Relic

Changelog

Release notes, product improvements, and shipping updates from relic.

RSSBlog

v0.9.2

April 14, 2026
GitHub →

Patch Changes

  • 0d14cec: Isolate dev and production data paths: when DEV=true, all config/session/password/cache files use ~/.config/relic-dev/ and keychain service uses com.relic.tui.dev
  • 0d14cec: Fix editor not deleting secrets that were removed before saving

View release on GitHub

v0.9.1

April 12, 2026
GitHub →

Patch Changes

  • ace257c: Isolate dev and production data paths: when DEV=true, all config/session/password/cache files use ~/.config/relic-dev/ and keychain service uses com.relic.tui.dev

View release on GitHub

v0.9.0

April 12, 2026
GitHub →

Minor Changes

  • 1ff1b4c: Add relic version and relic upgrade commands, redesign CLI help output, and show version/plan in TUI status bar

View release on GitHub

v0.8.0

April 8, 2026
GitHub →

Minor Changes

  • Add machine identity with service accounts and OIDC trust policies.

    • Service accounts for passwordless CI/CD — single RELIC_SERVICE_TOKEN replaces RELIC_API_KEY + RELIC_PASSWORD
    • OIDC trust policies for GitHub Actions and GitLab CI — verify CI platform identity with --github org/repo or --gitlab group/project
    • Dashboard management — list, revoke service accounts, and configure OIDC policies from the web
    • CLI commandsrelic service-account create, list, revoke
    • MCP server — service token support and tool annotations (readOnlyHint, destructiveHint)
    • HKDF-SHA256 key derivation for service account tokens (no master password needed)
    • API key + master password in CI is now deprecated — use service accounts instead

View release on GitHub

v0.7.0

March 28, 2026
GitHub →

Minor Changes

  • 08bf115: Add built-in MCP server for AI assistants. Run relic mcp to start a stdio-based Model Context Protocol server that integrates with Cursor, Claude Code, Codex, Zed, OpenCode, and Claude Desktop.

    Available tools:

    • whoami — show the authenticated user
    • list-projects — list all projects with environments and folders
    • list-secrets — list secret key names, scopes, and types (never values)
    • get-current-project — read project config from relic.toml
    • run-with-secrets — run a command with secrets injected as environment variables

    Secret values are never exposed to the AI. The server inherits Relic's client-side encryption model — list-secrets returns names only, and run-with-secrets returns command output only.

View release on GitHub

v0.6.7

March 22, 2026
GitHub →

Patch Changes

  • Skip redundant keychain write to eliminate second macOS password prompt

View release on GitHub

v0.6.6

March 22, 2026
GitHub →

Deprecated

This release is deprecated and no longer supported.

Versions before v0.6.7 had packaging/release issues and may not work correctly. Please use v0.6.7 or newer instead.

Patch Changes

  • Fix TUI stdin Buffer crash, cache keychain password to avoid repeated macOS prompts, and resolve web migration issues

View release on GitHub

v0.6.5

March 22, 2026
GitHub →

Deprecated

This release is deprecated and no longer supported.

Versions before v0.6.7 had packaging/release issues and may not work correctly. Please use v0.6.7 or newer instead.

Patch Changes

  • Fix TUI crash in compiled binary caused by Buffer stdin data and Windows release packaging

View release on GitHub

v0.6.4

March 22, 2026
GitHub →

Deprecated

This release is deprecated and no longer supported.

Versions before v0.6.7 had packaging/release issues and may not work correctly. Please use v0.6.7 or newer instead.

Patch Changes

  • Enable TUI in compiled binary by patching OpenTUI native lib resolution and bundling libopentui alongside the binary

View release on GitHub

v0.6.3

March 22, 2026
GitHub →

Deprecated

This release is deprecated and no longer supported.

Versions before v0.6.7 had packaging/release issues and may not work correctly. Please use v0.6.7 or newer instead.

Patch Changes

  • Fix CLI binary compilation to bundle TUI and resolve argon2 native module error

View release on GitHub

v0.6.2

March 20, 2026
GitHub →

Deprecated

This release is deprecated and no longer supported.

Versions before v0.6.7 had packaging/release issues and may not work correctly. Please use v0.6.7 or newer instead.

Patch Changes

  • Replace native argon2 with hash-wasm (pure WASM) to fix compiled binary crashes. Same argon2id algorithm, identical output.

View release on GitHub

v0.6.1

March 20, 2026
GitHub →

Deprecated

This release is deprecated and no longer supported.

Versions before v0.6.7 had packaging/release issues and may not work correctly. Please use v0.6.7 or newer instead.

Patch Changes

  • Fix argon2 native addon crash by building standalone binaries on native platform runners instead of cross-compiling from Linux.

View release on GitHub

v0.6.0

March 19, 2026
GitHub →

Deprecated

This release is deprecated and no longer supported.

Versions before v0.6.7 had packaging/release issues and may not work correctly. Please use v0.6.7 or newer instead.

Minor Changes

  • 3b40735: Distribute compiled binaries via npm using platform-specific optional dependencies. Users can now install with npm install -g relic without needing Bun.

View release on GitHub

v0.5.0

March 18, 2026
GitHub →

Deprecated

This release is deprecated and no longer supported.

Versions before v0.6.7 had packaging/release issues and may not work correctly. Please use v0.6.7 or newer instead.

Minor Changes

  • d6fe498: Distribute compiled binaries via npm using platform-specific optional dependencies. Users can now install with npm install -g relic without needing Bun.

Patch Changes

  • 5b43d8f: Fix TUI onboarding by checking the stored master password against the authenticated account before entering the home screen, and route missing-key accounts back through password setup.

View release on GitHub

v0.4.4

March 17, 2026
GitHub →

Deprecated

This release is deprecated and no longer supported.

Versions before v0.6.7 had packaging/release issues and may not work correctly. Please use v0.6.7 or newer instead.

Patch Changes

  • 30a83d0: Fix TUI onboarding by checking the stored master password against the authenticated account before entering the home screen, and route missing-key accounts back through password setup.
  • 3fdbaf3: Update Relic pricing copy in the CLI/TUI to match the lower Pro plan and add-on costs.

View release on GitHub

v0.4.3

March 17, 2026
GitHub →

Deprecated

This release is deprecated and no longer supported.

Versions before v0.6.7 had packaging/release issues and may not work correctly. Please use v0.6.7 or newer instead.

Patch Changes

  • ca35e4f: Fix the bare CLI launch path by loading the TUI reliably in source runs and waiting for the async command action to finish.

View release on GitHub

v0.4.2

March 17, 2026
GitHub →

Deprecated

This release is deprecated and no longer supported.

Versions before v0.6.7 had packaging/release issues and may not work correctly. Please use v0.6.7 or newer instead.

Patch Changes

  • 4adddb3: Fix the published CLI runtime by bundling the TUI correctly, preserving async imports in the bundle, and normalizing bad localhost device auth URLs.

View release on GitHub

v0.4.1

March 17, 2026
GitHub →

Deprecated

This release is deprecated and no longer supported.

Versions before v0.6.7 had packaging/release issues and may not work correctly. Please use v0.6.7 or newer instead.

Patch Changes

  • ec58413: Fix npm publish by bundling workspace dependencies with bun build

View release on GitHub

v0.4.0

March 17, 2026
GitHub →

Deprecated

This release is deprecated and no longer supported.

Versions before v0.6.7 had packaging/release issues and may not work correctly. Please use v0.6.7 or newer instead.

The first public release of Relic - a zero-knowledge secret manager for developers.
Encrypt secrets on your device. Share them with your team. Never expose them to anyone else.

Install

curl

curl -fsSL https://relic.so/install | bash

Homebrew

brew install heycupola/tap/relic

npm

npm i -g relic

Bun

bun add -g relic

Or download standalone binaries from the assets below.

Highlights

  • End-to-end encrypted secret management with AES-256-GCM
  • relic run -e production - inject secrets as environment variables
  • Interactive TUI for browsing, creating, and organizing secrets
  • Scoped secrets (client, server, shared) with folder organization
  • Project collaboration - share encrypted secrets with your team
  • API keys for CI/CD automation
  • Cross-platform: macOS (ARM/x64), Linux (x64), Windows (x64)

Documentation

https://docs.relic.so

View release on GitHub