Keeper Security has introduced a new Visual Studio Code (VS Code) extension, bringing its enterprise-grade secrets management directly into developers’ coding environments. This addition extends the reach of the KeeperPAM platform into the developer ecosystem, delivering secure, zero-trust secrets management across the entire software development lifecycle.
Secure secrets management is critical for developers because it directly protects the credentials, API keys, tokens and certificates that applications rely on to function securely. When these secrets are mishandled, such as being stored in plaintext, hardcoded into source code or shared informally, they create severe vulnerabilities that attackers can exploit to compromise systems or data.
The new Keeper VS Code extension allows developers to save, retrieve, generate and execute commands using secrets stored in their Keeper Vault, eliminating the need to leave their coding environment or expose sensitive information in configuration files. This direct integration supports both Keeper Commander CLI and Keeper Secrets Manager, providing organizations with the flexibility to align with their preferred infrastructure and security requirements.
“Developers play a critical role in securing the software supply chain,” said Craig Lurey, CTO and Co-founder of Keeper Security. “Integrating Keeper directly into Visual Studio Code empowers teams to develop securely from the start. By embedding zero-trust principles into their workflows, developers can protect secrets and maintain compliance without slowing innovation.”
This launch reflects Keeper’s continued dedication to delivering unified privileged access and secrets management capabilities that align with the evolving needs of modern enterprises and development teams.
Key capabilities of the Keeper VS Code extension include:
- Secrets Management: Save, retrieve and generate secrets directly from Keeper Vault.
- Flexible Usage: Operate in Keeper Commander CLI or Keeper Secrets Manager mode.
- Secret Detection: Automatically identify hardcoded credentials, such as API keys and tokens, for immediate remediation.
- Secure Command Execution: Run applications with secrets securely injected from Keeper Vault.
- Logging and Debug Tools: View logs and enable debug mode for full operational transparency.
By integrating secrets management directly into VS Code, Keeper helps organizations reduce secret sprawl, prevent accidental exposure and maintain compliance with zero-trust and least-privilege security frameworks.
Keeper Secrets Manager is part of Keeper’s unified privileged access management platform, KeeperPAM®. Built on a zero-trust, zero-knowledge architecture, KeeperPAM combines enterprise password, secrets and connection management with endpoint privilege management, zero-trust network access and remote browser isolation in a single cloud-based platform. Keeper’s Secrets Manager eliminates the need for manual secrets distribution, enforces least-privilege access and enables automated credential rotation, strengthening security while accelerating development workflows. With centralized visibility, detailed audit trails and API integrations that fit seamlessly into existing toolchains, KeeperPAM empowers developers to code faster, deploy securely and maintain compliance with minimal overhead.
Keeper’s new VS Code extension is available in both the Visual Studio Marketplace and Open VSX Registry, ensuring compatibility with its derivatives, such as Cursor.
Related News:
