vault-k8s
First-class support for Vault and Kubernetes. (by hashicorp)
sealed-secrets-web
A web interface for Sealed Secrets by Bitnami. (by bakito)
vault-k8s | sealed-secrets-web | |
---|---|---|
5 | 1 | |
786 | 74 | |
0.4% | - | |
8.7 | 8.2 | |
9 days ago | 11 days ago | |
Go | Go | |
Mozilla Public License 2.0 | MIT License |
The number of mentions indicates the total number of mentions that we've tracked plus the number of user suggested alternatives.
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
vault-k8s
Posts with mentions or reviews of vault-k8s.
We have used some of these posts to build our list of alternatives
and similar projects. The last one was on 2023-01-18.
- How to expose the UI and API endpoint in HA TLS RAFT config
- Raft heartbeat failures
-
GitOps and Kubernetes – Secure Handling of Secrets
Hashicorp Vault k8s is an operator that modifies pods via a mutating webhook to connect between vault and pod via sidecars (additional containers) to provide secrets. This has the major advantage that no secret objects are created in Kubernetes here. The disadvantage is that this way only works with Vault.
- Practices to Retrieve Vault Credentials
-
Solving ArgoCD Secret Management with the argocd-vault-plugin
They’ve made it so you can define the order that the vault sidecar starts in, so that the proxy will be running first. https://github.com/hashicorp/vault-k8s/issues/53
sealed-secrets-web
Posts with mentions or reviews of sealed-secrets-web.
We have used some of these posts to build our list of alternatives
and similar projects. The last one was on 2023-01-18.
-
GitOps and Kubernetes – Secure Handling of Secrets
An option that easily works with GitOps is the Operator Sealed Secrets from Bitnami. Secrets encrypted with it can only be decrypted by operators running inside the cluster, not even by the original author. For encryption, there is a CLI (and a third-party web UI) that requires a connection to the cluster. The disadvantage of this is that the key material is stored in the cluster, the secrets are bound to the cluster and one has to take care of backups and operation.
What are some alternatives?
When comparing vault-k8s and sealed-secrets-web you can also consider the following projects:
kubernetes-external-secrets - Integrate external secret management systems with Kubernetes
sealed-secrets - A Kubernetes controller and tool for one-way encrypted Secrets
argocd-vault-plugin - An Argo CD plugin to retrieve secrets from Secret Management tools and inject them into Kubernetes secrets
sops-secrets-operator - Kubernetes SOPS secrets operator
external-secrets - External Secrets Operator reads information from a third-party service like AWS Secrets Manager and automatically injects the values as Kubernetes Secrets.
helm-secrets - A helm plugin that help manage secrets with Git workflow and store them anywhere
vault-k8s vs kubernetes-external-secrets
sealed-secrets-web vs sealed-secrets
vault-k8s vs argocd-vault-plugin
sealed-secrets-web vs argocd-vault-plugin
vault-k8s vs sops-secrets-operator
sealed-secrets-web vs external-secrets
vault-k8s vs sealed-secrets
sealed-secrets-web vs sops-secrets-operator
sealed-secrets-web vs helm-secrets