21 lines
666 B
YAML
21 lines
666 B
YAML
steps:
|
|
- name: test-injection
|
|
image: gcr.io/google.com/cloudsdktool/cloud-sdk:latest
|
|
commands:
|
|
- |
|
|
set -eu
|
|
mkdir -p ~/.ssh
|
|
|
|
# 🔐 Pull and decode SSH key
|
|
gcloud secrets versions access latest --secret="STAGING_SSH_KEY_B64" --project="aptivaai-dev" \
|
|
| base64 -d > ~/.ssh/id_ed25519
|
|
chmod 600 ~/.ssh/id_ed25519
|
|
|
|
# 🔐 Pull and decode known_hosts
|
|
gcloud secrets versions access latest --secret="KNOWN_HOSTS_B64" --project="aptivaai-dev" \
|
|
| base64 -d > ~/.ssh/known_hosts
|
|
chmod 644 ~/.ssh/known_hosts
|
|
|
|
# ✅ Confirm successful decode
|
|
echo "Secrets pulled and decoded successfully."
|