Coming soon

Secrets for developers

Secure secrets, one command away

Single source of truth

Manage from anywhere anytime

Dashboard

Web based dashboard for managing everything in your workspaces.

Dashboard

Web based dashboard for managing everything in your workspaces.

CLI

Run your apps from local machines in any environment.

CLI

Run your apps from local machines in any environment.

SDKs

Inject secrets in your apps at runtime with just a single line of code.

SDKs

Inject secrets in your apps at runtime with just a single line of code.

Local development made a breeze

With CLI you can run all your apps in any environment

Command-line interface

Access all your resources from your favorite termnial.

Command-line interface

Access all your resources from your favorite termnial.

Blazingly fast

Flexibility first

You can easily pipe out the data in multiple formats.

Flexibility first

You can easily pipe out the data in multiple formats.

stashbase.yaml

- project: our-project
  environment: api-prod
  description: Production environment (AWS)
  file: .env
  push:
    file: secrets.yaml

- project: our-project
  environment: api-dev
  file: .prod.env
  secrets:
    only:
      - DATABASE_URL
  run:
    command: npm run dev
    secrets:
        expand-refs: true
        print: true

- project: our-project
  environment: api-testing
  secrets:
    set:
      - NODE_ENV: testing

Custom config files

Configurable environments. Easily configure environments for local development.

Pull environments. Save custom environment configurations into local files.

Push environments. Push your local environment configurations into the cloud.

Run with single command. Run your apps in custom environments with a single command.

Select secrets you need. Easily push or pull only the secrets you want.

Share with your team. Create unified environments for development across your team.

Everything at your fingertips

Just one command to get you going

. . .

stashbase run -p project -e environment --print -- bun run dev

Environment loaded (3 secrets)
╭──────────────┬────────────────────────────────────────────────╮
│ Name         │ Value                                          │
├──────────────┼────────────────────────────────────────────────┤
│ DATABASE_URL │ postgres://user:password@localhost:5432/public │
│ USER_ID      │ 2ed77437-2580-4949-a8e0-73af614c4746           │
│ JWT_SECRET   │ POJS4A9BM3RQS6GDPITG7X7U9                      │
╰──────────────┴────────────────────────────────────────────────╯       

# Running "bun run dev" command...

Access from your code

Use SDK to load secrets and more

Easy to use

Works with existing code

Small bundle size

Environment API

Limit the access to only one selected environment.

Environment API

Limit the access to only one selected environment.

Workspace API

Manage your projects, environments and secrets.

Workspace API

Manage your projects, environments and secrets.

Fine-tuned permissions

Give only the permissions you needed for selected resources.

Fine-tuned permissions

Give only the permissions you needed for selected resources.

. . .

// Initialize SDK client
const stashbase = createEnvClient("sbe...fDn4q")

// Example: Load end inject environment variables
await stashbase.load()

// Example: Load only if NODE_ENV is production
await stashbase.load({
  enabled: process.env.NODE_ENV === "production",
})

AI-powered secrets scanning

Scan your code for secrets, improve your security

index.ts

import Stripe from "stripe"
import twilio from "twilio"

const stripe = new Stripe(
  "sk_test_51H8WE7L8NC94n45PZLmV7Axd3hEd5L1E5Xu",
  {
    apiVersion: "2023-08-17",
  },
)

async function sendSms(to: string) {
  const twilioClient = twilio(
    "AC6f0d6f9e2f3456ab7d8e9c0d1e2f3g4h5i6j7k",
    "d1d2c3d4e5f6g7h8i9j0k1l2m3n4o5p6q7r8s9t0",
  )

  try {
    const message = await twilioClient.messages.create({
      body: "Hello from Twilio!",
      to: to,
    })

    console.log("Twilio Message SID:", message.sid)
  } catch (error) {
    console.error("Error sending SMS:", error)
  }
}

Huh, what's that?

Hard-Coded Secrets. Find hard-coded secrets in your projects and replace them with environment variables.

Find Missing Secrets. Locate secrets used in your project but not saved in Stashbase.

Single File or Entire Project. Scan a specific files or scan your entire project.

One Command Setup. Scan local projects with just a single command using Stashbase CLI.

GitHub Integration. Works with GitHub, so you can scan your existing GitHub repositories.

Auto Name Suggestions. Generate secret names automatically based on your project's context.

index.ts

import Stripe from "stripe"
import twilio from "twilio"

const stripe = new Stripe(
  "sk_test_51H8WE7L8NC94n45PZLmV7Axd3hEd5L1E5Xu",
  {
    apiVersion: "2023-08-17",
  },
)

async function sendSms(to: string) {
  const twilioClient = twilio(
    "AC6f0d6f9e2f3456ab7d8e9c0d1e2f3g4h5i6j7k",
    "d1d2c3d4e5f6g7h8i9j0k1l2m3n4o5p6q7r8s9t0",
  )

  try {
    const message = await twilioClient.messages.create({
      body: "Hello from Twilio!",
      to: to,
    })

    console.log("Twilio Message SID:", message.sid)
  } catch (error) {
    console.error("Error sending SMS:", error)
  }
}

Save to Stashbase. Easily save replaced secrets directly to your Stashbase project.

Real-Time Notifications. Alerts about hard-coded secrets and other important updates.

Privacy First. Your data remains safe. No data is shared withh third-parties.

Track API usage in Track usage in real-time

See how are your API Keys used

Secure by design

No need to worry about security

Robust encryption

All secrets are encrypted with AES-256 using KDF and stored in a secure database.

Robust encryption

All secrets are encrypted with AES-256 using KDF and stored in a secure database.

Encryption isolation

Workspaces are equipped with a unique keys dedicated to encryption.

Encryption isolation

Workspaces are equipped with a unique keys dedicated to encryption.

Role-based access control

Give permissions to individual users and custom teams.

Role-based access control

Give permissions to individual users and custom teams.

World-class developer experience

Dev tool you will enjoy using everyday

Command palette

Search anything quickly

Designed for keyboards

More than 20 shortcuts

Created for teams

Effortless team collaboration

World-class developer experience

Dev tool you will enjoy using everyday

Command palette

Search anything quickly

Designed for keyboards

More than 20 shortcuts

Created for teams

Effortless team collaboration

And more...

Secrets changelog

Easily track changes and revert them from a single place.

Secrets changelog

Easily track changes and revert them from a single place.

Compare environments

See the differences in secrets between multiple environments.

Compare environments

See the differences in secrets between multiple environments.

Lock environments

Prevent environments from being deleted or modified by accident.

Lock environments

Prevent environments from being deleted or modified by accident.

Trusted IPs

Allow only trusted IPs to access your environments and secrets.

Trusted IPs

Allow only trusted IPs to access your environments and secrets.

Webhooks

Webhooks can be used to trigger actions on specific events.

Webhooks

Webhooks can be used to trigger actions on specific events.

Vim mode (really)

Edit secrets with your favorite keybindings. For advanced devs only.

Vim mode (really)

Edit secrets with your favorite keybindings. For advanced devs only.

Works with your infrastructure

Integrates with tools you already use

And others...

Do the first step today

Be the first to use Stashbase and supercharge your workflow