DepVault Documentation
DepVault is a platform that analyzes dependencies, detects vulnerabilities, and securely stores environment variables and secret files across any tech stack.
What is DepVault?
DepVault provides three core tools in one unified platform:
- Dependency Analysis — Upload dependency files from 9+ ecosystems (Node.js, Python, .NET, Rust, Go, Java, Kotlin, Ruby, PHP) and get instant reports on outdated packages, known CVEs, and license conflicts.
- Encrypted Vault — Store environment variables and secret files with AES-256-GCM encryption at rest. Manage multiple environments (development, staging, production) with diff views and version history.
- Secret Sharing & CI/CD — Share secrets via one-time encrypted links, inject secrets into CI/CD pipelines with scoped tokens, and scan git repos for accidentally committed credentials.
Quick Links
- Getting Started — Create your account, set up your first project, and run your first scan.
- Guides — Feature walkthroughs for the web dashboard and CLI.
- CLI Reference — Install and configure the DepVault CLI.
Platform Overview
| Interface | Description |
|---|---|
| Web Dashboard | Full-featured web app for managing projects, secrets, and analysis |
| CLI | Native AOT binary for terminal access and CI/CD pipelines |
Supported Ecosystems
| Ecosystem | Files |
|---|---|
| Node.js | package.json, |
| Python | requirements.txt, pyproject.toml, Pipfile |
| .NET | *.csproj, Directory.Packages.props |
| Rust | Cargo.toml |
| Go | go.mod |
| Java | pom.xml |
| Kotlin | build.gradle.kts, libs.versions.toml |
| Ruby | Gemfile |
| PHP | composer.json |
Supported Config Formats
DepVault can import, export, and convert between:
.env(dotenv)appsettings.json(ASP.NET)secrets.yaml(Kubernetes)config.toml(TOML)