Vault (HashiCorp)
February 22, 2026
What it is
Vault (HashiCorp) stores and generates secrets; provides encryption as a service; and can issue short-lived credentials (e.g. DB, cloud) dynamically.
Usage
Store static secrets; generate dynamic DB/cloud credentials; PKI and encryption; audit logging.
Pros and cons
| Pros | Cons |
|---|---|
| Dynamic secrets reduce exposure | Operational complexity; HA setup |
| Encryption and PKI | Learning curve |
| Integrations (K8s, cloud, DB) | HashiCorp license change (see OpenBao) |
| Audit trail |
Alternatives
OpenBao (open fork), Sealed Secrets (K8s). Why Vault: De facto standard for centralized secrets and dynamic credentials.
Links
- Homepage: https://www.vaultproject.io/
- Documentation: https://developer.hashicorp.com/vault/docs
- Source: https://github.com/hashicorp/vault