1Password launches developer tools to improve user experience and productivity
New features will help developers code and deploy safer software to production with less friction
TORONTO, March 15, 2022 /PRNewswire/ — 1Password, the leader in human-centric security and privacy, today launched Developer Tools, a set of features created to help developers easily and securely generate, manage, and access secrets in workflows. development, starting with Git. Developer tools will help simplify complex processes and improve security practices to ensure data protection, without slowing down the development pipeline. It will also provide developers with secure access to the secrets they need wherever they are, whatever device they use.
“Developers encounter a great deal of complexity when building and deploying secure software, and it can often seem that security and convenience are irreconcilable,” said Akshay Bhargava, Chief Product Officer and GM of Emerging Solutions at 1Password. “1Password Developer Tools aims to make their lives easier by making complex security processes more convenient and making the secure thing the easier thing.”
The conclusions of ourHiding in plain sight‘ research report found that one in four (25%) employees of IT/DevOps companies have secrets in ten or more different locations and have shared them with colleagues through insecure channels, such as email and Slack . Additionally, 61% of projects are delayed due to mismanagement of secrets, and one in three IT/DevOps workers (36%) say they will share secrets over insecure channels to increase productivity and speed .
It can be tempting to cut corners for the sake of efficiency, but doing so can expose individuals and businesses to potential security vulnerabilities. In addition to protecting passwords and personal information, the developer tools will improve developer productivity, enabling rapid generation of SSH keys, transparent access to data through the command-line interface (CLI) using the biometric authentication and secure secret management in a single application. 1Password customers who tested these features during the beta had some positive feedback to share:
- “All the hassle of exchanging keys on different machines, adding and removing agent keys, entering passphrases from keys, is now just one biometric authentication This is how SSH should be, great!” – Marcel KerstenSoftware Developer at ComLine GmbH
- “The new 1Password CLI has saved our web development team time by synchronizing passwords and API keys much more securely than before. I highly recommend any web development team to consider use 1Password CLI tools to enhance security and efficiency.” – Craig HaselerProject Manager at TechSource
- “SSH key management is the 1Password feature I’ve been asking for for years! Thanks team!” – Christina Warrenlead cloud attorney
SSH key management
Developers can generate, store and use SSH keys with just a few clicks. To help avoid errors, 1Password for the browser automatic filling their public keys in popular sites, including GitHub, GitLab, bitbucket and Digital Ocean. Then, with a SSH agent, users can push code to GitHub and authenticate others SSH workflow in a terminal by simply scanning their fingerprint, increasing security with less effort. Developers no longer need to remember or type the key secret phrasesmanually copy keys to new devices or store files on their disk, avoiding weak encryption of SSH keys and other security risks.
CLI 2.0 with biometric unlock
With a redesign CLI (including improved syntax) and new biometric unlock capabilities, developers can quickly manage secrets, provision users, or automate workflows in a terminal without leaving their dev tools or manually entering passwords. Developer Tools also simplifies key management with CLI inject and execute commands, allowing developers to code with secret credentials that override the actual API keys in their vault at runtime.
Instead of Hard coding secrets or store them in unsecured plaintext, configuration files or spreadsheets, developers can manage and access their secrets in one place within their favorite tools and workflows. Storing secrets in encrypted vaults and as one of many default item types – including API credentials, AWS account, database, server or SSH key – will help prevent breaches caused by leaking secrets. Developer tools also facilitate collaboration by providing secure access to secrets within a team. For organizations looking to automate infrastructure secrets, these tools continue to rely on Secret Automation.
To learn more about the developer tools and feature sets included, visit our website. You can also visit our new Developer Documentation Portal for more information.
1Password’s human-centric approach to security keeps people safe, at work and at home. It’s the only solution designed entirely to allow anyone, regardless of technical skill level, to navigate the digital world without fear or friction. More than 100,000 companies, including IBM, Slack, Snowflake, Shopify, and Under Armor. 1Password protects the most sensitive information of millions of individuals and families around the world, helping consumers and businesses get more done in less time – with security and privacy as data. Learn more about 1Password.com.