hashicorp/vault ↗
Created Dec 30, 2020 · View the hashicorp/vault repository page
A tool for secrets management, encryption as a service, and privileged access management
Want this for your repo?
Render a free sample of any GitHub repo in seconds.
Contributors
924
Lines of Code
83,010
From
Feb 25, 2015
To
Dec 23, 2020
About hashicorp/vault
Vault is a comprehensive secrets management and encryption platform developed by HashiCorp in Go. It provides a unified interface for securely storing, accessing, and managing sensitive data such as API keys, passwords, certificates, and database credentials across modern infrastructure. The system encrypts all secrets before writing them to persistent storage and maintains detailed audit logs of all access attempts.
The platform offers several core capabilities including secure secret storage with encryption at rest, dynamic secret generation on-demand for systems like AWS and SQL databases, data encryption and decryption services, and automated lease management with built-in secret revocation. Vault can automatically generate temporary credentials for applications, track their usage through leases, and revoke them after expiration. It also supports the ability to revoke entire trees of secrets, making it valuable for key rotation and incident response scenarios.
The project is designed for organizations managing complex infrastructure with multiple secret types and access patterns. It includes comprehensive tooling for developers, such as libraries for various programming languages, sample applications, tutorial guides, and even a professional certification program. The repository includes extensive acceptance tests and Docker-based testing infrastructure to support both development and enterprise use cases, though it should be noted that importing the main Vault codebase as a dependency in other projects is not officially supported.
