Request: Ability to supply generic external secrets provider

Everyone can contribute. Help move this issue forward while earning points, leveling up and collecting rewards.

• Close this issue

Proposal

A customer requests the ability to use a generic or shell secrets provider as is possible with Vault, Google Cloud Secrets Manager, and Azure Key Vault. Ideally this would allow them to wrap whatever they wanted under the hood to inject secrets in their pipelines. Below would be an example using the pass password manager:

job:
  secrets: 
    DATABASE_PASSWORD:
      shell:
        script: '/usr/bin/pass'
        args:
          - my/database/password