HCP Vault Secrets End of Life
17 comments
·June 20, 2025stackskipton
For anyone pondering a migration to something on premise, there is also Vault Fork called OpenBao(https://openbao.org/) similar to fork OpenToFu is of terraform.
zorgmonkey
I haven't tried it out, but it looks they recently added PKCS#11 which should make it possible to use it with devices like HSMs and cloud KMS solutions.
tekla
You can run Vault on prem
stackskipton
You can but assuming you are not paying for it, Hashicorp seems extremely hostile to community edition users.
tekla
How. I run it on prem and have no particular issues.
redwood
For those of us for the removed can someone explain the difference between Vault Secrets and Vault Dedicated? (very naively I would have thought that Vault itself os specifically about secrets so I must be missing the nuance)
firesteelrain
HCP Vault Secrets aka Easy Vault aka Vault Lite is only for secrets. It’s also Cloud hosted.
Vault Community is more full featured. Vault Enterprise has HSM support (for auto unseal and seal wrapping) and FIPS 140-2 for those type of customers.
We use Vault Enterprise on prem solely for its particular HSM integration.
null
mcoliver
[flagged]
sedatk
A breach would warrant deprecation/invalidation of existing data. I doubt that HashiCorp would bet the future of their entire business on customers not being impacted from or not noticing a data breach.
dopamean
Unfounded conspiracy theory.
dangtony98
[flagged]
yjftsjthsd-h
If you're a competitor, surely this is the opposite of devastating?
lantry
I don't want to make assumptions, but it's very possible they were being sarcastic
dangtony98
This was indeed sarcasm haha
Third alternative that HCE doesn't mention ...
https://openbao.org/
:-)