awesome-repositories.comBlog
© 2026 Bringes Technology SRL·VAT RO45896025·[email protected]
MCPBlogCuratedSitemapPrivacyTerms
Infisical | Awesome Repository
← All repositories

Infisical/infisical

0
View on GitHub↗
24,994 stars·1,703 forks·TypeScript·other·2 viewsinfisical.com↗

Infisical

AI search

Explore more awesome repositories

Describe what you need in plain English — the AI ranks thousands of curated open-source projects by relevance.

Start searching with AI

Features

  • Secrets Management - Provides a centralized system for storing and managing sensitive application secrets.
  • Identity and Access Management - Provides centralized control over user and machine access through defined roles and permissions.
  • Key Management Services - Securely stores, manages, and controls access to sensitive application secrets.
  • Secret Encryption - Encrypts sensitive data locally before transmission to ensure it remains unreadable to central storage infrastructure.
  • Secret Management Systems - Acts as a centralized repository for securely storing, managing, and synchronizing sensitive credentials across distributed infrastructure.
  • Access Control Models - Manages user and machine access to secrets using a hierarchical permission model based on organizational scope.
  • Access Control Policies - Assigns granular permissions to users and services using role-based rules.
  • Access Management - Governs machine and user authentication to ensure granular control over sensitive data access.
  • Dynamic Credential Provisioning - Generates short-lived credentials on demand through cloud providers and automatically revokes them after use.
  • Dynamic Secret Management - Manages the lifecycle of dynamic secrets including leasing, renewal, and revocation.
  • Machine Identity - Automates secure access for servers and pipelines using cloud-native identity and role-based permissions.
  • PKI Management - Automates certificate authority operations and manages public key infrastructure.
  • Public Key Infrastructures - Provides a comprehensive framework for creating, managing, and revoking digital certificates and public-key encryption assets.
  • Secret Orchestration - Centralizes and orchestrates sensitive credentials to ensure secure access across all environments.
  • Environment Bootstrapping - Automates the initial setup of environments including admin users and machine identities.
  • Infrastructure Orchestration Tools - Automates the injection of secrets and configuration parameters into cloud-native deployment pipelines and application environments.
  • Platform Settings - Manages core platform parameters including encryption keys and authentication secrets for secure operation.
  • Self-Hosted Infrastructure - Supports local deployment to maintain complete control over security and compliance requirements.
  • Secure Gateway Services - Establishes secure reverse tunnels to private network resources without inbound firewall rules.
  • Configuration Orchestration - Automatically injects secrets and environment variables into containerized platforms during deployment.
  • Cryptographic Operations - Executes encryption, decryption, signing, and verification tasks using managed keys.
  • Identity Federation - Delegates authentication to third-party identity services to centralize user management and enforce consistent access policies.
  • Machine Identity Authentication - Establishes secure sessions for accessing secrets by verifying machine identities through cloud-specific credentials.
  • Privileged Access Management - Controls access to sensitive administrative functions and privileged credentials.
  • Public Key Infrastructure - Automates the issuance and lifecycle management of digital certificates for secure service communication.
  • Infrastructure as Code - Uses automated configuration files to ensure consistent and repeatable cloud infrastructure deployments.
  • Reverse Tunnels - Establishes outbound connections to private network resources to bypass firewall restrictions without inbound port exposure.
  • Identity Provider Connections - Links external identity providers to the platform by providing domain and client credentials to enable authentication.
  • Secret Configuration Management - Manages secret lifecycles including creation, updates, and deletion within project environments.
  • Secret Management Utilities - Exports secrets to local files in various formats for secure configuration management.
  • Secrets Scanning - Automatically detects and alerts on hardcoded secrets in source code and infrastructure.
  • Security Auditing - Maintains immutable records of access requests and configuration changes for regulatory compliance.
  • Audit Logging - Records detailed audit trails of platform actions for security and compliance visibility.
  • SDK Authentication - Establishes secure sessions using universal or directory credentials for SDK operations.
  • Cloud Infrastructure Integrations - Establishes secure connections to cloud infrastructure providers for cross-service communication.
  • Container Orchestration - Runs the application and its dependencies as isolated containers using configuration files.
  • Infrastructure Automation - Provisions cloud resources using automated templates to ensure consistent networking and compute setup.
  • Configuration Syncing - Ensures consistent injection of secrets and environment variables across containerized services.
  • Password Manager Integrations - Establishes secure synchronization links to password management servers for secret retrieval.
  • Secret Lifecycle Operations - Maintains secure configuration data through programmatic secret lifecycle operations.
  • Secret Record Management - Provides builder-pattern interfaces to manage secret keys, values, and metadata.
  • Project Scoping - Organizes work into distinct project containers to isolate security workflows.
  • Compliance Engines - Records detailed activity logs to provide visibility into secret access and configuration changes.
  • Database Configurations - Provides structured configuration for connecting to database and cache stores with support for secure encrypted connections.
  • Client Authentication - Establishes secure sessions using multiple credential methods for Java applications.
  • Configuration Templates - Merges secret values into configuration templates to automate the secure generation of environment-specific files.
  • Configuration Templating - Generates configuration files by injecting secret values into custom templates.
  • Cloud Container Deployments - Runs the application on managed container services with production-ready traffic routing.
  • Deployment Scaling - Adjusts infrastructure resources based on expected transaction volume and environment usage requirements.
  • Managed Cloud Services - Offloads infrastructure maintenance and scaling to a hosted service provider.
  • Certificate Management - Issues and retrieves certificate bundles for subscribers within a project.
  • Cloud Authentication Integrations - Attaches cloud authentication settings to machine identities by defining trusted resource names and network ranges.
  • Identity Provider Integrations - Provides API endpoints to permanently remove configured identity provider integrations.
  • Organization Management - Centralizes billing, directory management, and security policy enforcement across the organization.
  • Resource Hierarchies - Defines a hierarchical structure of organizations, projects, and environments for access control.

    • Infisical is a centralized secrets management platform designed to store, synchronize, and control access to sensitive credentials and configuration data across distributed development, staging, and production environments. It employs client-side encryption to ensure that secrets remain unreadable to the underlying storage infrastructure, while providing a hierarchical permission model to govern both user and machine access.

    The platform distinguishes itself through dynamic credential provisioning, which generates short-lived access tokens that are automatically revoked after use. It supports complex security workflows by integrating with external identity providers for federated authentication and offering a reverse tunneling gateway that allows secure access to private network resources without exposing inbound ports. Additionally, the system includes an event-driven audit engine that maintains an immutable record of all configuration changes and access requests to support compliance requirements.

    Beyond core secret storage, the platform provides comprehensive orchestration capabilities, including automated secret injection into containerized environments and infrastructure pipelines. It also features integrated public key infrastructure management for the lifecycle of digital certificates and automated scanning to detect hardcoded secrets in source code and CI pipelines.

    The platform supports flexible deployment models, allowing teams to either utilize managed cloud services or self-host the infrastructure within their own private networks. It provides a broad ecosystem of SDKs and a command-line interface to facilitate integration across various programming languages and deployment workflows.