BestAlternative

les meilleures alternatives open source

English中文ItalianoDeutschFrançais

Phase

Visiter le siteVoir le dépôt

Open source platform for engineering teams to manage secrets and environment variables from development to production, with powerful integrations.

Overview:

Phase is an open-source platform designed for engineering teams that need to secure and deploy application secrets from development through production. It provides a centralized console, command-line interface (CLI), and API for creating, managing, and rotating secrets and environment variables. The project addresses the challenges of secret sprawl and access control across different environments. It is built for development teams seeking to integrate secret management into their existing workflows, with support for role-based access, version history, and automated syncing to external services and infrastructure.

Core Features:

  • Secret Management: Create, manage, and rotate secrets across environments. Supports viewing diffs, tracking version history, and restoring previous values.

  • Role-based Access Control (RBAC): Fine-grained, cryptographic access control that can be applied per application and per environment.

  • Secret Sync: Automatically synchronize secrets to external services including GitHub, Cloudflare Pages, Vercel, GitLab CI, Railway, and AWS Secrets Manager.

  • Kubernetes Integration: Sync secrets to Kubernetes clusters and automatically reload deployments using the Phase Secrets Operator.

  • CLI and SDKs: Import secrets from .env files, inject them at runtime into applications, create virtual shells, and integrate with programming languages via Node, Python, and Golang SDKs.

  • Audit Logs: Provides complete visibility into every change and access event within the platform.

Use Cases:

  • Engineering teams managing secrets across multiple environments: Developers can create, view, and restore secret values across development, staging, and production with full version history.

  • Deploying secrets to cloud and CI/CD platforms: Teams can automate the sync of secrets to services like GitHub, Vercel, or AWS Secrets Manager without manual intervention.

  • Securing secrets in Kubernetes deployments: System administrators can automatically sync secrets to Kubernetes clusters and trigger deployment reloads on secret changes.

  • Integrating secret management into infrastructure-as-code workflows: Teams using HashiCorp Terraform can manage secrets as part of their IaC pipelines.

Why It Matters:

Phase offers a self-hosted, open-core secret management solution with a focus on developer workflows and deployment automation. Its support for version history, audit logs, and role-based access provides transparency and control over secret lifecycles. The project's ability to sync directly with popular deployment platforms (Cloudflare, Vercel, Railway), CI/CD systems, and Kubernetes makes it a practical choice for teams that need to centralize secret management without abandoning existing infrastructure. The MIT-licensed core allows for broad customization and integration.

PartagerXLinkedInReddit

Statistiques du projet

Étoiles

851

Forks

59

Licence

Unknown

Métadonnées

Alternative à
1Password
Catégorie
Secrets Platforms