An open-source platform for secrets management, certificate lifecycle, and privileged access management with self-hosting options.
Infisical is an open-source platform for secrets, certificates, and privileged access management. It centralizes application configuration and secrets like API keys and database credentials, enabling teams to sync them across environments and infrastructure while preventing leaks. The platform also manages internal PKI and certificate lifecycles.
Development and DevOps teams who need to manage secrets, certificates, and access controls across cloud-native applications and infrastructure, especially those using Kubernetes or requiring self-hosting.
Developers choose Infisical for its comprehensive feature set covering secrets, certificates, and access management in a single open-source platform, with strong self-hosting capabilities and developer-friendly tools like CLI, SDKs, and Kubernetes integration.
Infisical is the open-source platform for secrets, certificates, and privileged access management.
Open-Awesome is built by the community, for the community. Submit a project, suggest an awesome list, or help improve the catalog on GitHub.
Combines secrets management, certificate lifecycle management, dynamic secrets, and SSH certificates in a single platform, as outlined in the features section of the README.
Includes the Infisical Kubernetes Operator for seamless secret injection and automatic deployment reloads, detailed in the Kubernetes documentation.
Offers CLI, SDKs for multiple languages, and pre-commit hooks for secret scanning, making it easy to integrate into development workflows.
Can be deployed on-premises or in private clouds using Docker, allowing teams to keep data on their own infrastructure, as shown in the self-hosting guide.
Self-hosting requires Docker, cloning the repo, and configuring .env files, which can be cumbersome compared to managed services, as indicated in the getting started commands.
The 'ee' directory contains premium features that require a paid license, restricting access to full capabilities in the open-source version, mentioned in the open-source vs. paid section.
With its extensive feature set, it might be more than necessary for teams only needing basic secret storage, leading to unnecessary complexity and a steeper learning curve.
Infisical is an open-source alternative to the following products:
AWS Secrets Manager helps you protect secrets needed to access your applications, services, and IT resources, enabling you to rotate, manage, and retrieve database credentials, API keys, and other secrets throughout their lifecycle.
HashiCorp Vault is a secrets management tool that securely stores, accesses, and manages sensitive data like API keys, passwords, and certificates.
Azure Key Vault is a cloud service for securely storing and managing secrets, keys, and certificates used by cloud applications and services on Microsoft Azure.