Description
A Kubernetes controller and command-line tool for creating sealed secrets that can be stored safely and decrypted only by the target cluster controller.
Use it when GitOps or repository workflows need encrypted Kubernetes secrets. Key ownership and target cluster identity matter; sealing for the wrong cluster can make secrets unusable.