Roadmap

Public roadmap for Secryn.

Secryn Public Roadmap

Secryn is a self-hosted secrets, keys, and certificates management platform designed around clarity, ownership, and operational safety.
This roadmap outlines where the product is headed and what we’re building next.

This roadmap reflects our current direction and may evolve based on user feedback and real-world usage.

Now — v1.x (Available Today)

Secryn v1 provides a complete and production-ready foundation for managing sensitive infrastructure data.

Core Capabilities

  • Projects and vaults with optional restricted access
  • Secrets with full version history and restore
  • Cryptographic keys (RSA, EC, Ed25519)
  • Certificates (generate or upload)
  • Public URLs for keys and certificates
  • Role-based access control (RBAC)
  • Project-level user management
  • Access keys for API and automation usage

Operations & Observability

  • Audit logs (who changed what)
  • Request logs (API, MCP, public access)
  • User logs (authentication and sessions)
  • MCP logs
  • Export of all logs (CSV / JSON)
  • Manual and scheduled backups
  • Restore from encrypted backups

Automation & Integration

  • REST API for vault and resource access
  • MCP server for agent-based workflows
  • CI/CD-friendly access patterns
  • Installation wizard for self-hosted deployments

Next — v1.1 to v1.3

Automation, safety, and non-human access

These releases focus on improving automation and reducing operational risk.

Planned additions:

  • Service / machine identities (non-human users)
  • Scoped access keys with reduced blast radius
  • Time-bound access grants (temporary access)
  • Read-only secret sync targets (files, containers)
  • Improved automation-focused audit visibility

Soon — v1.4 to v1.7

Lifecycle management and governance

These releases extend Secryn from secure storage into operational security.

Planned additions:

  • Secret rotation tracking and reminders
  • Certificate lifecycle dashboards
  • Certificate expiry alerts and renewal reminders
  • Enhanced reporting views for admins
  • Improved backup visibility and retention controls

Future — v2.x

Policy-driven security and intelligent workflows

Long-term improvements focus on proactive security and automation.

Exploratory areas:

  • Dynamic secrets (selective, opinionated support)
  • Lightweight policy engine (human-readable rules)
  • Approval-based access workflows
  • Event-driven MCP automations
  • Advanced compliance reporting

Guiding Principles

  • Self-hosted first
  • No unnecessary complexity
  • Clear ownership and auditability
  • Secure by default
  • Automation without losing control