Redact Sensitive Data #6
Description
The watcher can be configured to track secrets, configmaps and custom resources.
However, some resources may contain sensitive data which should not be stored.
We need a way to redact whole resources, individual keys or values within a yaml tree. Though we still need to be identify when a change has happened. Hashing the fields that should be redacted may be a good starting point to explore the idea.
This functionality has to be exposed as an API to the user (probably also yaml, similar to the watcher config), so he can configure and change the behaviour.