What is our primary use case?
I have been using Infisical consistently for the past couple of years in my current company. The main use case of Infisical is to manage our secrets. We use it to properly manage application secrets and environmental variables across development, staging, and production, replacing hard-coded secrets and .env files with a centralized, secure secrets manager for .NET, Node.js, or AWS workloads. Our main use case is secure secret management, environmental variable management, and syncing it with any other Vercel or cloud deployment that we use.
How we use it depends on the particular applications in the first place. Technically, we use Infisical to securely manage secrets for our AWS-hosted applications. During CI/CD deployments, our GitHub Actions pipelines retrieve environment-specific secrets such as database connection strings, JWT signing keys, and third-party API credentials like Knovo, Twilio, or Resend from Infisical and inject them into the applications at deploy time. This keeps secrets out of the codebase and avoids storing them in repository or pipeline variables.
For AWS Lambda specifically, our AWS Lambda functions retrieve their configurations and secrets from Infisical during deployment. This allows us to maintain separate secrets for development, staging, and production while ensuring sensitive values such as database credentials and API keys are never committed to source control.
What is most valuable?
There are a bunch of features that we are using right now. The best features are centralized secret management, environmental separation, and secret versioning.
Centralized secret management makes day-to-day development much easier because everyone works from a single source of truth. Developers do not need to request secrets from teammates or keep local .env files in sync because we do not push our .env files to our GitHub. We manage separate secrets for development, staging, and production, and access is controlled through roles, so each person only sees what they need. When it comes to secret versioning, it is useful when rotating credentials or updating configuration. If a new secret causes an issue after deployment, we can quickly see what changed and roll back to a previous version instead of manually tracking all values.
One of the best features I find very useful is that it is hosted and everyone who has access can easily access it and update it accordingly. Infisical has significantly improved our security posture by giving us a centralized and controlled way to manage application secrets. Previously, managing environmental variables across multiple services and environments became difficult, especially when teams needed to share or rotate credentials.
From a productivity perspective, developers spend less time requesting, locating, or manually updating secrets. New team members can be onboarded faster because access can be granted through proper permissions instead of sharing sensitive values manually. Infisical has improved collaboration between development and operations teams by providing a consistent workflow for managing secrets across local development, staging, production, and CI/CD deployments. Overall, it reduces the risk of accidental secret exposure while making deployments more reliable and repeatable.
What needs improvement?
Infisical is already a strong solution for centralized secret management, but there are a few areas where it could be improved. The user experience could be made even more intuitive, especially for teams that are new to secret management platforms because more guidance steps or secret and environment migration tools would help teams onboard faster. Improving documentation with more real-world examples for different architectures such as AWS Lambda and Kubernetes, .NET applications, and multi-account cloud setups would help teams adapt best practices faster. Overall, the product direction is strong and continued improvements around automation, integration, and enterprise governance features would make it even more valuable.
One area that could be improved further is automation around the full secret lifecycle. Making secret rotation more seamless with cloud services, databases, and third-party providers would reduce manual setups and improve security.
For how long have I used the solution?
I have been using Infisical consistently for the past couple of years in my current company.
What do I think about the stability of the solution?
We have not encountered any significant stability issues because it has been pretty stable throughout the development that we have implemented so far. The platform has been stable and reliable for our needs. We have not experienced any significant downtime or reliability issues that have impacted our development or deployment workflows because once they have been loaded, they perform their job well. The platform has performed well for managing secrets across environments and the availability has been pretty consistent and reliable in our experience.
The main reliability benefit is that it provides a centralized and predictable way to access secrets rather than relying on manually maintained configuration files or shared credentials. It is pretty stable in my opinion because we have not encountered any downtime.
What do I think about the scalability of the solution?
Infisical has been able to support our current needs and provides a scalable approach as our applications and environments grow. The ability to organize secrets by project, environment, and access permissions makes it easier to manage increasing complexity without adding significant operational overhead. We can manage multiple projects as well. As our usage grows, areas such as advanced automation, deep integration, and more granular governance capabilities will become increasingly important, but overall, Infisical provides a solid foundation for scaling secret management.
How are customer service and support?
We have not encountered any situation where we have needed to cooperate with their customer service support because we have not run into any trouble that we should refer to their customer support. The documentation and available resources have been very useful for resolving common issues independently. When dealing with more advanced scenarios, having access to knowledgeable support helps reduce the time needed to troubleshoot those issues.
Which solution did I use previously and why did I switch?
Previously, we used other solutions, but as the number of applications and environments grew, managing secrets consistently became more challenging. This is the main reason we moved to Infisical to have a centralized solution with better access control, auditing, versioning, and developer workflow. It simplified secret management across development, staging, and production while reducing the risk of secrets being stored or shared incorrectly.
How was the initial setup?
Pricing and the licensing model were straightforward and easy to understand. The setup cost was relatively low because Infisical does not require significant infrastructure changes. We were able to integrate it into our existing workflows without major overhead. The main value comes from reducing the operational effort around managing secrets, improving security practices, and making deployments more consistent. The licensing model provides flexibility as teams and usage grow, although continued improvements around enterprise-level cost visibility and usage insights would make planning even easier.
What about the implementation team?
We use AWS as our primary cloud provider because Infisical fits well into our AWS-based workflows by helping us securely manage application secrets and environmental configurations across all our environments.
We did not purchase Infisical through the AWS Marketplace. We use Infisical as a separate service and integrate it with our AWS workloads through our existing development and deployment workflows. We have a separate team to manage them. We use Infisical as a separate service and integrated it with our AWS workloads.
What was our ROI?
We have seen a positive return on investment, mainly through improved productivity, reduced operational overhead, and stronger practices. We have not measured a direct cost saving in terms of reduced headcount, but the main benefit has been time savings and reduced manual effort. The best benefit is that we do not have to share our .env files throughout the team. Developers spend less time requesting, sharing, and troubleshooting environment secrets because everything is centrally managed with controlled access. Setting up new environments and onboarding new team members is also faster because the required secrets and permissions are already structured well.
What's my experience with pricing, setup cost, and licensing?
We have a separate team that manages the resources with the outcome. Pricing and the licensing model were straightforward and easy to understand. The setup cost was relatively low because Infisical does not require significant infrastructure changes. We were able to integrate it into our existing workflows without major overhead. The main value comes from reducing the operational effort around managing secrets, improving security practices, and making deployments more consistent.
Which other solutions did I evaluate?
We use Infisical through a public cloud deployment model because it allows us to leverage a managed service while benefiting from scalability, availability, and reduced operational overhead. It integrates well with our cloud-based development and deployment workflows, allowing teams to securely manage secrets across different environments without maintaining additional infrastructure.
In the initial stages, we evaluated a couple of alternatives before choosing Infisical. We looked at options such as AWS Secrets Manager since we rely most on AWS, and HashiCorp Vault and other cloud-based secret management solutions. The main considerations were security, ease of integration, developer experience, operational overhead, and how well the solution would fit into our existing AWS and CI/CD workflows.
What other advice do I have?
Infisical is a great tool if you are looking for a tool to manage secrets because the amount of features that Infisical provides and the amount of reliability and shareable resources make it a source of truth and make it easy for teammates to manage secrets. It is very easy to use and it is a lifesaver when you are working in the software development lifecycle.
I think anyone who is asking whether to shift to Infisical would find that it is the best option if they are looking for something to manage secrets. Infisical is a great tool to manage all your secrets and rather than just a tool, I think it is a lifesaver that people can use to make their software development much easier, especially when they are using it with the proper team. Wherever I go, whenever I need to manage my secrets, I would definitely go with Infisical. I would rate this product a nine out of ten.