Infisical on Ubuntu 24.04

Azure Security

Infisical, an open source secrets management platform, a self hosted alternative to HashiCorp Vault and Doppler, secured on first boot.

Base
Hardened build
minimal ports, security patches applied at build time
Access
Unique credentials
generated on first boot, readable only by root
Verified
Boots working
services pass a health gate before release
Support
24/7, 365 days
by email and live chat, 24 hour response SLA

Overview

Infisical is an open source secrets management platform that teams use to store, organise, share and version application secrets and configuration across organisations, projects and environments. It offers folders, secret referencing, a full web UI, a REST API, a CLI and SDKs, so developers pull secrets into their apps and pipelines instead of scattering them in .env files, all run and owned inside their own cloud account rather than a hosted service.

Why the cloudimg image

cloudimg ships the free self hosted Infisical Community edition hardened and fully patched on Ubuntu 24.04, with a bundled PostgreSQL and Redis on the same VM. Because Infisical is a secrets vault, security is enforced from first boot: a unique KMS encryption key, JWT secret, database password and cache password are generated on each virtual machine so nothing sensitive is shared across images, a unique super administrator is pre seeded and open signup is disabled so no attacker can seize the instance before you sign in, and PostgreSQL and Redis are bound to the internal container network only. It comes with a paired deployment guide and 24/7 cloudimg support.

Common uses

  • Central secret storage for apps and services
  • Secrets in CI, CD and infrastructure pipelines
  • Team wide secret sharing and versioning

See it running

Real screenshots taken while testing this image against its deployment guide.

Infisical on Ubuntu 24.04 screenshot 1 Infisical on Ubuntu 24.04 screenshot 2 Infisical on Ubuntu 24.04 screenshot 3 Infisical on Ubuntu 24.04 screenshot 4