helm-secrets is a Helm plugin that enables decryption of encrypted Helm value files during deployment operations. The plugin utilizes sops encryption to secure sensitive configuration data and integrates with cloud-native secret management services including AWS SecretManager, Azure KeyVault, and HashiCorp Vault. The tool allows users to store secrets in external secret managers and inject them into Helm value files or templates at runtime. This approach separates sensitive data from configuration files while maintaining compatibility with existing Helm workflows. helm-secrets supports integration with deployment automation tools such as ArgoCD, enabling encrypted secrets management within GitOps workflows. The plugin processes encrypted value files on-the-fly, decrypting them during Helm operations without storing plaintext secrets in version control systems. The tool operates as a standard Helm plugin and follows Helm's plugin architecture, making it compatible with existing Helm installations and workflows.
FEATURES
SIMILAR TOOLS
TestDisk checks disk partitions and recovers lost partitions, while PhotoRec specializes in recovering lost pictures from digital camera memory or hard disks.
Steghide is a steganography program that hides data in image and audio files.
A tool for securely backing up and versioning production secrets or shared passwords
A tool for creating encrypted volumes with self-destruction capabilities that automatically destroy data when tampering is detected or commands are issued.
Red October is a TLS-based encryption server that implements two-man rule authorization, requiring multiple users to collaborate for cryptographic operations.
A database protection suite that provides field-level encryption, access control, and intrusion detection for distributed applications storing sensitive data.
A steganographic file system in userspace for plausible deniability of files.
A PHP library that provides secure data encryption capabilities using keys or passwords, designed to minimize implementation errors.
BleachBit is an open-source system cleaning utility that removes temporary files and system artifacts to free disk space and protect user privacy.
PINNED

Checkmarx SCA
A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.

Orca Security
A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.

DryRun
A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.