vault-k8s
First-class support for Vault and Kubernetes. (by hashicorp)
sealed-secrets-web
A web interface for Sealed Secrets by Bitnami. (by bakito)
Our great sponsors
| vault-k8s | sealed-secrets-web | |
|---|---|---|
| 5 | 1 | |
| 734 | 42 | |
| 1.9% | - | |
| 0.0 | 8.8 | |
| 10 days ago | 5 days ago | |
| Go | Go | |
| Mozilla Public License 2.0 | MIT License |
The number of mentions indicates the total number of mentions that we've tracked plus the number of user suggested alternatives.
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
vault-k8s
Posts with mentions or reviews of vault-k8s.
We have used some of these posts to build our list of alternatives
and similar projects. The last one was on 2023-01-18.
-
GitOps and Kubernetes – Secure Handling of Secrets
Hashicorp Vault k8s is an operator that modifies pods via a mutating webhook to connect between vault and pod via sidecars (additional containers) to provide secrets. This has the major advantage that no secret objects are created in Kubernetes here. The disadvantage is that this way only works with Vault.
-
Solving ArgoCD Secret Management with the argocd-vault-plugin
They’ve made it so you can define the order that the vault sidecar starts in, so that the proxy will be running first. https://github.com/hashicorp/vault-k8s/issues/53
sealed-secrets-web
Posts with mentions or reviews of sealed-secrets-web.
We have used some of these posts to build our list of alternatives
and similar projects. The last one was on 2023-01-18.
-
GitOps and Kubernetes – Secure Handling of Secrets
An option that easily works with GitOps is the Operator Sealed Secrets from Bitnami. Secrets encrypted with it can only be decrypted by operators running inside the cluster, not even by the original author. For encryption, there is a CLI (and a third-party web UI) that requires a connection to the cluster. The disadvantage of this is that the key material is stored in the cluster, the secrets are bound to the cluster and one has to take care of backups and operation.
What are some alternatives?
When comparing vault-k8s and sealed-secrets-web you can also consider the following projects:
kubernetes-external-secrets - Integrate external secret management systems with Kubernetes
argocd-vault-plugin - An Argo CD plugin to retrieve secrets from Secret Management tools and inject them into Kubernetes secrets