I've been working on an encrypted environment variables management tool, called kiln[1], for teams. I know, tools like age and SOPS exist, but this partly came through because of the lack of a good UX around the encryption part especially for a team-based workflow. I aim to continue building kiln as a developer-first experience, making it seamless to integrate into a large team's workflows.
The idea came to me when we were trying to find ways to manage Terraform secrets , CI vars were a no-go because people sometimes wish to deploy locally for testing stuff, and tools like Vault have honestly been a pain to manage, well, for us at least. So I have been building this tool where the variables are encrypted with `age`, have RBACs around it, and an entire development workflow (run ad-hoc commands, export, templating, etc) that can easily be integrated into any CI/CD alongside local development. We're using this and storing the encrypted secrets in Git now, so everything is version-controlled and can be found in a single place.
Do give it a try. I am open to any questions or suggestions! Interested to know what people think of this. Thanks!
The idea came to me when we were trying to find ways to manage Terraform secrets , CI vars were a no-go because people sometimes wish to deploy locally for testing stuff, and tools like Vault have honestly been a pain to manage, well, for us at least. So I have been building this tool where the variables are encrypted with `age`, have RBACs around it, and an entire development workflow (run ad-hoc commands, export, templating, etc) that can easily be integrated into any CI/CD alongside local development. We're using this and storing the encrypted secrets in Git now, so everything is version-controlled and can be found in a single place.
Do give it a try. I am open to any questions or suggestions! Interested to know what people think of this. Thanks!
[1]: https://kiln.sh