Bitwarden debuts a secure, open-source solution, Secrets Manager, to safeguard sensitive information for IT professionals and DevOps teams.
Bitwarden, known for their open-source password manager, introduces the ‘Secrets Manager,’ a powerful E2EE tool. Aimed at IT experts and DevOps, it tackles the challenge of securing secrets, like API keys and certificates, often compromised during breaches or leaks. This release responds to the urgent need for safer alternatives to sharing ‘.env’ files and hard-coding secrets.
Symantec’s startling revelation on over 1,800 iOS apps containing exposed AWS credentials underscores the criticality of the issue. In response, GitHub created an alert system for misconfigurations, and independent researchers devised tools to scan public AWS S3 buckets for secrets.
Bitwarden’s Secrets Manager provides a remedy by enabling secure access, sharing, and deployment of vital information across teams. It embraces openness, allowing scrutiny of its codebase, CLI, SDK, and integration codes. The tool is tiered, with a free version supporting unlimited secrets, two users, three projects, and service accounts. ‘Teams’ and ‘Enterprise’ tiers, priced at $6 and $12 monthly, offer enhanced capabilities.
Integration-wise, Bitwarden currently supports GitHub Actions, with plans for Kubernetes, Terraform, Ansible, and expanded language support. Access management will also be bolstered, enabling precise secret assignments.
Bitwarden’s Secrets Manager redefines data security without exaggeration. Its commitment to open-source values, user-centric design, and progressive tech solidifies Bitwarden’s status as a security vanguard.
