Self-hosted Secrets Manager (or something alike)

This page summarizes the projects mentioned and recommended in the original post on /r/selfhosted
hardware-buttons linkedin-bot template-engine-js

InfluxDB – Built for High-Performance Time Series Workloads
InfluxDB 3 OSS is now GA. Transform, enrich, and act on time series data directly in the database. Automate critical tasks and eliminate the need to move data externally. Download now.
www.influxdata.com
featured
SaaSHub - Software Alternatives and Reviews
SaaSHub helps you find the best software and product alternatives
www.saashub.com
featured

  1. vaultwarden

    Unofficial Bitwarden compatible server written in Rust, formerly known as bitwarden_rs

    Try vaultwarden Its bitwarden compatible and Open source https://github.com/dani-garcia/vaultwarden

  2. InfluxDB

    InfluxDB – Built for High-Performance Time Series Workloads. InfluxDB 3 OSS is now GA. Transform, enrich, and act on time series data directly in the database. Automate critical tasks and eliminate the need to move data externally. Download now.

    InfluxDB logo

  3. external-secrets

    External Secrets Operator reads information from a third-party service like AWS Secrets Manager and automatically injects the values as Kubernetes Secrets.

    Vault is extremely complex and heavy for my tastes, and Bitwarden Secrets Manager implementation AFAIU is not open source and not suitable for self-hosting. I like that both can be easily integrated with External Secrets for kubernetes secrets management.

  4. bank-vaults

    Discontinued A Vault swiss-army knife: A CLI tool to init, unseal and configure Vault (auth methods, secret engines).

    there's https://github.com/banzaicloud/bank-vaults wich is a wrapper for hashivault, so not exactly what you're looking for but worth looking into.

  5. Vault

    A tool for secrets management, encryption as a service, and privileged access management

    https://www.vaultproject.io/ is an option

  6. Passbolt

    Passbolt Community Edition (CE) API. The JSON API for the open source password manager for teams!

    I currently switched from keepass to passbolt: https://www.passbolt.com/

  7. sops

    Simple and flexible tool for managing secrets

    Maybe you could use Mozilla SOPS (Secrets OPerationS) that integrates very well with Kubernetes and Docker Compose because it reads and encrypt/decrypt values in YAML, JSON, ENV, INI and BINARY formats.

  8. passage

    A fork of password-store (https://www.passwordstore.org) that uses age (https://age-encryption.org) as backend.

    passage

  9. SaaSHub

    SaaSHub - Software Alternatives and Reviews. SaaSHub helps you find the best software and product alternatives

    SaaSHub logo
NOTE: The number of mentions on this list indicates mentions on common posts plus user suggested alternatives. Hence, a higher number means a more popular project.

Suggest a related project

Related posts

  • Secrets Management with Hashicorp Vault - which integration point to use? Sidecar Injector? ESO?

    1 project | /r/kubernetes | 17 Nov 2022

  • Project: Running a local cluster with TLS, ArgoCD GitOps, Vault and a PostgreSQL operator

    1 project | /r/devops | 4 Aug 2022

  • Kubernetes authentication from multiple, external clusters

    1 project | /r/hashicorp | 9 Jun 2021

  • How to Migrate from Gogo to Vtproto

    1 project | news.ycombinator.com | 5 May 2025

  • Fastly and the Linux kernel

    26 projects | dev.to | 24 Jun 2024

Did you know that Go is
the 4th most popular programming language
based on number of references?

Loading...