The brain behind your secrets.
Unified secrets control plane for cloud-native teams.
secrets-bridge.io · all repos
Core Go module for the Secrets Bridge platform.
This module hosts the provider abstraction, the synchronization engine, and the shared types used by the API, worker, agent, and controller services.
providers— theProviderinterface and registry. Providers expose a metadata plane (safe to log and cache) and a value plane (sensitive, never logged).sync— placeholder for the reconciliation engine that copies secrets between providers.types— placeholder for cross-cutting value types shared across the module.
Secret values are confidential. They must never be logged, embedded in
error messages, serialized to telemetry, or exposed outside an explicit
GetValue / PutValue call. providers.SecretValue redacts itself under
%v and %#v to make accidental disclosure harder, but callers are still
responsible for treating the underlying bytes with care.
core reached its target shape early in the polyrepo refactor and has
remained stable. The provider interface + registry + AWS Secrets Manager
- Vault connectors are the load-bearing surface every other repo
imports. See
skills/PROGRESS.mdfor the slice-by-slice history of how this module is consumed across the api, agent, controller, and worker.