sops_add_secrets
Add new secrets to an existing SOPS-encrypted file: decrypt, merge new secrets, and re-encrypt while preserving all existing values and rejecting duplicate keys.
Instructions
Add new secrets to an existing SOPS-encrypted file. Decrypts the file, merges in new secrets, and re-encrypts — preserving all existing values and metadata. Rejects keys that already exist in the file. Supports generated, external, and derived sources. Requires SOPS_AGE_KEY env var.
Input Schema
| Name | Required | Description | Default |
|---|---|---|---|
| secrets | Yes | New secrets to add | |
| encrypted_content | Yes | Contents of an existing secrets.enc.yaml file |