Akeyless
Cloud-native SaaS platform for unified secrets management and machine identity security
Open-Source Projects
Discover top open-source software, updated regularly with real-world adoption signals.
Discover top open-source software, updated regularly with real-world adoption signals.
Secure, versioned secret management from development to production
Phase provides end‑to‑end encrypted secret management, versioning, and automated sync across CI/CD, Kubernetes, and cloud providers, with a dashboard, CLI, SDKs, and self‑hosting options.
Phase is built for engineering teams that need to store, rotate, and audit application secrets safely across the entire software lifecycle. The platform offers a web console for visual secret management, a powerful CLI for importing files and injecting secrets at runtime, and SDKs for Go, Node.js, and Python.
.envSecrets are encrypted client‑side and synced automatically to GitHub, Vercel, Cloudflare Pages, AWS Secrets Manager, and other services. Role‑based access control lets you define fine‑grained permissions per application and environment. For Kubernetes workloads, the Phase Secrets Operator updates secrets in‑cluster and triggers pod reloads without downtime. Terraform integration enables secret provisioning alongside infrastructure code. Phase can be run as a SaaS offering on Phase Cloud or self‑hosted via Docker Compose, Helm charts, or native cloud deployments (AWS, GCP, Azure, DigitalOcean). The open‑core model provides a free community edition under the MIT license, while advanced enterprise features reside in a separate licensed module.
When teams consider Phase, these hosted platforms usually appear on the same shortlist.
Cloud-native SaaS platform for unified secrets management and machine identity security
Managed service for securely storing, retrieving, and rotating application secrets (credentials, API keys, etc.)
Cloud service for secure storage and management of cryptographic keys, secrets, and certificates
Looking for a hosted option? These are the services engineering teams benchmark against before choosing open source.
CI/CD pipeline secret injection
Secrets are automatically synced to GitHub Actions, Vercel, and other pipelines, removing manual handling and reducing risk.
Kubernetes secret rotation
The Phase Secrets Operator updates in‑cluster secrets and triggers pod reloads without downtime, ensuring continuous security compliance.
Multi‑environment configuration management
Developers switch between development, staging, and production environments with versioned secrets, view diffs, and restore previous values instantly.
Infrastructure as code secret provisioning
Terraform provider stores secrets alongside resources, keeping infrastructure and configuration in sync and auditable.
Phase encrypts secrets client‑side before storage and transmits them over TLS, providing end‑to‑end encryption.
Yes, Phase can be deployed via Docker Compose, Helm chart, or native cloud services such as AWS, GCP, Azure, and DigitalOcean.
Official SDKs are available for Go, Node.js, and Python, with additional community SDKs planned.
Permissions are defined per user, organization, application, and environment, enforced cryptographically to ensure only authorized access.
The core platform is open‑source under the MIT license; the community edition is free, while Pro/Enterprise features require a commercial license.
Project at a glance
ActiveLast synced 4 days ago