From 222d6678f7f99c027a52d4636ea5b04434dd5978 Mon Sep 17 00:00:00 2001
From: Jan-Piet Mens <jp@mens.de>
Date: Wed, 17 Jul 2024 21:46:07 +0200
Subject: [PATCH] Clarify vault password file can be executable

This is a feature of ansible
---
 README.md | 7 ++++---
 1 file changed, 4 insertions(+), 3 deletions(-)

diff --git a/README.md b/README.md
index 1f79fb6..a5201a1 100644
--- a/README.md
+++ b/README.md
@@ -57,9 +57,10 @@ Using the variable `g:ansible_vault_password_file` enables you to change it
 from within vim, using keybinding or autogroup to switch between multiple
 password files.
 
-Password files are in plaintext, I have plans to add a support to use commands
-to retrieve a password (eg. using pass or gopass), let me know if you are
-interested.
+Password files are in plaintext, and can optionally be configured by specifying
+a path to them in `$ANSIBLE_VAULT_PASSWORD_FILE`. Note that the password file
+may also be an executable program or script which emits the (newline-terminated)
+password to _stdout_ (this is an Ansible feature).
 
 In the yaml file, place the cursor on a `key: value` yaml pair then execute
 the command `:AnsibleVault`. The encrypted value will replace the unencrypted