infisical
Open-source platform for secrets, certificates and privileged access management
GitHub
Repository →
27,281
Stars
NOASSERTION v0.160.12 Jun 10, 2026
Since Aug 2022 587
open issues
AI Summary
Infisical is an all-in-one security platform for developers and DevOps teams for centralized management of application secrets, certificates, SSH keys and privileged access. The open-source solution supports Kubernetes, Terraform, CI/CD pipelines and offers Dynamic Secrets, Secret Rotation as well as special features for AI agents. With SOC 2, HIPAA and FIPS 140-3 compliance, Infisical is suitable for both cloud and on-premise infrastructures.
✓ Pros
- + Open source and self-hostable with high flexibility in deployment options
- + Comprehensive integrations with all major cloud providers, tools and frameworks
- + Enterprise features such as audit logs, approval workflows, RBAC and 99.99% uptime guarantee
✗ Cons
- − Complexity may be oversized for smaller teams or simple use cases
- − Onboarding time required to fully utilize all security features
Use Cases
- → Centralized management of secrets across Kubernetes, Docker, CI/CD pipelines and local development environments
- → Automated certificate management with automatic renewal to prevent expiration
- → Just-in-time privileged access management with temporary access rights for sensitive systems
- → Governance and access control for AI agents via Agent Sentinel and MCP endpoints
Who is it for?
Development teams, DevOps engineers and companies looking for a secure, scalable solution for secrets management, certificate management and privileged access.
