Keeper adds zero-knowledge secrets manager to JetBrains

Keeper Security has launched an extension for JetBrains that embeds its secrets management tools inside the popular family of integrated development environments used by software engineers worldwide.

The new JetBrains extension connects directly with Keeper Vault. Developers can replace hardcoded credentials with references stored in the vault. They can also execute commands using injected credentials within the IDE.

Keeper said the extension aims to protect sensitive data such as credentials, API keys, tokens and certificates at all stages of software development. The company said it wants to reduce the risk that these secrets appear in plaintext, source code or unsecured channels.

JetBrains provides a suite of IDEs used for languages including Java, Kotlin, Python, JavaScript and C#. Security teams have become more focused on development environments as software supply chain attacks have increased in recent years.

Zero-knowledge design

Keeper said the JetBrains extension operates within a zero-knowledge architecture. All encryption and decryption takes place locally on the user's device. The company said the tool does not rely on third-party servers for secret handling.

The extension integrates with Keeper Secrets Manager and KeeperPAM, the company's privileged access management platform. Keeper said this brings privilege controls into developer workflows and aims to avoid disruption to day-to-day coding tasks.

Craig Lurey, Chief Technology Officer and Co-founder of Keeper Security, said software teams now place greater emphasis on security in development.

"Modern software development demands security at every layer," said Craig Lurey, CTO and Co-founder of Keeper Security. "Integrating Keeper into JetBrains ensures developers can apply secure-by-design principles from the start, eliminating hardcoded credentials and strengthening the integrity of the software supply chain."

The company positions the extension as an alternative to standalone plug-ins and external vaults. Many organisations have used external tools that sit outside the IDE, which can create friction for developers and gaps in audit trails.

Development features

The JetBrains extension provides several functions inside the IDE interface. Developers can save, retrieve and generate secrets from Keeper Vault. They can run applications with secrets that the extension injects at execution time rather than exposing them in configuration files or source code.

The tool includes logging and debug functions. Users can view logs and activate debug mode for operational insight into how secrets move through workflows. The extension supports Windows, macOS and Linux environments, reflecting the cross-platform use of JetBrains tools in enterprise and open-source projects.

Keeper said users can install the extension directly from within their JetBrains IDE. The company also provides documentation through its own technical resources.

Link with KeeperPAM

The JetBrains integration sits on top of the KeeperPAM platform. Keeper describes KeeperPAM as an AI-enabled, cloud-based privileged access management product. It combines password management, secrets storage, connection handling and endpoint controls within a single framework based on zero-trust and zero-knowledge principles.

KeeperPAM enforces least-privilege access for users. It supports automated credential rotation. The platform also gives administrators centralised visibility across users and devices, which can assist security teams with compliance and audit requirements.

By extending KeeperPAM into the JetBrains ecosystem, Keeper seeks stronger linkage between infrastructure security and day-to-day development activity. The extension focuses on reducing the attack surface that arises when developers embed secrets in code repositories, configuration files or continuous integration pipelines.

Competitive landscape

Secrets management has become a priority segment within the broader cybersecurity market. Providers in this area address risks from leaked keys and credentials, which attackers can use to move laterally across cloud services, databases and internal systems.

Developer-focused integrations are now common across major security platforms. Tools that plug into IDEs, code repositories and CI/CD systems aim to catch insecure patterns earlier in the lifecycle of an application.

Keeper Security is one of several vendors that connect privileged access controls directly with developer tools. The company's focus on zero-knowledge architecture means customer data is encrypted in a way that prevents Keeper itself from accessing the contents of stored secrets.

Keeper said it protects thousands of organisations and millions of users in more than 150 countries. The firm has appeared in analyst research on privileged access management and has expanded its portfolio from password management into broader infrastructure and endpoint security.

The company expects the JetBrains extension to support organisations that want tighter alignment between software creation and internal access policies. Keeper plans further development of KeeperPAM and its integrations as security teams extend zero-trust strategies into engineering workflows.