Blog
News, tutorials, and best practices for secrets management.
Migrate Off .env Files in Under Five Minutes
secr's migration wizard and config export/import make it painless to move from dotenv files to a proper secrets manager — and to replicate project setups across environments.
See Every Machine Credential in Your Org — and Which Ones Are Overdue
secr's NHI dashboard gives you a single pane of glass for machine tokens, agent identities, security posture scoring, and external credential rotation tracking.
Share a Secret Without Sharing Your Vault
secr now supports one-time secret sharing links — encrypted, expiring, and self-destructing. Send a credential to a contractor or teammate without adding them to your org.
Your CI/CD Pipeline Has an Identity Problem
Most teams manage human access carefully but let machine credentials sprawl across pipelines, bots, and services with no audit trail. secr's Non-Human Identity management changes that.
How to Set Up Secrets for a Monorepo in 5 Minutes
Monorepos make sharing code easy but sharing secrets hard. Here's how to set up per-app, per-environment secrets with secr — without duplicating values or leaking across boundaries.
Why HashiCorp Vault Is Overkill for 90% of Teams
Vault is powerful. It's also complex, expensive to operate, and designed for problems most teams don't have. Here's when you actually need it — and when you don't.
secr vs Infisical: Which Is Right for Your Team?
secr and Infisical are both developer-focused secrets managers. Here's how they differ in architecture, developer experience, and what they're optimised for.
secr vs Doppler: An Honest Comparison
Both secr and Doppler solve secrets management — but they're built for different teams. Here's where each one shines and where it falls short.
How to Manage Secrets in Next.js Without .env
Next.js apps rely on .env.local for secrets — but those files get leaked, forgotten, and go stale. Here's how to replace them with encrypted, synced secrets using secr.
Stop Sharing .env Files Over Slack
Every day, teams paste API keys, database URLs, and tokens into Slack DMs. Here's why that's a security incident waiting to happen — and what to do instead.
Beyond Key-Value: Managing Structured Secrets with secr
When your secrets grow beyond flat API keys into multi-field credentials across regions and services, here's how to keep them organised without drowning in env vars.
Enterprise-Ready: SSO, SCIM, and Identity Management Are Live
secr now supports SAML SSO, OIDC, SCIM directory provisioning, social login, MFA, and passkeys — everything your security team needs to approve a secrets manager.
Keep Your Entire Team's Postman Environments in Sync — Automatically
secr now syncs secrets directly to Postman. Change an API key once and every engineer on your team gets it instantly — no more stale environments or Slack messages asking for the latest credentials.
Announcing secr
secr is here. A CLI-first secrets manager that replaces .env files with encrypted, synced environment variables your whole team can share.
Ready to get started?
Stop sharing secrets over Slack. Get set up in under two minutes.
Create your account