Polycrate CLI 0.28.0 released: Workspace Encryption, Kubernetes Operator, Endpoint Monitoring

With version 0.28.0, Polycrate receives its most comprehensive feature update yet. Three core areas are in focus: secure workspace encryption, an integrated Kubernetes Operator for automated cluster management, and real-time endpoint monitoring.

Workspace Encryption: Securely Manage Sensitive Data

Infrastructure-as-Code often means that sensitive information like credentials, API keys, or certificates end up in the repository. With the new Workspace Encryption, you can now securely store this data in an encrypted secrets.poly.

The encryption is based on age – a modern, auditable cryptographic standard. Your secrets are automatically decrypted when executing actions and are available in Ansible playbooks and Jinja2 templates.

Benefits: No more plaintext credentials in the Git repository, simple key management with polycrate workspace encrypt/decrypt, and seamless integration into existing workflows.

→ Workspace Encryption Documentation

Kubernetes Operator: Automatic Resource Discovery

The new integrated Kubernetes Operator transforms Polycrate into a powerful multi-cluster management tool. It automatically discovers resources in your cluster and synchronizes them with the Polycrate API:

• Endpoint Discovery: Ingress hosts are automatically captured as monitorable endpoints
• Certificate Discovery: Keep track of cert-manager certificates with expiration dates
• Backup Discovery: Centrally manage Velero backups
• K8sApp Discovery: Track deployed Polycrate Blocks as custom resources
• Artifact Discovery: Inventory all container images in the cluster

Benefits: Complete visibility across all clusters, no manual maintenance of endpoint lists, and automatic synchronization with the central API.

→ Operator Documentation

Endpoint Monitoring: Real-Time Availability

The Endpoint Monitoring continuously checks the availability of your services via HTTP and ICMP. The operator exports the results as Prometheus metrics, which can be collected by VictoriaMetrics or Prometheus.

Benefits: Immediate notification of outages, historical availability data, and integration into existing monitoring stacks.

→ Endpoint Monitoring Documentation

Additional Highlights

• MCP Server Integration: AI assistants like Cursor or Claude can interact directly with Polycrate
• Docker Native Mode: Direct Docker SDK access without container overhead
• Block Security Scanning: SBOM generation and vulnerability scanning with Trivy and Grype
• Hub Commands: Search and install blocks directly from PolyHub
• Git Integration: Integrated Git commands without external Git installation
• CLI Instance Tracking: Overview of all CLI installations per user

→ Complete Release Notes

Update Now

polycrate update 0.28.0

Or download the binaries directly from PolyHub.

Polycrate is the Infrastructure-as-Code tool by ayedo for declarative multi-cluster management. Learn more →