🗂️ Navigation
📁 Cloud Security
📋 Cloud Secrets
🔧 Berglas

Berglas

A command line tool for managing secrets on Google Cloud.

Visit Website →

Overview

Berglas is an open-source command-line tool and library from Google for managing secrets on GCP. It simplifies the process of storing secrets in Secret Manager (or KMS) and referencing them in other GCP services like Cloud Run, GKE, and Cloud Functions, often by replacing secrets with a special reference format.

✨ Key Features

  • Open source
  • Manages secrets in Google Secret Manager and Cloud KMS
  • Replaces secrets with `berglas://` references
  • Automatic decryption and injection into environment variables
  • Go library for application integration
  • IAM-based access control

🎯 Key Differentiators

  • Simplifies the developer workflow for GCP secrets
  • Provides a convention (`berglas://`) for referencing secrets
  • Tightly integrated with the GCP ecosystem
  • Official Google open-source project

Unique Value: Streamlines the use of Google Cloud's powerful but sometimes complex secret management services, providing a simpler, convention-based workflow for developers.

🎯 Use Cases (4)

Bootstrapping applications on GCP with secrets Managing Kubernetes secrets via Secret Manager Providing secrets to serverless applications without exposing them in environment variables Simplifying secret management for developers on Google Cloud

✅ Best For

  • A CLI helper for developers to streamline interaction with Google Cloud's native secret services

💡 Check With Vendor

Verify these considerations match your specific requirements:

  • Any environment outside of Google Cloud Platform
  • Users who need a central UI or dashboard

🏆 Alternatives

Google Cloud Secret Manager (native) HashiCorp Vault

It is not an alternative to Secret Manager, but rather a tool that makes Secret Manager easier to use. It is much simpler and more focused than a full-featured system like Vault.

💻 Platforms

CLI (Linux, macOS, Windows)

🔌 Integrations

Google Cloud Secret Manager Google Cloud KMS Google Kubernetes Engine (GKE) Cloud Run Cloud Functions Cloud Build

💰 Pricing

Contact for pricing
Free Tier Available

Free tier: Completely free and open source (GCP service usage costs still apply).

Visit Berglas Website →

🔄 Similar Tools in Cloud Secrets

HashiCorp Vault

A tool for secrets management, encryption as a service, and privileged access management....

Contact

Doppler

A centralized secrets management platform designed to sync secrets across all environments....

$8.00/mo

Keeper Secrets Manager

A fully managed, cloud-based, zero-knowledge platform for securing infrastructure secrets....

Contact

1Password Secrets

A secrets management solution to store, manage, and automate secrets for applications and infrastruc...

$19.95/mo

AWS Secrets Manager

A secrets management service that helps you protect access to your applications, services, and IT re...

$0.40/mo

Azure Key Vault

A cloud service for securely storing and accessing secrets, keys, and certificates....

$0.03/mo