kubeseal
With kubeseal you can encrypt your Kubernetes Secret into a SealedSecret, which is safe to store - even to a public repository. The SealedSecret can be decrypted only by the controller running in the target cluster and nobody else (not even the original author) is able to obtain the original Secret from the SealedSecret.
🔗 https://github.com/bitnami-labs/sealed-secrets
📜 App manifest
Current version: 0.20.2
Bucket: main
License: Apache-2.0
Installation
scoop install kubeseal