SaaSHub helps you find the best software and product alternatives Learn more →
Top 23 hashicorp-vault Open-Source Projects
-
secrets-store-csi-driver
Secrets Store CSI driver for Kubernetes secrets - Integrates secrets stores with Kubernetes via a CSI volume.
-
InfluxDB
Power Real-Time Data Analytics at Scale. Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.
-
VaultSharp
A comprehensive cross-platform .NET Library for HashiCorp's Vault, a secret management tool
-
Sup3rS3cretMes5age
Simple to use, simple to deploy, one time self destruct messaging service, with hashicorp vault as a backend
-
vault-secrets-operator
The Vault Secrets Operator (VSO) allows Pods to consume Vault secrets natively from Kubernetes Secrets. (by hashicorp)
-
WorkOS
The modern identity platform for B2B SaaS. The APIs are flexible and easy-to-use, supporting authentication, user identity, and complex enterprise features like SSO and SCIM provisioning.
-
vault-plugin-secrets-github
Create ephemeral, finely-scoped @github access tokens using @hashicorp Vault.
-
k8s-vault-webhook
A k8s vault webhook is a Kubernetes webhook that can inject secrets into Kubernetes resources by connecting to multiple secret managers
-
vkv
vkv enables you to list, compare, move, import, document, backup & encrypt secrets from a HashiCorp Vault KV engine
-
libvault
A lightweight Vault client module written in Go, with no dependencies, that is intuitive and user-friendly
-
Stratio.Extensions.Configuration.Vault
Simplifying Secrets Management in .NET using Hashicorp Vault (powered by Stratio)
-
shamir
🔑 A CLI frontend for Hashicorp Vault's Shamir's Secret Sharing implementation. (by dennis-tra)
-
SaaSHub
SaaSHub - Software Alternatives and Reviews. SaaSHub helps you find the best software and product alternatives
I'm not a fan of this approach. I think the Secrets Store CSI Driver (https://secrets-store-csi-driver.sigs.k8s.io/) has a better approach.
My colleague at Adobe built one for our own use, since HashiCorp didn't provide one at the time: https://github.com/adobe/cryptr
IIRC HashiCorp was not interested in supporting these kinds of tools because they were in direct competition with the Vault enterprise offering.
https://grep.app/ has served me well for the last couple of years finding snippets for random APIs.
But recently I found that certain strings from open-source projects suddenly yield no results.
For example: VaultServiceTimeout from https://github.com/rajanadar/VaultSharp has no results for https://grep.app/search?q=VaultServiceTimeout.
Is there some alternative service for this task that is up-to-date?
Project mention: How to securely store configs across microservices and not commit secrets to vc | /r/kubernetes | 2023-06-02
The gold standard is to have these tokens be emphermaland hove them issued my something like https://github.com/martinbaillie/vault-plugin-secrets-github. You should never rely on manually rotating tokens, it's 2024 and we have decades of production outages due to expired certs to prove that this stuff needs to be automated. Having mandatory expiration is a great way to incentivize users to do the right thing here.
My way of doing private SSL (not necessarily the easiest):
* own CA, to be distributed to all systems via Ansible playbook or Dockerfile directives
* Hashicorp Vault with enabled PKI engine
* Ansible Hashivault module [1]
* Ansible role & playbook to tie it all together
* CI enviroment for automated deployment of SSL certs to target systems
Works flawlessly once set up, including restart/reload of affected services. Might do a writeup on my personal blog at some point.
[1] https://github.com/ansible-collections/community.hashi_vault
hashicorp-vault related posts
- Using HashiCorp Vault as a dynamic Ansible inventory and authentication service
- HashiCorp Vault Forked into OpenBao
- How to Not Use Secrets
- EKS secrets - Bitnami sealed secrets or KMS?
- How to securely store configs across microservices and not commit secrets to vc
- The Bullhorn #88 (Ansible Newsletter)
- Azure AKS/Container App can't access Key vault using managed identity
-
A note from our sponsor - SaaSHub
www.saashub.com | 29 Apr 2024
Index
What are some of the best open-source hashicorp-vault projects? This list will help you:
Project | Stars | |
---|---|---|
1 | secrets-store-csi-driver | 1,174 |
2 | wrongsecrets | 1,117 |
3 | cryptr | 485 |
4 | VaultSharp | 476 |
5 | Sup3rS3cretMes5age | 446 |
6 | medusa | 424 |
7 | vault-secrets-operator | 409 |
8 | vault-plugin-secrets-github | 249 |
9 | secrets-manager | 171 |
10 | gitops-playground | 165 |
11 | k8s-vault-webhook | 116 |
12 | community.hashi_vault | 78 |
13 | vkv | 74 |
14 | helm-vault | 74 |
15 | libvault | 74 |
16 | terraform-google-vault | 44 |
17 | rvault | 44 |
18 | personal-zero-trust-hashicorp-vault | 44 |
19 | libvault | 42 |
20 | Stratio.Extensions.Configuration.Vault | 22 |
21 | vops | 18 |
22 | shamir | 18 |
23 | vault-converter | 17 |
Sponsored