Encrypt data at rest using a user's public key on github.
ghshare -h
If your instance of GitHub Enterprise does not have a dedicated API host, you
will need to suffix the host with /api/v3
.
ghshare encrypt -h https://example.com/api/v3 ...
Sometimes you want to share something encrypted and the recipient hasn't created
a PGP key, but, they've uploaded a public key to GitHub. ghshare
can fetch
those keys and use them to encrypt a file.
ghshare
fetches all of a recipient's public keys, prompting for credentials if necessary- A random symmetric key is generated
- The symmetric key is encrypted with each of the user's public keys
- The file is encrypted with AES-256-SIV.
ghshare
reads a header from the file contained encrypted keysghshare
uses the private key to attempt to decrypt keys until it finds a match.- Decrypts the data
- Documentation
- Handle different public key types
- RSA
- DSA
- Ed25519
- Ecdsa
- Error messaging
- Better key matching