Vault
Sign inGet started
Secrets management, the simpli way

Keep every secret in one place. Hand out a key, not your keys.

Vault stores your API keys and credentials encrypted at rest, then hands them out only in exchange for a scoped, rotatable access key — so you never copy raw secrets between machines again.

Get started — it's freeSign in
your terminal
$ simpli run --env prod
✓ exchanged access key for 14 secrets
✓ injected into environment
$ node server.js

Everything a team needs to manage secrets

Encrypted storage, scoped access, and a CLI that just works — without standing up your own secrets infrastructure.

One vault for every secret

API keys, tokens and credentials in a single source of truth — encrypted at rest with AES-256-GCM, never in a shared doc or .env passed around Slack.

Scoped, rotatable access keys

Hand machines and CI runners a single scoped key, not your raw secrets. Rotate or revoke it instantly — the underlying secrets never leave the vault.

One key, every secret

Exchange one access key for an entire environment from the simpli CLI and inject the secrets into your shell or a subprocess. AWS Secrets Manager / Doppler style.

Global keys, rotate once

Share a single credential across environments. Rotate it in one place and every linked environment updates — no hunting down copies.

Organized by environment & project

Group secrets into prod, staging and dev, then into projects. Everyone on the team works from the same structure instead of ad-hoc spreadsheets.

Audit trail built in

Every reveal, rotation and exchange is recorded in an append-only audit log. Know what was accessed, by whom, and when.

From zero to secrets in four steps

1

Create an environment

Spin up prod, staging or a per-developer environment from the dashboard.

2

Add your keys

Drop your API keys and secrets in — encrypted at rest the moment they land.

3

Mint an access key

Generate a scoped, rotatable env access key. The raw key is shown once — only its hash is stored.

4

Inject with one line

Hand the key to the simpli CLI and every secret lands in your shell, file, or process.

simpli CLI

One line injects every secret

Exchange an environment access key for all of its secrets — AWS Secrets Manager / Doppler style — with no per-secret round-trip and no vendor lock-in. Pop them into your shell, write a .env, or run a command with them injected and nothing left on disk.

View on npmnpm i -g @startsimpli/cli
your terminal
# every secret in the env, straight into your shell
$ eval "$(simpli exchange creds --env prod)"

# …or run a command with them injected, nothing on disk
$ simpli run --env prod -- npm start

Stop passing secrets around.

Create your vault, mint an access key, and pull your secrets from any machine in seconds.

Get started — it's free
Vault — by StartSimpli
Sign insimpli CLIStartSimpli