Summon is a command-line tool that makes working with secrets easier.
When you wrap your application process with the summon
command, the Summon tool will
- Read the custom secrets.yml configuration file
- Fetch secrets from a trusted store
- Export secret values to a sub-process environment that is accessible to your application process
Once the process exits, the secrets are gone.