aws-vault-binary
« Back to VersTracker
Description:
Securely stores and accesses AWS credentials in a development environment
Type: Cask  |  Latest Version: 7.2.0@0  |  Tracked Since: Dec 17, 2025
Links: Homepage  |  @99designs  |  formulae.brew.sh
Category: Security
Tags: aws security credentials devops cli
Install: brew install --cask aws-vault-binary
About:
aws-vault-binary is a CLI tool for securely storing AWS credentials in your local system's keychain. It uses the credentials to automatically assume IAM roles and generate temporary session tokens. This eliminates the need to hardcode credentials and reduces the risk of exposure.
Key Features:
  • Securely stores AWS credentials in native keychain (macOS Keychain, Linux secret-service, Windows credential manager)
  • Assumes IAM roles and generates temporary session tokens automatically
  • Executes commands with short-lived environment variables, minimizing credential exposure
  • Supports MFA (Multi-Factor Authentication) for enhanced security
Use Cases:
  • Managing multiple AWS accounts and roles securely from the command line
  • Running CLI tools like aws-cli or terraform with temporary, auto-rotated credentials
  • Preventing accidental exposure of long-lived AWS access keys in shell history or config files
Alternatives:
  • aws-cli – The official AWS CLI can store credentials but lacks aws-vault's secure keychain integration and automatic role assumption.
  • okta-aws-cli – Integrates with Okta for SSO, whereas aws-vault is a standalone credential manager.
Version History
Detected Version Rev Change Commit
Aug 5, 2025 2:15pm 7.2.0 0 VERSION_BUMP f88ec2e1
« Back to VersTracker  |  Browse Packages  |  About