LinuxCommandLibrary

doppler

Manage secrets and configuration

TLDR

Setup Doppler project and configuration in current directory

$ doppler setup
copy

Run a command with secrets injected into the environment
$ doppler run --command [command]
copy

View your project list
$ doppler projects
copy

View your secrets for current project
$ doppler secrets
copy

Open Doppler dashboard in browser
$ doppler open
copy

SYNOPSIS

doppler [global flags] <command> [<args>]

PARAMETERS

-h, --help
    Show command help

-v, --version
    Print Doppler version

--verbose, -V
    Enable verbose output

--project <PROJECT>
    Specify project name

--config <CONFIG>
    Specify config name

--token <TOKEN>
    Use service token

--passphrase
    Prompt for account passphrase

--no-ansi
    Disable colored output

--json
    Output in JSON format

--plain
    Output secrets as plain text

DESCRIPTION

Doppler is a developer-focused CLI tool for unified secrets management across cloud providers and services. It enables secure access to secrets without local storage, using service tokens for authentication. Key use case: doppler run your-command injects secrets as environment variables into subprocesses, ideal for local dev, CI/CD, and deployments.

Supports projects and configs for environment isolation, with commands for secrets CRUD (list, get, set, delete), syncing, and reports. Integrates with GitHub Actions, Terraform, Docker, Kubernetes, and more. Features zero-knowledge encryption, automatic key rotation, audit logs, and proxy mode for air-gapped setups. No need for .env files or vault hunting—secrets are fetched on-demand.

CLI emphasizes speed and simplicity: verbose logging, JSON output, and autocomplete. Open-source under Apache 2.0, maintained by Doppler team. Trusted by teams at Notion, Intercom for reducing secret sprawl.

CAVEATS

Requires Doppler account and CLI installation. Service tokens needed for non-interactive use. Internet access required for remote ops; proxy mode for offline.

INSTALLATION

macOS: brew install dopplerhq/cli/doppler
Linux: curl -sLf https://cli.doppler.com/install.sh | sh
Other: npm, deb/rpm packages.

KEY COMMANDS

configure: Link local dir to project/config.
run -- app: Inject secrets, exec app.
secrets list: List secrets.
login: Authenticate account.

HISTORY

Developed by Doppler (doppler.com) team, first public release in 2020 as open-source CLI (GitHub: dopplerhq/cli). Evolved from internal tool to handle multi-cloud secrets, with v3+ adding proxy and git ops. Actively maintained with frequent updates.

SEE ALSO

pass(1), gpg(1), vault(1)

Copied to clipboard