Your secrets centralized, never in the code
Infisical centralizes and encrypts your API keys, passwords, and certificates, distributing them securely to your applications. Hosted by DINAO in France — your secrets never leave our French servers.
What is Infisical?
Infisical is an open-source secret management platform that centralizes your API keys, passwords, tokens, and certificates in an encrypted vault, organized by project and environment (development, testing, production). It prevents secrets from being scattered across configuration files or, worse, hardcoded in source code.
Infisical then securely distributes these secrets to your applications, CI/CD pipelines, and containers, via a CLI and SDKs (Node, Python, Go, and more). It manages secret versioning and rotation, offers a PKI for certificates, and integrates a secret exposure detection feature in code to prevent leaks.
Presented as a modern and accessible alternative to tools like Vault, Infisical deploys via Docker and Kubernetes. Hosted by DINAO in France, it becomes a sovereign secret vault : your sensitive credentials and access logs remain on French servers, under your control.
Host Infisical at DINAO
Resource tiers compatible with Infisical prerequisites (minimum 2 vCPU / 2 Go / 5 Go). Hosted in France, fully managed.
- 2 dedicated vCPU
- 4 Go RAM
- 40 GB NVMe
- Daily backups
- Managed & monitored by DINAO
- 4 dedicated vCPU
- 8 Go RAM
- 80 GB NVMe
- Daily backups
- Managed & monitored by DINAO
- 8 dedicated vCPU
- 16 Go RAM
- 160 GB NVMe
- Daily backups
- Managed & monitored by DINAO
1 hidden tier(s) (insufficient resources for this app) : Découverte
Technical details
You might be wondering…
What is Infisical used for?
Infisical centralizes your secrets (API keys, passwords, tokens, certificates) in an encrypted vault, then securely distributes them to your applications and pipelines, so they are no longer hardcoded or scattered across files.
How is it an alternative to Vault?
Infisical addresses the same secret management need, with a more accessible open-source approach (clear interface, SDKs, CI/CD integrations). Hosted by DINAO in France, your secrets remain sovereign.
Are my secrets really protected?
Yes. Secrets are stored encrypted on your instance in France, with access auditing, versioning, and rotation. Infisical also detects secrets accidentally exposed in your code.
How do my applications retrieve secrets?
Via CLI, SDKs (Node, Python, Go…), or CI/CD, Docker, and Kubernetes integrations. Secrets are injected at runtime, without appearing in source code.
Do I need a dedicated security team?
No. DINAO handles installation, SSO integration, and initial configuration. Your teams then manage their secrets via a clear web interface and SDKs.