Keeper Security has introduced a new Visual Studio Code (VS Code) extension that integrates enterprise-grade secrets management directly into developers’ coding environments. This tool helps protect sensitive data, enhances security compliance, and accelerates development workflows with zero-trust principles.
SINGAPORE, 18 NOVEMBER 2025 – Keeper Security, a leading provider of zero-trust and zero-knowledge cybersecurity software, has announced the release of its Visual Studio Code (VS Code) extension. This new tool brings Keeper’s enterprise-grade secrets management directly into developers’ coding environments, allowing for secure management of credentials, API keys, tokens, and other sensitive data throughout the software development lifecycle.
The extension expands the capabilities of KeeperPAM®, the company’s privileged access management platform, into the developer ecosystem. By integrating Keeper’s solution into VS Code, developers can securely save, retrieve, and generate secrets stored in Keeper Vault without leaving their coding environment or exposing sensitive information in configuration files. This seamless integration supports both Keeper Commander CLI and Keeper Secrets Manager, offering flexibility for organizations to tailor the solution to their specific security infrastructure.
“Developers play a critical role in securing the software supply chain,” said Craig Lurey, CTO and Co-founder of Keeper Security. “By embedding zero-trust principles directly into their workflows with our VS Code extension, developers can ensure they’re protecting sensitive data, maintaining compliance, and continuing to innovate without compromise.”
The Keeper VS Code extension helps mitigate risks associated with mishandled secrets, such as hardcoding credentials into source code or storing them in plaintext. These practices often lead to vulnerabilities that attackers can exploit to breach systems or steal data. By integrating Keeper’s solution directly into the development environment, the extension helps prevent accidental exposure, reduce secret sprawl, and maintain compliance with zero-trust and least-privilege security frameworks.
Key features of the new Keeper VS Code extension include:
- Secrets Management: Save, retrieve, and generate secrets directly from Keeper Vault.
- Flexible Usage: Operate in Keeper Commander CLI or Keeper Secrets Manager mode.
- Secret Detection: Automatically identify and remediate hardcoded credentials, such as API keys and tokens.
- Secure Command Execution: Run applications with securely injected secrets from Keeper Vault.
- Logging and Debug Tools: View logs and enable debugging for full operational transparency.
The extension is now available on both the Visual Studio Marketplace and Open VSX Registry, ensuring compatibility with VS Code and its derivatives, such as Cursor. This launch reflects Keeper Security’s commitment to providing unified solutions that evolve with the needs of modern enterprises and development teams.
Keeper Secrets Manager, a key component of KeeperPAM®, is built on a zero-trust, zero-knowledge architecture. It combines enterprise password management, secrets and connection management, and endpoint privilege management into a single platform. The platform’s ability to automate credential rotation and enforce least-privilege access policies significantly strengthens security while streamlining workflows for developers. KeeperPAM empowers organizations to deploy software securely and efficiently, with full visibility and audit trails to maintain compliance.
