VS Code extension to encrypt and decrypt secrets using AWS KMS.
To encrypt something, simply select the text you want to encrypt, and then call the KMS Encrypt in the command palette. You'll be prompted for the AWS profile, the encryption context and the KMS key id to use.
The decryption operation works similarly, just select the encrypted text and call the KMS Decrypt command. You'll be prompted for the AWS profile and the encryption context to use.
You'll need your AWS credentials correctly configured in your system as if it were the AWS CLI.
This is not a public extension yet. To install it, you need to download the .vsix file from the releases page of the extension repo. Then you can load it into VSCode either via the command line or the extensions UI. Follow these instructions.
This extension contributes the following settings:
vscode-kms.defaultRegion: Default AWS region to use. This will only be used if there is no system default.vscode-kms.awsProfile: Profile to use from the AWS local credentials file. Will ask on every operation if not set.
--
- Add some caching mechanism for profiles and encryption contexts
- Add progress bar message
Initial release.