The credentials package

[Tags:library, test]

This library provides a unified interface for managing secure, shared credentials. It uses Amazon Key Management Service (KMS) for master key management, locally encrypts and decrypts secrets, which are then stored in any of the supported storage backends. (Currently DynamoDB.)

The use-case is to avoid storing sensitive information such as passwords and connection strings in plaintext in places such as source control or on developers' machines. Instead you can securely administer and distribute secrets, leveraging Amazon's IAM policies for access control and permissions to ensure limited read-only permissions from production/deployed hosts. You can embed this library into projects such as web applications to securely retrieve sensitive information such as database passwords or private keys on startup.

A complementary CLI for management of credentials can be installed via credentials-cli.

You can read more about other use-cases and prerequisites here.


Versions 0.0.1,, 0.0.2
Dependencies aeson (>=0.8), amazonka (>=1.3.7), amazonka-core (>=1.3.7), amazonka-dynamodb (>=1.3.7), amazonka-kms (>=1.3.7), base (>=4.7 && <5), bytestring (>=0.10), conduit (>=1.2), cryptonite (>=0.10), exceptions (>=0.6), lens (>=4.4), memory (>=0.11), retry (>=, semigroups (>=0.6), text (>=0.11), time (>=1.4), transformers (>=0.3), unordered-containers (>=0.2.5) [details]
License OtherLicense
Copyright Copyright (c) 2015-2016 Brendan Hay
Author Brendan Hay
Maintainer Brendan Hay <>
Category Network, AWS, Security
Home page
Source repository head: git clone git://
Uploaded Tue Aug 9 15:10:37 UTC 2016 by BrendanHay
Distributions NixOS:0.0.2
Downloads 142 total (12 in the last 30 days)
0 []
Status Docs uploaded by user [build log]
Last success reported on 2016-08-09 [all 1 reports]
Hackage Matrix CI


  • Credentials



Maintainer's Corner

For package maintainers and hackage trustees