fix: use sops filestatus for discovering non-encrypted sops files

Fixes: #1539
onedr0p · Sep 27, 2024 · 9fcabba · 9fcabba
1 parent 81ce495
commit 9fcabba
Showing 1 changed file with 1 addition and 1 deletion.
diff --git a/.taskfiles/Sops/Taskfile.yaml b/.taskfiles/Sops/Taskfile.yaml
@@ -18,7 +18,7 @@ tasks:
           file: "{{.ITEM}}"
     vars:
       file:
-        sh: find "{{.KUBERNETES_DIR}}" -type f -name "*.sops.*" -exec grep -L "ENC\[AES256_GCM" {} \;
+        sh: find "{{.KUBERNETES_DIR}}" -type f -name "*.sops.*" | xargs -I {} sh -c 'sops filestatus {} | jq --exit-status ".encrypted == false" > /dev/null && echo {}'
 
   .encrypt-file:
     internal: true