Now available in beta

Own your secrets.
No compromises.

Redshift is a decentralized secret manager built on Nostr. Client-side encryption, no vendor lock-in, censorship-resistant by design.

Start Building Read the Docs
terminal
$ redshift login
? Select authentication method
> NIP-07 Browser Extension (recommended)
Enter nsec manually
Use bunker URL
Connected as npub1abc...xyz
$ redshift run -- npm start
info Fetching secrets for my-app/production...
Injected 12 secrets
> Server running at http://localhost:3000_
Scroll to explore

Built for developers who value sovereignty

Redshift combines the ease of traditional secret managers with the security and freedom of decentralized infrastructure.

Client-Side Encryption

Your secrets never leave your device unencrypted. We use NIP-59 Gift Wrap for state-of-the-art encryption.

Doppler Compatible CLI

Familiar commands like redshift run. Drop-in replacement for your existing workflow.

Censorship Resistant

Built on Nostr protocol. Your secrets are distributed across relays - no single point of failure.

Your Keys, Your Data

Use your existing Nostr identity. Export anytime. No vendor lock-in, no account required.

Lightning Fast

Single binary distribution. No runtime dependencies. Start managing secrets in under 30 seconds.

Free Forever

Core functionality is completely free for individuals. Unlimited projects, unlimited secrets.

Get started in seconds

Install the CLI, authenticate with your Nostr identity, and start managing secrets immediately. No sign-up required.

1

Install the CLI

One command, all platforms supported.

2

Authenticate

Use NIP-07 extension or enter your nsec directly.

3

Manage secrets

Set, get, and inject secrets into your apps.

Quick install
$ curl -fsSL https://redshiftapp.com/install | sh
macOS Linux Windows (WSL)

Ready to own your secrets?

Join developers who trust Redshift for sovereign secret management. Free forever for individuals.

Get Started Free View Pricing