Secrets presents a challenging dilemma for infrasture-as-a-code. Solution today
converge mostly on storing these secrets in some external trusted system (Kube
Secrets, Docker Secrets, Build System Secrest, Vault) outside of the code.
Using SOPS, we can check in the encrypted secrets (e.g. connection passwords)
along with the code. The