apiURL|.*(S|s)erverNames?|.*SecretKey)$
+    encrypted_regex: ^(data|stringData|email|dnsZones?|dnsNames?|.*(H|h)osts?|tang|externalURL|.*-secret|.*-url|.*Secrets?|.*-domain|password|subjects|node|apiURL|.*(S|s)erverNames?|.*SecretKey|externalName)$
     pgp: >-
       286791FB6648539775DB31B8FCB98C2A3EC6F601,
       B137EE1549DFAF960DD1E2B15147025FB9F09E07
-- 
GitLab