OpenBao
Open-source secrets management forked from HashiCorp Vault under the Linux Foundation
Overview
OpenBao is an open-source, community-driven fork of HashiCorp Vault, created after Vault moved to the BSL license. Hosted under the Linux Foundation, it manages, stores, and distributes secrets, certificates, and encryption keys with dynamic secrets, leasing/renewal, and a rich plugin ecosystem. It remains API-compatible with much of Vault's tooling.
Where it falls short of HashiCorp Vault
- Younger project with a smaller ecosystem than HashiCorp Vault; some Vault Enterprise features and integrations are missing
- No first-party managed/cloud offering equivalent to HCP Vault
- Operating a production HA cluster (storage backend, unsealing, auto-unseal) requires real expertise
- Documentation and third-party tutorials still maturing relative to Vault's
We list the gaps honestly so you can decide if the trade-off is worth owning your data.
Tags
Claim this listing to keep it accurate, add a deploy template, or feature it on relevant pages.
Embed the OpenBao difficulty badge in your README — it links back here.
[](https://openreplace.com/openbao)Similar open-source projects
Other self-hostable tools in the same space worth comparing.
Lightweight Bitwarden-compatible server written in Rust, perfect for self-hosting
Encrypt files in Git with KMS/age/PGP — secrets management without a server
Open-source secrets management platform for developers and teams
Official open-source server for the Bitwarden password manager