Our great sponsors
cryptr | flakes | |
---|---|---|
3 | 1 | |
485 | 3 | |
0.0% | - | |
0.0 | 9.6 | |
about 1 year ago | 4 days ago | |
HTML | Nix | |
Apache License 2.0 | MIT License |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
cryptr
-
HashiCorp Vault Forked into OpenBao
My colleague at Adobe built one for our own use, since HashiCorp didn't provide one at the time: https://github.com/adobe/cryptr
IIRC HashiCorp was not interested in supporting these kinds of tools because they were in direct competition with the Vault enterprise offering.
-
Are there "Configuration Manager" solution out there?
Something like cryptr working on top of Hashicorp vault? https://github.com/adobe/cryptr
-
Recommended Vault Services?
Adobe built a web UI for Vault, if you want to use it more like a password manager: https://github.com/adobe/cryptr
flakes
-
HashiCorp Vault Forked into OpenBao
In this realm, I’ve been happily using 1Password’s Operator for Kubernetes secrets.
Feel free to ignore the Nix stuff, but I’ve outlined how I create entries with the 1Password CLI: https://github.com/heywoodlh/flakes/tree/main/kube#1password...
After a OnePasswordItem is created, a secret containing your fields and their values appears. It’s marvelous!
(Integrations like this are why I switched away from Bitwarden to 1Password)
What are some alternatives?
harp - Secret management by contract toolchain
k8s-vault-webhook - A k8s vault webhook is a Kubernetes webhook that can inject secrets into Kubernetes resources by connecting to multiple secret managers
openbao - OpenBao exists to provide a software solution to manage, store, and distribute sensitive data including secrets, certificates, and keys.
medusa - A cli tool for importing and exporting Hashicorp Vault secrets
wrongsecrets - Vulnerable app with examples showing how to not use secrets [Moved to: https://github.com/OWASP/wrongsecrets]