Skip to content

Commands

seeqret init

Initialize a new vault for a user in the current directory.

This will create a subdirectory named seeqret containing three key files and the database. If on windows the SEEQRET environment variable will be set to point to this folder.

You will be asked for username and email.

The vault can not be located inside a repository or on a network drive for security reasons.

seeqret add key

$❱ seeqret add key NAME "VALUE" --app "*" --env "*"

--app and --env defaults to "*".

Adding a key that already exists in the given app:env will fail by default. Pass --force to overwrite the existing value in place:

$❱ seeqret add key NAME "NEW_VALUE" --app myapp --env dev --force

seeqret list

List the contents of the vault.

seeqret add user

$❱ seeqret add user

Add a user to the database. You can only export secrets to known users.

You will be prompted for username (--username), email (--email), and the url (--url) where the user's public key is located.

TODO: add --pubkey flag.

seeqret users

List known users.

seeqret export TO

Create an export file that can be sent to "bob"

$❱ seeqret export bob

Create an export file for yourself (useful for moving the vault to a new computer/server).

$❱ seeqret export self

seeqret import FNAME

Import an export file. Will only work if you are the intended receipient.

seeqret load

Load exported secrets into the local vault.

$❱ seeqret load -u alice -f export.json
$❱ seeqret load -u alice -v '<exported-value>' -s command

If an incoming secret has the same app:env:key as one already in the vault, the existing value is overwritten with the imported one. This makes seeqret load safe to re-run when the sender ships an updated value for a secret you already have.

seeqret upgrade

Upgrade the database to the latest version.

Top level help

seeqret❱ seeqret --help
Usage: seeqret [OPTIONS] COMMAND [ARGS]...

Options:
  --help  Show this message and exit.

Commands:
  add          Add a new secret, key or user
  export       Export the vault to a user
  import-file  Import a vault from a file
  init         Initialize a new vault
  list         List the contents of the vault
  upgrade      Upgrade the database to the latest version
  users        List the users in the vault

add has two sub-commands

seeqret❱ seeqret add --help                                                                                                                                                                              seeqret   
Usage: seeqret add [OPTIONS] COMMAND [ARGS]...

  Add a new secret, key or user

Options:
  --help  Show this message and exit.

Commands:
  key   Add a new key/value pair.
  user  Add a new user to the vault from a public key.