dsec: Secrets Management CLI

Problem

Secrets sprawl across tools and locations:

  • Environment files - .env files with plaintext secrets

  • Config files - Hardcoded passwords in YAML/JSON

  • Password managers - GUI-only, no CLI integration

  • Vault - Powerful but complex for quick lookups

Result: Copy-paste credentials, secrets in shell history, no audit trail.

Solution

dsec provides a unified CLI for secrets management:

# Load credentials for a domain
dsource d000

# Now all tools have credentials
netapi ise sessions        # Uses ISE creds from env
ansible-playbook site.yml  # Uses Vault lookups
ssh admin@server           # Uses SSH keys from agent
dsec Architecture

Links

  • Source: ~/.secrets (private)

  • Documentation: domus-secrets-ops (private)

Document Information

Author

Evan Modestus

Version

1.0

Last Updated

2026-02-22