aws-spiffe-workload-helper
« Back to VersTracker
Description:
Helper for providing AWS credentials to workloads using their SPIFFE identity
Type: Formula  |  Latest Version: 0.0.4@0  |  Tracked Since: Dec 17, 2025
Links: Homepage  |  formulae.brew.sh
Category: Security
Tags: aws spiffe security credentials identity devops
Install: brew install aws-spiffe-workload-helper
About:
aws-spiffe-workload-helper acts as a bridge between SPIFFE identities and AWS IAM roles. It fetches AWS credentials from STS and makes them available to workloads via a local metadata service. This enables secure, short-lived credential management for applications running in heterogeneous environments.
Key Features:
  • SPIFFE identity to AWS IAM role mapping
  • Local EC2 metadata service emulation
  • Automatic credential refresh and management
  • Secure short-lived credential distribution
Use Cases:
  • Running applications on non-AWS infrastructure that need AWS API access
  • Providing AWS credentials to workloads in SPIFFE-enabled service meshes
  • Securing legacy applications that rely on EC2 instance metadata
Alternatives:
  • aws-sdk-credential-providers – Standard SDK providers lack SPIFFE integration
  • kiam – Kubernetes-specific, not SPIFFE-based
Version History
Detected Version Rev Change Commit