SOPS: Secrets OPerationS icon
SOPS: Secrets OPerationS icon

SOPS: Secrets OPerationS

 Like

SOPS is an editor of encrypted files that supports YAML, JSON, ENV, INI and BINARY formats and encrypts with AWS KMS, GCP KMS, Azure Key Vault, age, and PGP.

License model

  • FreeOpen Source

Platforms

  • Mac
  • Windows
  • Linux
  • Go (Programming Language)
Alternatives  
  No rating
0likes
0comments
9alternatives
0news articles

Features

Suggest and vote on features
No features, maybe you want to suggest one?

 Tags

SOPS: Secrets OPerationS News & Activities

Highlights All activities

Recent activities

Show all activities

SOPS: Secrets OPerationS information

  • Developed by

    Unknown

  • Licensing

    Open Source (MPL-2.0) and Free product.

  • Written in

  • Alternatives

    9 alternatives listed

  • Supported Languages

    • English

AlternativeTo Categories

DevelopmentNetwork & AdminSecurity & Privacy

GitHub repository

  •  18,935 Stars
  •  948 Forks
  •  414 Open Issues
  •   Updated Jul 14, 2025 
View on GitHub

Popular alternatives

View all

Our users have written 0 comments and reviews about SOPS: Secrets OPerationS, and it has gotten 0 likes

SOPS: Secrets OPerationS was added to AlternativeTo by xn ax on Apr 24, 2025 and this page was last updated Apr 24, 2025.
No comments or reviews, maybe you want to be first?
Post comment/review

What is SOPS: Secrets OPerationS?

SOPS is an editor of encrypted files that supports YAML, JSON, ENV, INI and BINARY formats and encrypts with AWS KMS, GCP KMS, Azure Key Vault, age, and PGP.

By default, SOPS encrypts the data key for a file with each of the master keys, such that if any of the master keys is available, the file can be decrypted. However, it is sometimes desirable to require access to multiple master keys in order to decrypt files. This can be achieved with key groups. Auditing

Sometimes, users want to be able to tell what files were accessed by whom in an environment they control. For this reason, SOPS can generate audit logs to record activity on encrypted files. When enabled, SOPS will write a log entry into a pre-configured PostgreSQL database when a file is decrypted. Key Service

There are situations where you might want to run SOPS on a machine that doesn't have direct access to encryption keys such as PGP keys. The sops key service allows you to forward a socket so that SOPS can access encryption keys stored on a remote machine. Security

The security of the data stored using SOPS is as strong as the weakest cryptographic mechanism. Values are encrypted using AES256_GCM which is the strongest symmetric encryption algorithm known today. Data keys are encrypted in either KMS, which also uses AES256_GCM, or PGP which uses either RSA or ECDSA keys.

Official Links

AppStores & Other Links