Ansible Vault for GitHub Actions.
Required Command to execute. Default ansible-vault --version.
Required Your vault key. Default ''.
steps:
- name: Retrieve runner uid and gid
id: uid-gid
run: |
echo "uid=$(id -u)" >> $GITHUB_OUTPUT
echo "gid=$(id -g)" >> $GITHUB_OUTPUT
- name: decrypt files with ansible-vault
uses: step-security/github-actions-ansible-vault@v1
env:
UID: ${{ steps.uid-gid.outputs.uid }}
GID: ${{ steps.uid-gid.outputs.gid }}
with:
vault_key: ${{ secrets.VAULT_KEY }}
command: |
ansible-vault encrypt foo.yml
chown $UID:$GID foo.yml