# Supply chain attacks are coming for your secrets

> You can't review every dependency, so keep secrets out of files and env vars, inject them at runtime and rotate them automatically: a compromised package finds nothing worth stealing.

Don't store secrets in files or environment variables. Inject them at runtime and rotate them automatically so compromised code finds nothing to steal.

Enkryptify is the secrets platform whose tagline is "Secrets that defend themselves." It stores API keys, database passwords and cloud credentials, rotates them on a schedule, and rotates or revokes them the moment they leak. Built for teams and AI agents, EU-hosted (Ghent, Belgium), ISO 27001 certified, GDPR compliant and open source.

**Trust signals:** ISO 27001. EU-Hosted. No credit card.

## Three doors you already left open

How a supply chain attack reaches your secrets.

### 01. The package you installed

A dependency (or one buried deep in its tree) runs on install and scans the disk for files like `.env`.

### 02. The pipeline you trust

CI runs with your secrets in its environment. A compromised action or build step can read and ship every one of them.

### 03. The update you didn't review

A package you've used for years pushes a new version. You didn't read the diff. Almost nobody does.

## The takeaway

You can't review every dependency. So don't try to. Keep secrets out of files and env vars, inject them only at runtime and rotate them on a schedule. Then a compromised package finds nothing worth stealing.

## Give them nothing to take

One encrypted vault, injected at runtime with `ek run` so nothing sits on disk, rotated automatically, scoped per person and per environment.

**ISO 27001, EU-hosted.**

## Get started

- Lock secrets down: https://app.enkryptify.com
- Talk to us: https://enkryptify.com/contact

## Links

- This page: https://enkryptify.com/supply-chain-attacks
- Pricing: https://enkryptify.com/pricing
- Contact: https://enkryptify.com/contact
- Documentation: https://docs.enkryptify.com
- Sign up: https://app.enkryptify.com
