Skip to content

feat(Playbook): Secret parameter #424

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 4 commits into
base: main
Choose a base branch
from
Open

feat(Playbook): Secret parameter #424

wants to merge 4 commits into from

Conversation

adityathebe
Copy link
Member

  • KMS connections

resolves: #423

@adityathebe adityathebe requested a review from Copilot August 26, 2025 13:37
@netlify Netlify
Copy link

netlify bot commented Aug 26, 2025
edited
Loading

Deploy Preview for canarychecker canceled.

Name Link
🔨 Latest commit 11cfaa9
🔍 Latest deploy log https://app.netlify.com/projects/canarychecker/deploys/68c7a29aee13a20008ea3ef6

@netlify Netlify
Copy link

netlify bot commented Aug 26, 2025
edited
Loading

Deploy Preview for flanksource-docs ready!

Name Link
🔨 Latest commit 11cfaa9
🔍 Latest deploy log https://app.netlify.com/projects/flanksource-docs/deploys/68c7a29afa504b0008e243a1
😎 Deploy Preview https://deploy-preview-424--flanksource-docs.netlify.app
📱 Preview on mobile
Toggle QR Code...

QR Code

Use your smartphone camera to open QR code link.

To edit notification comments on pull requests, go to your Netlify project configuration.

@vercel Vercel
Copy link

vercel bot commented Aug 26, 2025
edited
Loading

The latest updates on your projects. Learn more about Vercel for GitHub.

Project Deployment Preview Updated (UTC)
docs Ready Ready Preview Sep 15, 2025 5:23am

Copilot
Copilot AI reviewed Aug 26, 2025
View reviewed changes
Copy link

@Copilot Copilot AI left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull Request Overview

This PR introduces secret parameter support for playbooks with KMS encryption capabilities. It adds the ability to handle sensitive data like passwords and API keys securely by integrating with cloud KMS services.

Key changes:

  • Added new secret parameter type for playbooks with KMS encryption
  • Added documentation for AWS KMS, Azure Key Vault, and GCP KMS connections
  • Updated submodule references across multiple mission-control components

Reviewed Changes

Copilot reviewed 14 out of 14 changed files in this pull request and generated 3 comments.

Show a summary per file
File Description
mission-control/docs/reference/playbooks/parameters.mdx Added documentation for the new secret parameter type
mission-control/docs/reference/connections/KMS/*.mdx Created documentation pages for AWS KMS, Azure Key Vault, and GCP KMS connections
mission-control/docs/guide/playbooks/concepts/sensitive-data.mdx Added comprehensive guide on handling sensitive data in playbooks
mission-control/docs/installation/_properties_mission_control.mdx Added kmsConnection configuration property
common/src/components/Fields.jsx Added field definitions for KMS connection types
modules/* Updated submodule commits to incorporate KMS functionality

Tip: Customize your code reviews with copilot-instructions.md. Create the file or learn how to get started.

@adityathebe adityathebe force-pushed the feat/sensitive-playbook-parameter branch from 25de0cc to 71067b7 Compare August 26, 2025 13:46
@adityathebe adityathebe requested a review from moshloop August 26, 2025 14:00
@adityathebe adityathebe force-pushed the feat/sensitive-playbook-parameter branch from cc9515d to 4ab9d1b Compare August 26, 2025 14:04
moshloop
moshloop reviewed Aug 27, 2025
View reviewed changes
mission-control/docs/guide/playbooks/concepts/sensitive-data.mdx
or in the helm chart:

```yaml
kmsConnection: "connection://default/my-kms-key"
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Can we update the setup guides for AWS/GCP for the creation of this key, and connection and the updates to the IAM binding needed.

This is also I think a post-setup task as it requires the ability to create the connection first

@adityathebe adityathebe force-pushed the feat/sensitive-playbook-parameter branch from 4ab9d1b to d45f70b Compare August 27, 2025 14:42
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@moshloop moshloop moshloop left review comments

Copilot code review Copilot Copilot left review comments

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

Playbook Secret Parameter
2 participants
@adityathebe @moshloop