Secure Transmission (Vault)

Name: StateSpine
Author: StateSpine

API key management that actually makes sense.

THE PROBLEM

The .env chaos is real.

Keys scattered across .env, .env.local, .env.development, .env.production. Which one has the right Stripe key? Is the staging API pointed at production?

You install a new package. It needs an API key. You forget which environment variable name it expects. You deploy. It crashes. "SENDGRID_API_KEY not found."

Or worse: you commit a .env file to git. Or hardcode a key "just for testing." Months later, it's in production. Or public on GitHub.

THE SOLUTION

One dashboard. Complete visibility.

Vault gives you a single view of every key across every environment. See what's set, what's missing, and what's about to cause a deployment failure.

Environment Matrix

See all keys across all environments at a glance. Spot missing keys before they cause deployment failures. Never wonder "did I set that in staging?"

Package-Aware Detection

Install @sendgrid/mail? Vault knows you need SENDGRID_API_KEY. It prompts you immediately — not after deployment crashes.

Secret Scanning

Guardian Hound watches for exposed secrets. Hardcoded key in source? Flagged immediately. About to commit .env? Blocked.

Rotation Tracking

Know when keys were last rotated. Get reminders for keys that haven't been changed in 90 days. Stay ahead of security audits.

Security by design:

Vault stores metadata — which keys exist, where they're set, when they were rotated. It NEVER stores actual key values. Your secrets stay in your .env files, on your machine.

SEE IT IN ACTION

Built for how you actually work.

StateSpine

VAULT8 keys healthy

Key	Dev	Staging	Prod
SUPABASE_URL
SUPABASE_ANON_KEY
STRIPE_SECRET_KEY
OPENAI_API_KEY

OPENAI_API_KEY missing in staging and production

Recently installed:

@sendgrid/mailNeeds: SENDGRID_API_KEY

TECHNICAL DETAILS

How it protects you.

Pre-commit Hooks

Vault integrates with git hooks. Attempting to commit a file with an exposed secret? The commit is blocked with a clear explanation of what was found.

.env.example Generation

Vault auto-generates .env.example files from your actual environment variables. New team members know exactly what keys they need — without seeing your values.

Cross-Environment Sync Check

Before deployment, Vault compares your environments. "Production is missing OPENAI_API_KEY that development has — are you sure you want to deploy?"

Try it free.

Early access opens early 2026. Join the waitlist.

Join Early Access ← Back to Features