// the find
hashicorp/vault-guides
Example usage of HashiCorp Vault secrets management
A collection of example scripts, Terraform configs, and shell guides for HashiCorp Vault — covering secrets engines, transit encryption, SSH OTP/CA, and cloud auth methods. It exists to support the official Vault learning site, not as a standalone library. If you're learning Vault, this is where the tutorial code lives.
The Terraform provisioning examples for AWS are actually usable as starting points, not just toy configs. The SSH OTP and CA examples are detailed enough to follow end-to-end, which is rare — most Vault tutorials gloss over the SSH engine. HCP Vault (managed Vault) examples are present and relatively current, which is useful as self-hosted Vault setups become less common. The gitignore.tf pattern for local backend config is a small but genuinely handy convention worth stealing.
The repo committed a full GitHub Actions runner binary tree — hundreds of DLLs, native libs, even the tar.gz — directly into version control under ecosystem/vault-github-action/actions-runner/. That's a red flag for hygiene and means git clone pulls megabytes of binary that nobody needs. A lot of the shell examples target old Vault versions and the learn.hashicorp.com links it references have been redirected or killed since HashiCorp moved docs to developer.hashicorp.com. There's no automated testing — you can't verify any of this still works without running it by hand. Star count is 1k despite being an official HashiCorp repo, which tracks: people use the docs site, not this repo directly.