Sold by: Infisical
Infisical is the leading platform for developers to securely manage application configuration and secrets across their team and infrastructure. Used by Fortune 500 enterprises, international governments, and fastest-growing startups. With Infisical, you can save time for your engineering teams and enhance organization-wide security posture.
4.8
Overview
Infisical is the leading open-source secrets management platform designed to securely store, manage, and synchronize application configuration and sensitive information like API keys, database credentials, and environment variables across engineering teams and infrastructure.
Infisical is available both through Infisical Cloud (a hosted SaaS product) as well as Infisical Self-hosted (self-managed on-prem product). Through SOC2 compliance, continuous penetration testing, enterprise uptime guarantee, and support SLAs, Infisical is able to satisfy the hardest security and reliability requirements of global enterprises. As a result, Infisical supports a myriad of Fortune 500 corporations, governmental institutions, as well as the fastest-growing startups in the world.
Infisical's value comes from enabling operational advantage of engineering organizations as well as enhancing organization-wide security posture. To achieve that, Infisical offers a full-fledged set of tools for managing secrets in production environments, efficiently injecting secrets into CI/CD pipelines, enabling local development workflows, preventing secrets leaks, ensuring secure secret sharing, and more!
In addition, Infisical comes with 50+ integration across leading developer and infrastructure tools (e.g., AWS, GitHub Actions, GitLab CI/CD, Jenkins, Kubernetes, Terraform, Ansible, Docker), as well as frameworks such as Next.js, Express, Django, among others.
We recommend speaking to Infisical before purchasing to ensure the best experience. Please contact sales@infisical.com for a private offer.
Highlights
- Unified secret management platform for developers with additional secret scanning and secret sharing capabilities.
- Integrates with all leading developer and infrastructure tools, including Kubernetes, Jenkins, AWS, GitHub Actions, and GitLab CI/CD.
- Available both through a self-hosted on-prem installation as well as a managed Infisical Cloud offering.
New
Introducing multi-product solutions
You can now purchase comprehensive solutions tailored to use cases and industries.
Features and programs
Trust Center
Access real-time vendor security and compliance information through their Trust Center powered by Drata or Vanta. Review certifications and security standards before purchase.
Financing for AWS Marketplace purchases
AWS Marketplace now accepts line of credit payments through the PNC Vendor Finance program. This program is available to select AWS customers in the US, excluding NV, NC, ND, TN, & VT.
Pricing
Pricing is based on the duration and terms of your contract with the vendor. This entitles you to a specified quantity of use for the contract duration. If you choose not to renew or replace your contract before it ends, access to these entitlements will expire.
Additional AWS infrastructure costs may apply. Use the AWS Pricing Calculator to estimate your infrastructure costs.
Dimension | Description | Cost/12 months |
|---|---|---|
Identity | Identities are represented by either human or machine users. | $1,000.00 |
Vendor refund policy
All fees are non-cancellable and non-refundable except as required by law.
Legal
Vendor terms and conditions
Upon subscribing to this product, you must acknowledge and agree to the terms and conditions outlined in the vendor's End User License Agreement (EULA) .
Content disclaimer
Vendors are responsible for their product descriptions and other product content. AWS does not warrant that vendors' product descriptions or other product content are accurate, complete, reliable, current, or error-free.
Delivery details
Software as a Service (SaaS)
SaaS delivers cloud-based software applications directly to customers over the internet. You can access these applications through a subscription model. You will pay recurring monthly usage fees through your AWS bill, while AWS handles deployment and infrastructure management, ensuring scalability, reliability, and seamless integration with other AWS services.
Resources
Vendor resources
Support
Vendor support
Submit a ticket via support@infisical.com or your dedicated support engineer.
AWS infrastructure support
AWS Support is a one-on-one, fast-response support channel that is staffed 24x7x365 with experienced and technical support engineers. The service helps customers of all sizes and technical abilities to successfully utilize the products and features provided by Amazon Web Services.
Updated weekly
By Infisical
By CyberArk
By Akeyless
Top
100
In Monitoring
Top
50
In Infrastructure as Code, Continuous Integration and Continuous Delivery
Sentiment is AI generated from actual customer reviews on AWS and G2
Functionality
Ease of use
Customer service
Cost effectiveness
Positive reviews
Mixed reviews
Negative reviews
AI generated from product descriptions
Secret Storage and Management
Securely stores, manages, and synchronizes application configuration and sensitive information including API keys, database credentials, and environment variables across engineering teams and infrastructure.
CI/CD Pipeline Integration
Efficiently injects secrets into CI/CD pipelines with integrations for GitHub Actions, GitLab CI/CD, Jenkins, and other leading developer tools.
Multi-Platform Deployment Options
Available as both self-hosted on-premises installation and managed cloud-based SaaS offering to accommodate different deployment requirements.
Extensive Third-Party Integrations
Supports 50+ integrations across infrastructure tools such as Kubernetes, AWS, Terraform, Ansible, Docker and frameworks including Next.js, Express, and Django.
Enterprise Security Compliance
Maintains SOC2 compliance, undergoes continuous penetration testing, and provides enterprise uptime guarantees with support SLAs to meet security and reliability requirements.
Centralized Secrets Management
Centrally secures, rotates, and manages secrets across multi-cloud and hybrid environments with a unified view across multiple AWS accounts and AWS Secrets Manager instances.
Multi-Platform Integration
Offers REST APIs and integrates with a wide range of DevOps tools, container platforms, vulnerability scanners, RPA, and automation tools for credential delivery.
Secrets Rotation and Lifecycle Management
Automatically rotates secrets in AWS Secrets Manager and across enterprise environments without requiring changes to developer workflows or applications.
Audit and Access Control
Provides centralized control and comprehensive auditing of how applications, DevOps tools, and automation platforms authenticate and access sensitive resources including databases and cloud environments.
Enterprise-Scale Architecture
Designed to support massive scalability with data sovereignty requirements for large global enterprises and eliminates vault sprawl across distributed environments.
Secrets Management and Rotation
Centrally manages and rotates credentials across hybrid and multi-cloud environments with automated lifecycle management
Privileged Access Management
Provides just-in-time, least-privilege access with intent-aware control that evaluates requested actions before granting access and issues task-scoped, short-lived credentials
Multi-Vault Governance
Unifies visibility and control across AWS and third-party vaults through a single policy and audit framework
Cryptographic Security
FIPS 140-3 validated platform powered by Distributed Fragments Cryptography (DFC) and zero-knowledge architecture that ensures encryption keys and secrets are never fully assembled or accessible
AI Agent Identity Security
Secures autonomous agents with ephemeral, policy-bound access without embedding credentials in code, prompts, or workflows, with continuous execution inspection and audit trails
Standard contract
No
No
Customer reviews
Shivdutt Bhadakwad
Token-driven secrets management has streamlined CI/CD workflows and reduced deployment time
Reviewed on Jun 01, 2026
Review from a verified AWS customer
What is our primary use case?
My main use case for Infisical is storing secret keys and secret tokens for a company and injecting them dynamically into the CI/CD workflow because companies typically do not hard-code these key secrets and tokens into their source code.
The process was straightforward. I obtained the Infisical token and used it to log in to Infisical from the cloud machine to obtain all the secrets. The secrets were divided based on the project, so for different projects, I obtained different secrets and injected them into the environment file.
What is most valuable?
According to my opinion, the best feature Infisical offers is that everything was happening because of a token. A single token was able to obtain all the secrets, which was very hassle-free and straightforward to use.
I found the process of managing and rotating tokens in Infisical easy to use. The tokens were divided into three phases: development, staging, and production, so it was very easy to rotate any token at any time in any stage.
Infisical has positively impacted my organization by helping us transition from deploying everything manually, where we had to copy-paste all the environment variables into the environment files in the cloud. Infisical helped tremendously by dynamically injecting all the tokens and secrets into the workflow, which was very fast and saved a lot of time.
What needs improvement?
One thing that kept frustrating me was that sometimes Infisical was not working from our cloud machine. We had to manually look into the workflow and run the workflow again by pasting the token. Sometimes Infisical was not working, and I do not know what was the reason, but it may have been on the Infisical side rather than on our side. The workflow was breaking because the system was not able to contact Infisical, so we had to manually rerun this, and then it would work.
I would like to add more about needed improvements. One feature that I would like to see, or that is actually already a feature, is permission management. Permission management is a bit confusing in Infisical, and it took us a lot of time to clear out the permission issues. I faced many permission issues, so I had to go back and forth with my founder to get all the permissions required for building the CI/CD pipeline and injecting the tokens into it.
For how long have I used the solution?
I have been using Infisical for a couple of months.
What do I think about the stability of the solution?
In my experience, Infisical is stable as we did not face any downtime. However, there was one major issue that I have already discussed multiple times in this interview. My cloud machine was not able to communicate with Infisical, so I had to manually check what the issue was. Mostly, the issue was on the Infisical side rather than on our cloud side because everything was working perfectly fine. I had to manually rerun this, and then it would work perfectly fine.
What do I think about the scalability of the solution?
Infisical's scalability is very good as it was able to handle increased workloads well. Initially, we were only deploying one service, and we had to scale up for three to four microservices, and it was able to handle that pretty well.
Which solution did I use previously and why did I switch?
I previously used a different solution before Infisical. Initially, we were handling everything manually at DeepLure, where we would just copy-paste secrets from our local systems to the cloud. Apart from Infisical, I have used Doppler , but that is only limited to my personal projects.
What was our ROI?
I have seen a return on investment with Infisical as I saved a lot of time. The manual process took us around ten minutes, but with Infisical, it cut down to almost two minutes, and we were able to deploy multiple services at the same time.
What other advice do I have?
My advice to others looking into using Infisical is that it is very straightforward to use, and you can easily integrate this into your workflow. It is easy to set up, so the overall experience is pretty good, and I would definitely recommend this tool to others.
I have additional thoughts about Infisical before we wrap up. If you fix the issue that I have discussed, where the system was not able to communicate with Infisical, then it would be a very good tool. I give this product a rating of eight out of ten.
Rohan B.
Incredible developer-centric secret ops/management platform!
Reviewed on Jul 03, 2024
Review provided by G2
What do you like best about the product?
Infisical made our dev team instantly more productive from the moment we onboarded. We used to labor over making sure our .env files were in sync; Infisical quickly got rid of that. Furthermore, as we've grown as an org, we've since been able to embrace their more advanced features like secret rotations, granular access controls and their plethora of 3rd party integrations with other services we use.
Highly recommend it!
Highly recommend it!
What do you dislike about the product?
Nothing to date - the Infisical team is A+ at receiving feedback or product feature requests and incorporating it onto their roadmap. They've dealt with any issues my team or I had super quick and keep me updated on the progress of things too.
What problems is the product solving and how is that benefiting you?
Infisical increases security by preventing accidental code check-ins of secrets, or passing around .env files. It also enables easier secrets access from CI, and has great integrations allowing the propagation of secrets into our hosting providers (with added sugar like being able to automatically trigger redeploys of our apps/services when secrets on Infisical are added, deleted or changed). Finally, Infisical has some more advanced features like support for secret rotations and granular access controls so we can control who on the team has read/write perms.
Ben G.
Infisical is a game changer!
Reviewed on Jun 20, 2024
Review provided by G2
What do you like best about the product?
Infisical has made secret management incredibly simple for our team. We were able to easily integrate it into our system and are huge fans of the system!
What do you dislike about the product?
Nothing! The team is super quick to respond and the functionality is exactly what we're looking for.
What problems is the product solving and how is that benefiting you?
Infisical makes it easy for us to store our secrets in a unified place, and easily inject it into our pipeline. No more sharing secrets in an .env file!
Vamsi S.
Developer-focused secret manager
Reviewed on Jun 13, 2024
Review provided by G2
What do you like best about the product?
It is very easy to set up and use – even for some very complex infrastructure environments (e.g., Multicloud and on-prem). Supports a variety of hosting options and is integrated into everything we do - we use it for everywhere on the product.
What do you dislike about the product?
Not much to say here - works perfectly for us
What problems is the product solving and how is that benefiting you?
Infisical helps us organise secrets across our team and infrastructure. Mostly, it saves us a lot of developer hours and improves organization’s overall security.
Han W.
Great all-in-one tool for secret management
Reviewed on Feb 14, 2024
Review provided by G2
What do you like best about the product?
Infisical helps us centralize our secrets across our infrastructure to the point that it’s never an issue anymore. Infisical integrates with 100% of our tech stack and provides API, CLI, SDKs, and beautiful user interface for managing resources/secrets. Bonus point is that you can self-host it on your own infra or use the cloud-hosted product if that’s easier.
What do you dislike about the product?
Nothing comes to mind. Infisical is by far the best option out of all the ones we considered.
What problems is the product solving and how is that benefiting you?
Infisical solved the problem of “secret sprawl”. It helps us securely and efficiently manage secrets (such as API keys, database access tokens, certificates) across all of our environments (e.g., development, CI/CD, production)