Question 1

How does Keyrua secure environment variable sharing?

Accepted Answer

All secrets are encrypted at rest using Google Cloud KMS before being stored. Team members only access variables you explicitly share based on their role. Even Keyrua cannot decrypt your secrets.

Question 2

What is the difference between environments in Keyrua?

Accepted Answer

Each project has four isolated environments: LOCAL, DEVELOPMENT, STAGING, and PRODUCTION. Secrets are scoped per environment so your dev credentials never leak into production.

Question 3

Can I track who changed which environment variable?

Accepted Answer

Yes. Every create, update, and delete operation is recorded in an immutable audit log — who changed it, when, and the previous value. Essential for debugging and compliance.

Question 4

How do I add team members to a project?

Accepted Answer

Invite teammates by email directly from your Keyrua organization. Assign roles (viewer, editor, admin) to control what each person can see or modify.

Question 5

What happens when a team member leaves?

Accepted Answer

Revoking access is instant. Remove them from the organization and they immediately lose access to all projects and secrets — no manual key rotation required.

Question 6

Is Keyrua a replacement for HashiCorp Vault or AWS Secrets Manager?

Accepted Answer

No. Keyrua is a lightweight collaboration layer for development teams — not a production infrastructure secret manager. It's built for speed and team usability, not enterprise-scale automation.

Question 7

Does Keyrua support CI/CD pipeline integration?

Accepted Answer

CLI integration is currently in beta. You can export secrets as .env files today. Full CI/CD integration (GitHub Actions, GitLab CI) is on the roadmap.

Question 8

How much does Keyrua cost?

Accepted Answer

There's a free plan supporting up to 2 projects and 2 team members. The Pro plan is €24.99/month and includes up to 15 projects, 100 secrets per environment, and 10 team members.

Practical guides for
developer security

CI/CD Secret Management: What Most Pipelines Get Wrong

LLMjacking: How Attackers Steal AI API Keys and Run Up Your Bill

How to Share .env Files Securely with Your Development Team

Environment Variable Best Practices Every Developer Should Know

Practical guides fordeveloper security

CI/CD Secret Management: What Most Pipelines Get Wrong

LLMjacking: How Attackers Steal AI API Keys and Run Up Your Bill

How to Share .env Files Securely with Your Development Team

Environment Variable Best Practices Every Developer Should Know

Practical guides for
developer security