@smi-digital/create-smi-app 2.1.0 → 2.2.0
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/package.json +1 -1
- package/templates/.husky/pre-commit +16 -13
package/package.json
CHANGED
|
@@ -3,7 +3,7 @@
|
|
|
3
3
|
# 1. Run standard linters and formatters
|
|
4
4
|
npx lint-staged
|
|
5
5
|
|
|
6
|
-
# 2. Ansible-Vault
|
|
6
|
+
# 2. Ansible-Vault Auto-Encryptor
|
|
7
7
|
# Find any staged files that end in .env and start with "production"
|
|
8
8
|
STAGED_ENV_FILES=$(git diff --cached --name-only --diff-filter=ACM | grep -E '^production\..*\.env$')
|
|
9
9
|
|
|
@@ -11,18 +11,21 @@ for file in $STAGED_ENV_FILES; do
|
|
|
11
11
|
# Read the first line of the file
|
|
12
12
|
FIRST_LINE=$(head -n 1 "$file")
|
|
13
13
|
|
|
14
|
-
# Check if the first line indicates it is an Ansible Vault file
|
|
14
|
+
# Check if the first line indicates it is already an Ansible Vault file
|
|
15
15
|
if [[ "$FIRST_LINE" != "\$ANSIBLE_VAULT;"* ]]; then
|
|
16
|
-
echo ""
|
|
17
|
-
|
|
18
|
-
|
|
19
|
-
|
|
20
|
-
|
|
21
|
-
|
|
22
|
-
|
|
23
|
-
|
|
24
|
-
|
|
25
|
-
|
|
26
|
-
|
|
16
|
+
echo "🔒 Auto-encrypting production secrets for: $file"
|
|
17
|
+
|
|
18
|
+
# Check if .vault-password exists
|
|
19
|
+
if [ ! -f ".vault-password" ]; then
|
|
20
|
+
echo "❌ ERROR: .vault-password file not found. Cannot encrypt secrets."
|
|
21
|
+
echo "Please create a .vault-password file containing your master password."
|
|
22
|
+
exit 1
|
|
23
|
+
fi
|
|
24
|
+
|
|
25
|
+
# Encrypt the file using the local password
|
|
26
|
+
ansible-vault encrypt "$file" --vault-password-file .vault-password
|
|
27
|
+
|
|
28
|
+
# Re-stage the now-encrypted file
|
|
29
|
+
git add "$file"
|
|
27
30
|
fi
|
|
28
31
|
done
|