this post was submitted on 14 Oct 2025
9 points (90.9% liked)

Open Source

41415 readers
223 users here now

All about open source! Feel free to ask questions, and share news, and interesting stuff!

Useful Links

Rules

Related Communities

Community icon from opensource.org, but we are not affiliated with them.

founded 6 years ago
MODERATORS
Cloak@lemmy.ml
kevincox@lemmy.ml
CrypticCoffee@lemmy.ml
Lettuceeatlettuce@lemmy.ml
9
Shouldn’t Forgejo private repositories be encrypted? (lemmy.dbzer0.com)
submitted 2 days ago* (last edited 2 days ago) by Davy_Jones@lemmy.dbzer0.com to c/opensource@lemmy.ml
6 comments fedilink hide all child comments
 

Wouldn’t it make sense for Forgejo to encrypt private repositories so users could safely include sensitive data like logs, histories, or even login configs?

For example, I currently exclude things like my Zsh history in .gitignore in my dotfiles repo. If private repos were encrypted, I could just commit everything and sync my full setup between machines without relying on Syncthing or other tools.

Is there any plan or reason why Forgejo doesn’t encrypt private repos this way?

you are viewing a single comment's thread
view the rest of the comments
[–] fruitycoder@sh.itjust.works 6 points 2 days ago

I use SOPS for this.

https://devops.datenkollektiv.de/using-sops-with-age-and-git-like-a-pro.html

Set filters in git certain files are added encrypted.

You can also do multi key set ups if you have a shared secret (like a lab space creds) or want to share some secrets with ci/cd tools