Blog post 3 min read

Infisical Update December 2023

Published on
Blog image

Our team in known to be lightning-fast! Still, even for our standards, in the last 3 months of 2023, we released an incredible amount of new features, bug fixes, performance improvements, and UX updates. Want to find out more? Read this blog till the end.

Machine Identities + Universal Auth

Infisical Universal Auth

With Machine Identities, you are now able to create custom entities to represent a workload or an application that requires access to your Infisical instance – think of it as an IAM user in AWS or service account in Google Cloud Platform (GCP). Such identities can authenticate into your Infisical instance using Universal Auth.

For a long time, Infisical offered a possibility of creating custom roles for users within organizations and projects – these roles provided a very straightforward and highly granular way to restrict actions and resources that are available to users. With Universal Auth, it is now possible to assign the same roles to Machine Identities to programmatically interact with Infisical.

In addition, Universal Auth supports adding restrictions for frequency, amount, IP-range, and timeline over which a certain token can be used.

SDKs for Python, Node, and Java

In December, we announced our cross-language SDKs – redevelopped from scratch. It featured a completely new Java SDK. As well as significant improvements to Python and Node SDKs. You are now able to authenticate into all of these SDKs using Machine Identities.

For the curious, the base SDK is written in Rust, and you can find the repository for it here.

Infisical Agent

Infisical Agent

Infisical Agent is a client daemon that simplifies the adoption of Infisical by providing a more scalable and user-friendly approach for applications to interact with Infisical. It eliminates the need to modify application logic by enabling clients to decide how they want their secrets rendered through the use of templates.

Read how it works

No-code Rotation for PostgreSQL/CockroachDB, MySQL/MariaDB, and SendGrid

Infisical Secret Rotation

Infisical now offers automatic rotaion for SendGrid, PostgreSQL/CockroachDB, and MySQL/MariaDB that you can set up in the Infisical Web UI with just a few clicks. After that, your API keys and access tokens will automatically rotate on a pre-specified schedule.

Check it out

Better self-hosting experience

Self-hosting experience has been made significantly better and easier. In particular, we have reduced required JWT configuration from 6 secrets to just 1, added docs with 5+ more ways of self-hosting Infisical, and more!

Find documentation here

Secret Reminders

Infisical Secret Reminders

Every now and then, our users need to remember to either manually rotate a secret or process it in a certain way. You can now do so with recurring secret reminders.

Ansible Plugin

Infisical Ansible Plugin

We now have a native Ansible plugin for interacting with Infisical (e.g., fetching secrets from your Infisical Vault into Ansible Playbooks). Our Terraform Provider has also gotten better!

GitLab SSO in FOSS

This one is very simple – you can now use authentication with GitLab in both Infisical Cloud and when Infisical On-prem – available completely free to all of our users!

Learn hot to set it up

Updated API and CLI

Last but not least, our API and CLI have gotten even better! You can now use Machine Identities with Infisical API (CLI coming soon!), and perform more actions with the CLI (e.g., creating folders).

We are hiring


That's it. If you have any questions, you can always ask those on Slack. If you have any features requests, you're welcome to open a GitHub issues.

Stay tuned for more awesome updates next month!

Starting with Infisical is simple, fast, and free.
Full Infisical Logo


Secret Management

Secret Scanning





Infisical vs Vault




Open Source Friends


Company Handbook

Trust Center


Terms of Service

Privacy Policy


Service Level Agreement


Team Email