Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

Yes, if you have integrations set up (docker, kubernetes, etc.) then those secrets in the store will be synced to the respective environment


Thank you. I wasn't asking whether the product could do that through integrations but whether it operates insecurely by default.


Infisical is secure by default :)

It really depends on how you set it up. If you prefer, you can choose to split non-sensitive environment variables and sensitive secrets into different projects - and use them for different purposes / in different ways.


No, you seem to use the term "secure by default" in a different way as it is expected by industry standards. Please re-align your view.


It very much sounds like security is an after thought.

Seems cool if you need to sync env vars, but you should probably just be using battle tested etcd+confd or console+console template.

This product seems to be based on some incredibly misguided principles (from a security perspective). I don’t think a technology like this has any place in a modern enterprise.

Part of the whole point of using a secret manager is to avoid storing them in environment variables.

That coupled with the lack of an API and the use of MongoDB are just too many red flags for me to ignore.


Thanks - sometimes it is so helpful to see other publish your own thoughts. I was wondering why such a product is posted here.




Consider applying for YC's Winter 2026 batch! Applications are open till Nov 10

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: