Managed Secrets
HashiCorp Vault-powered secrets management with automatic rotation and audit logging.
Features
- Encrypted at rest with AES-256-GCM
- Automatic secret rotation
- Version history
- Audit logging
- Access policies
- Environment-specific secrets
- Kubernetes integration
- CLI and API access
Plans
| Plan | Secrets | Rotations/mo | Price |
|---|---|---|---|
| Starter | 50 | 10 | $9/mo |
| Standard | 500 | 100 | $27/mo |
| Pro | Unlimited | Unlimited | $72/mo |
Quick Start
# Create a secret
szc secrets set DATABASE_URL "postgres://..."
# Get a secret
szc secrets get DATABASE_URL
# List all secrets
szc secrets list
Environment-specific Secrets
# Set for production
szc secrets set API_KEY "prod-key" --env production
# Set for staging
szc secrets set API_KEY "staging-key" --env staging
# Get for specific environment
szc secrets get API_KEY --env production
Kubernetes Integration
Inject secrets into your K8s deployments:
apiVersion: v1
kind: Pod
metadata:
name: my-app
annotations:
sparbz.cloud/secrets: "DATABASE_URL,API_KEY"
spec:
containers:
- name: app
image: my-app:latest
env:
- name: DATABASE_URL
valueFrom:
secretKeyRef:
name: sparbz-secrets
key: DATABASE_URL
Automatic Rotation
Configure automatic rotation for database credentials:
# Enable rotation
szc secrets rotate DATABASE_URL --interval 30d
# Manually rotate
szc secrets rotate DATABASE_URL --now
Audit Logs
View who accessed what and when:
# View audit log
szc secrets audit --last 7d
# Filter by secret
szc secrets audit --secret DATABASE_URL