Secrets
Zero-knowledge vault for API keys, credentials, and sensitive data.
Store API keys, database passwords, tokens, and certificates in an encrypted vault. Zero-knowledge architecture means even KerrOS can't read your secrets. Rotate, audit, and share with granular access control.
Security, simplified.
Every feature designed around one idea: secrets should be invisible until you need them.
Zero-Knowledge Encryption
Your secrets are encrypted with your keys. Even KerrOS infrastructure cannot decrypt your data at rest.
Auto-Rotation
Set rotation policies and secrets refresh automatically. No more expired credentials breaking production.
Access Control
Granular permissions per secret, per user, per team. Know exactly who can read what.
Audit Trail
Every access, every change, every rotation logged with timestamps and user attribution.
Environment Sync
Sync secrets across dev, staging, and production. One source of truth for every environment.
API Integration
Inject secrets into workflows, automations, and services via REST API. No hardcoded credentials.
How it works.
One vault. Every secret.
API keys, database credentials, tokens, certificates — all encrypted in a single zero-knowledge vault. Secrets are masked by default and organized by environment. Only you hold the decryption keys.
Rotate, audit, control.
Set rotation policies and secrets refresh on schedule — no manual intervention, no expired credentials. Every access is logged with full attribution. See exactly who read what, when, and from which service.
Works with everything.
Secrets connects to every KerrOS app natively. No plugins, no configuration.
Automator
Inject secrets into workflow steps at runtime without exposing credentials
AI Chat
Claude accesses API keys securely for tool use without seeing the raw credentials
Drive
Encrypted file storage backed by the same zero-knowledge key infrastructure
Hub
Secret status and rotation alerts surfaced in your unified inbox and communication hub