If you're looking for a secrets management solution that doesn't require a central key or vault, Akeyless is worth a look. It employs Distributed Fragments Cryptography (DFC) to create encryption keys in the cloud as distributed fragments, so there's no single point of failure or knowledge. Akeyless also offers automated credential rotation, just-in-time credentials, secrets sharing and secure Kubernetes secrets, along with a range of integration options with tools like Ansible, AWS, Azure, GitHub and Kubernetes.
Another contender is CloudTruth, which uses AI to automate and orchestrate config management across multiple tools and environments. It ensures that secrets and config data are up to date and accurate, so there's less chance of errors and security problems. CloudTruth integrates with CI/CD and IaC tools like Terraform, Kubernetes and GitHub, giving you a single system for config and secrets that can improve productivity and lower risk.
If you're more focused on code security, GitGuardian could be helpful. It monitors Git repositories for hardcoded secrets like API keys and passwords, helping you ensure good software development practices. The service offers real-time detection, customizable secret detectors and remediation tools, so Dev, Sec and Ops teams can work together to keep their software development lifecycle secure.
Last, KeyRunner offers a zero-trust API client that restricts human access to sensitive data and API keys. It also offers data visualization dashboards, secure integration through app-to-app connections and automated key generation and retrieval. KeyRunner is designed to improve DevSecOps efficiency, so if your team needs to integrate and manage APIs securely, it's a good option.