secrethub

Write secret

$ secrethub write [org/repo/secret]

$ secrethub read [org/repo/secret]

$ secrethub ls [org/repo]

$ secrethub run -- [command]

$ secrethub repo init [org/repo]

$ secrethub inject -i [template.env] -o [.env]

secrethub command [options] [args]

secrethub was a secret management service CLI that provided secure credential storage with end-to-end encryption and a zero-knowledge architecture. Secrets were organized in repositories using a path-based hierarchy (org/repo/secret) and encrypted client-side before transmission.
The run command injected secrets into environment variables for a child process, keeping credentials out of config files and shell history. Template injection via inject generated configuration files with secrets substituted from references, enabling secure deployment workflows.
Built-in access control allowed team sharing of secrets with granular permissions. The service was acquired by 1Password and has been discontinued; users should migrate to alternatives like 1Password, HashiCorp Vault, or similar tools.

write

Store secret.

Retrieve secret.

List secrets.

Execute with secrets.

Template injection.

Repository management.

Copy to clipboard.

Service discontinued. Use alternatives. Account required.

SecretHub was a secret management service. It was acquired by 1Password and integrated into their platform.

vault(1), pass(1), aws-secrets(1)