DotVault encrypts in the browser, stores ciphertext in the cloud, and keeps decryption keys out of HTTP — so accidental logs and server compromise never see your variables.
Open source · Built with Better Auth · Supabase · Web Crypto · Upstash Redis
AES-256-GCM in your browser. One link, TTL you choose — key lives in the fragment, not in request headers.
Sign in and keep envs organized by project. AES-256-GCM at rest with your own encryption key.
Turn any stored blob into an ephemeral quick link when you need a handoff outside your team tooling.
Engineers use DotVault instead of Slack search history and pasted secrets in docs.