From 98f505887ee4828f776ce2f36cb18331c29f6534 Mon Sep 17 00:00:00 2001
From: Colin <colin@uninsane.org>
Date: Mon, 2 Jun 2025 09:13:14 +0000
Subject: [PATCH] doc: fix the updatekeys command to be non-interactive

---
 doc/adding-a-host.md     | 2 +-
 hosts/common/secrets.nix | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/doc/adding-a-host.md b/doc/adding-a-host.md
index 3b73d3900..6c8bfe627 100644
--- a/doc/adding-a-host.md
+++ b/doc/adding-a-host.md
@@ -25,7 +25,7 @@ to add a host:
   - instructions in hosts/common/secrets.nix
   - run `ssh-to-age` on user/host pubkeys
   - add age key to .sops.yaml
-  - update encrypted secrets: `find secrets -type f -exec sops updatekeys '{}' ';'`
+  - update encrypted secrets: `find secrets -type f -exec sops updatekeys -y '{}' ';'`
 - setup wireguard keys
   - `pk=$(wg genkey)`
   - `echo "$pk" | sops encrypt --filename-override secrets/$(hostname)/wg-home.priv.bin --output secrets/$(hostname)/wg-home.priv.bin`
diff --git a/hosts/common/secrets.nix b/hosts/common/secrets.nix
index 1fb72c051..d981a66dd 100644
--- a/hosts/common/secrets.nix
+++ b/hosts/common/secrets.nix
@@ -16,7 +16,7 @@
 # for each host you want to decrypt secrets:
 #   $ cat /etc/ssh/ssh_host_keys/ssh_host_ed25519_key.pub | ssh-to-age
 #   add the result to .sops.yaml
-#   $ find secrets -type f -exec sops updatekeys '{}' ';'
+#   $ find secrets -type f -exec sops updatekeys -y '{}' ';'
 #
 # to create a new secret:
 #   $ sops secrets/example.yaml