|
|
|
|
|
|
by gingerlime
1970 days ago
|
|
|
Congrats on the launch! Looks interesting. I found some of your comments a bit strange though... are you suggesting that any of those other tools host your secrets in plain text? I never used EnvKey, but what's crazy about their desktop GUI? I'm obviously biased, but for our own use, I created a small open-source wrapper called envwarden[0] that uses Bitwarden to manage our server secrets. I trust Bitwarden already with plenty sensitive stuff and I'm sure it's not stored in plaintext anywhere. The GUIs aren't crazy but rather simple. They have browser add-ons, mobile apps, desktop apps, plus CLI that envwarden interfaces with... Not affiliated with Bitwarden in any way. Just happy customers and also happy to create a simple way to manage your server secrets with it. [0] https://github.com/envwarden/envwarden |
|
|
Doppler does not do End-to-End encryption, so their service has plain text access to your secrets.
What's crazy about a desktop GUI to manage secrets to me is that it's overkill when doing vim with the equivalent of a .env file is perfectly adequate for many use cases.
Envwarden is great, but with CloudEnv you can do access control via IP addresses, you can grant new IP address access via email approval, you can grant read-only access to some IP addresses... so you get a lot of flexibility over who and when the access to your secrets is given. In addition, there is an auditable access log that keeps track of when and where every access attempt was made.