credstash
« Back to VersTracker
Description:
Little utility for managing credentials in the cloud
Type: Formula  |  Latest Version: 1.17.1@13  |  Tracked Since: Dec 17, 2025
Links: Homepage  |  formulae.brew.sh
Category: Security
Tags: security secrets aws kms cli devops
Install: brew install credstash
About:
Credstash is a command-line utility that leverages AWS KMS and DynamoDB to securely store and retrieve secrets. It provides a simple interface for managing encrypted credentials, ensuring that sensitive data remains protected at rest and in transit. The tool supports versioning, access control via IAM policies, and seamless integration into automation scripts.
Key Features:
  • AWS KMS encryption for secure key management
  • DynamoDB-backed storage for secrets with versioning
  • Easy CLI for storing, retrieving, and managing secrets
  • IAM policy integration for fine-grained access control
  • Cross-platform compatibility via Python
Use Cases:
  • Managing API keys and database passwords in cloud environments
  • Automating secret injection in CI/CD pipelines
Alternatives:
  • HashiCorp Vault – More comprehensive secret management with dynamic secrets and broader integrations, but heavier infrastructure requirements.
  • AWS Secrets Manager – Native AWS service with rotation and tighter integration, but higher cost and less CLI flexibility.
License: Apache-2.0
Dependencies: cryptography, python@3.14
Bottles available for: all
Version History
Detected Version Rev Change Commit
Oct 14, 2025 10:19am 12 VERSION_BUMP 143fa478
Oct 14, 2025 1:41am 12 VERSION_BUMP e12b8409
Oct 12, 2024 8:16pm 11 VERSION_BUMP c87f06be
Oct 12, 2024 3:09pm 11 VERSION_BUMP 31e2d952
« Back to VersTracker  |  Browse Packages  |  About