Pulumi: Allow `pulumi stack export` to get an unencrypted statefile

Created on 10 Jul 2019 · 1Comment · Source: pulumi/pulumi

Currently, if there are encrypted values in a checkpoint, it is not possible to get a serialized form of the checkpoint with decrypted values. This can be important for importing into a new stack - whether in a different backend or even in a different org or project or stack in the pulumi.com backend.

We should consider adding —show-secrets or similar to pulumi stack export.

kinenhancement

Source

lukehoban

👍4

Most helpful comment

Note that the exported statefile should retain information about which values are secret s.t. those values can be re-encrypted upon import.

pgavlin on 12 Feb 2020

👍3

>All comments

Note that the exported statefile should retain information about which values are secret s.t. those values can be re-encrypted upon import.

pgavlin on 12 Feb 2020

👍3

Was this page helpful?

0 / 5 - 0 ratings

Related issues

Provider aliases aren't working

clstokes · 3Comments

Implement a `rollback` command

joeduffy · 5Comments

`pulumi new`: Require a unique project instead of unique stack

justinvp · 4Comments

Updating a dependency stack does not force updates of dependents

lukehoban · 3Comments

`pulumi new` does not support the org-name/stack-name format

casey-robertson · 4Comments