Infisical: The Open Source Security Stack
Key Takeaways
Infisical, an open-source security stack, helps manage sensitive credentials and secrets across infrastructure, with a simple deployment process and a growing developer community, having been adopted by large enterprises and planning to expand its features to include AI security.
Full Transcript
Today I'm excited to welcome Inysysical who just announced your series A led by Eladgill. So we have here Vlad Mul and Tony. So tell us what Inysysical is. We're an open-source secrets mention platform. So we help developers across all types of companies you know from the fastest growing AI companies like Hugging Face to very large Fortune 100 enterprises like LG. We help them manage sensitive credentials across their infrastructure. um and yeah solving lots of very complicated problems in the security and infrastructure spaces. What are these secrets you manage and how many are you managing? Yeah, I mean you can think about secrets anything that's sensitive for developer infrastructure. So anything from database access tokens to certificates to API keys to any types of credentials that developers have to manage and at this point it's billions and and you know north of 10 billion per month uh that we are processing at Infysical. Let's go back to the founding origin story of Inysysical. How did all the three of you meet and decide to be co-founders? Sure. Uh so we all met at Cornell uh throughout college essentially. We were hacking together different side projects over the years um ultimately which culminated in physical and you know this isn't our first rodeo working on something um we had worked on a different project uh before but it was just only a matter of time uh in terms of figuring out you know what is it uh to build next and that became in physical I remember you guys had actually applied with that previous idea and didn't get into YC on the first try uh but you kept working on it and found another idea which became in physical and God in in your second try. And how did you land on this new idea? It's a bit of a kind of esoteric idea for new college grads. Yeah, I can I can speak a little bit about it. Um, so yeah, Tony mentioned we worked on like a number of uh different things before in physical and one of the common themes that uh they all had was the ENV file and uh this is something we've seen kind of time and time again and uh it it's you know it's it's difficult to kind of pass around sensitive information even with a smaller team. Um and so we wanted to go out and solve thev file. How do you make sure that things are syncing between teammates? And so that was really the core focus when we started because you were hacking all all these projects and you kept having to add all these secrets somewhere. Yeah, exactly. And and that's kind of how we started uh in physical and so we started off with this uh problem set which obviously evolved into a ton of other things but that was kind of the start of it. when you had applied to the batch with this idea, you were actually closed source and then during the batch you decided to open source it and that became a key advantage from you. You went from zero to 5,000 GitHub stars in the span of just like less than two three months and now two years later you're at 18,000 and over GitHub stars. Yeah. Uh I mean even during the NYC interview one of the questions you asked us back then was like you know why are you not open source and and I think at that point you know we we were building in physical it was closed source which is kind of like a simpler SAS tool that developers could sign up for and we got into IC but then eventually growth kind of flattened out and you know it wasn't really growing that much and so we were talking to to you and and you know in general like what we we should do and the problems that we kept hearing from people right is that they want to have more trust and they want to manage these secrets. on their own infrastructure. And so for us kind of like going open source look kind of like in the retrospect actually is a very logical decision because you know people feel much more comfortable about it and and they're able to satisfy a lot of different compliance and security requirements that these enterprises have. I think the wildest thing I remember during the batch you actually got a lot of very big enterprises using your product because of this. And the crazy thing is that just couple months later, one of those users ended up becoming a big customer and it's like a Fortune50 company. Tell us about how that happened. Exactly. I mean a lot of people who find us, they eventually, you know, at this point we have like very big developer mind share and developer community around in physical, right? So a lot of people who find us, they, you know, might have been self-hosting in physical for a long time. Maybe in their home labs, right? Like maybe they're using it for some weekend projects. maybe they are starting to adopt it within their company because it's easy, right? And for self-hosted solutions, you can just do it very easily. And so with this company specifically, right, it was like some people who actually used in physical uh at at the old company and then they switched to to a new enterprise and they also introduced in physical there and it's also a very big channel for how developers and companies adopt in physical too. Very cool. And that got you to close this Fortune50 company. You also got this large semiconductor company using your same deal, right? Yeah, I mean at this point it's you know any industry you name it, banking, uh healthcare, government, defense. So anything and and it's kind of like crazy to think that you know at this point in physical security is a very non-trivial part of world's infrastructure out there. So there's an interesting thing about your company is that at the surface people could think that you're going after a very competitive space because as you started the company there were exist existing solutions like Hashi Corp vault or AWS secrets management but you guys did something special because you closed some large deals like tell us about this big contract you got going on this is a different one. Yeah, I mean there's a lot of different contracts. One that comes to mind is a big defense federal defense company with north of 20,000 employees. They decided to go with in physical over some of the existing solutions that you mentioned. Um, and when I think about why they chose in physical, I think about our core product philosophy, which is to make security more accessible to all developers and all engineers at large. And that's something that other existing competition in the market hasn't done really well. Um, we exist in a market with a lot of legacy tooling in place, a lot of very cumbersome technology that takes in the order of, you know, I think the average uh deployment time for this type of tooling is in the order of 21 months. That's crazy. Um and so when you can reduce your deployment time from 21 months down to just a few months or even a few weeks um becomes a magical experience for a lot of these customers and you know that's why they turn to Infysical over other solutions. So so what's the tech underneath my duel? Yeah. So uh in physical is really uh interesting because it needs to be it needs to really accommodate a lot of different environments and this is different from uh a lot of other products that that are on the market right we need to uh be as simple as possible to deploy in on premise right that's where a lot of our largest customers are um and uh unlike other products right you're really only thinking about getting the feature out to production here every time we think about you know making a new feature, a new project that we're working on, it's it's always how do we uh how is the self-hosting experience going to be for customers? And uh unlike other secrets management tooling that are on the on the market, um we really really care a lot about how the solution is uh going to be deployed on prem and that comes with a lot of interesting engineering challenges, right? And so uh one of the common challenges with uh you know secrets manage other secrets management tooling is that they treat the application um as a database and so that makes it really difficult to scale up um in high availability settings right and so in physical is actually stateless and so this is a big difference um is because you can let's say that you you want to scale up your fleet right uh within physical you can essentially just replicate across because all the containers are stateless versus uh other secrets management tooling where you actually need to make sure the data is persistent on each of these new replicas before you can even think about scaling up. And so there's a lot of overhead uh that that comes up. That's cool. So how are you guys feeling about in physical in the future? Super optimistic. I will say I think when I think about in physical in the future there's really two things. Uh the first thing is to continue forward with that mission of making security more accessible to all developers. I think what started as a open-source secrets management platform is now becoming much more. It is now launching into from secrets management into certificate management within physical PKI into SSH access with our new product line in physical SSH into encryption as a service within physical KMS. You know, we are working our way towards from becoming just this secrets management platform into a much fuller uh open-source security infrastructure platform. And the second thing that I think is really interesting is to think about uh this AI world that's coming up in front of us and what in physical's role essentially is in that future world. Um and so I think in the past we've mainly been thinking about users and machines accessing infrastructure and the tooling built around that. But what's interesting here is now we almost have a new kind of actor and this is in the form of an AI agent which also needs access to resources and even needs to be able to trust and talk to each other as well. So I feel like there is a future kind of uh world here where in physical will secure access uh for AI agents to infrastructure. So this is really cool future where you're going after lots of stuff to build. So tell us a bit about the kinds of roles you're hiring for. Yeah, I mean we are hiring across 15 plus different positions right now spanning through engineering to go to market as well. So anything from front end and full stack engineers over into account executives and also even on the operational side as well in terms of recruiters too um and even devril as well. Um, so really there's a lot of different uh positions uh to fill. Okay, very cool guys. So, thank you so much for coming and joining us. That's it. Thank you. Thank you.
Original Description
Vlad Matsiiako, Tony Dang, and Maidul Islam started Infisical with a belief that secrets—like API keys and credentials—are the glue that holds modern software together. But managing them was still a mess: clunky tools, brittle workflows, and security that broke under pressure. So they built something better.
What started as a small open source project at Cornell became a go-to secrets management platform for developers and large enterprises alike. After open-sourcing the product during YC’s Winter 2023 batch, traction took off. Now Infisical is trusted by companies like Hugging Face, LG, and Lucid, and has been downloaded more than 40 million times.
Today, they announced a $16 million Series A led by Elad Gil, with participation from Y Combinator, Gradient, Dynamic Fund, and the CEOs of Datadog, Samsara, and Valor. Infisical is cash-flow positive, growing fast, and expanding beyond secrets into a full open-source security stack for the AI era.
YC Partner Diana Hu recently sat down with Infisical's founders to talk about how they got here, their founding story, and the kind of company they are building.
Learn more about Infisical at https://infisical.com.
Apply to Y Combinator: https://ycombinator.com/apply
Chapters
00:00 - Introduction
00:10 - What is Infisical?
00:33 - Managing Secrets at Scale
00:58 - Origin Story
02:43 - From Closed Source to Open Source
03:51 - Landing Big Contracts
05:17 - Competing in a Crowded Market
06:39 - Technical Challenges and Innovations
08:15 - Future Vision and AI Integration
09:48 - Hiring and Opportunities
Watch on YouTube ↗
(saves to browser)
Sign in to unlock AI tutor explanation · ⚡30
Playlist
Uploads from YC Root Access · YC Root Access · 0 of 60
← Previous
Next →
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
Lecture 1 - How to Start a Startup (Sam Altman, Dustin Moskovitz)
YC Root Access
Lecture 2 - Team and Execution (Sam Altman)
YC Root Access
Lecture 3 - Before the Startup (Paul Graham)
YC Root Access
Lecture 4 - Building Product, Talking to Users, and Growing (Adora Cheung)
YC Root Access
Lecture 5 - Competition is for Losers (Peter Thiel)
YC Root Access
Lecture 6 - Growth (Alex Schultz)
YC Root Access
Lecture 7 - How to Build Products Users Love (Kevin Hale)
YC Root Access
Lecture 8 - How to Get Started, Doing Things that Don't Scale, Press
YC Root Access
Lecture 9 - How to Raise Money (Marc Andreessen, Ron Conway, Parker Conrad)
YC Root Access
Lecture 10 - Culture (Brian Chesky, Alfred Lin)
YC Root Access
Lecture 11 - Hiring and Culture, Part 2 (Patrick and John Collison, Ben Silbermann)
YC Root Access
Lecture 12 - Building for the Enterprise (Aaron Levie)
YC Root Access
Lecture 13 - How to be a Great Founder (Reid Hoffman)
YC Root Access
Lecture 14 - How to Operate (Keith Rabois)
YC Root Access
Lecture 15 - How to Manage (Ben Horowitz)
YC Root Access
Lecture 16 - How to Run a User Interview (Emmett Shear)
YC Root Access
Lecture 17 - How to Design Hardware Products (Hosain Rahman)
YC Root Access
Lecture 18 - Legal and Accounting Basics for Startups (Kirsty Nathoo, Carolynn Levy)
YC Root Access
Lecture 19 - Sales and Marketing; How to Talk to Investors (Tyler Bosmeny; YC Partners)
YC Root Access
Lecture 20 - Later-stage Advice (Sam Altman)
YC Root Access
YC's Summer 2022 Startup Job Expo - Pitches from 30 YC founders & find your next startup
YC Root Access
AMA with YC: Job Searching During an Economic Downturn (Event Summary)
YC Root Access
YC Startup Job Hunt Bootcamp, September 14, 2022
YC Root Access
YC Startup Talks: Understanding Equity with Jordan Gonen, CEO & Co-founder of Compound
YC Root Access
YC Tech Talks: Climate Tech with Charge Robotics (S21), Wright Electric (W17) and Impossible Mining
YC Root Access
YC Women in Tech: Breaking Into Product
YC Root Access
YC Ultimate Job Guide: Startup Stages
YC Root Access
Becoming a founding engineer at a YC startup
YC Root Access
3 tips for finding a job on YC's Work at a Startup
YC Root Access
YC Tech Talks: Defi and Scalability with Nemil at Coinbase (S12)
YC Root Access
YC Tech Talks: Designing Game Characters with Deep Learning, from Cory Li at Spellbrush (W18)
YC Root Access
YC Tech Talks: Designing from Day One: Artists as Founders with Multiverse (S20)
YC Root Access
YC Tech Talks: MMOs in the Instagram Era: Highrise (S18)
YC Root Access
Becoming a founding engineer at a YC startup - Finley short
YC Root Access
Why become a product engineer? -- with Volley (YC W18) & Luminai (YC S20)
YC Root Access
Y Combinator Go-To-Market Jobs Expo, 2022
YC Root Access
Fireside Chat with Tanay Tandon of Athelas
YC Root Access
Fireside Chat with Ivana Djuretic of Asher Bio
YC Root Access
The Past and Future of YC Bio
YC Root Access
What VCs Look for When Investing in Bio and Healthcare
YC Root Access
Finding your next role: Tips from YC's Talent team
YC Root Access
YC Startup Talks: Startup Equity with Compound (YC S19)
YC Root Access
YC Tech Talks: Machine Learning
YC Root Access
FTC Chair Lina Khan at Y Combinator
YC Root Access
AI, Startups, & Competition: Shaping California’s Tech Future
YC Root Access
Y Combinator Little Tech Competition Summit - Washington, DC
YC Root Access
The Exit Interview with Jonathan Kanter
YC Root Access
Founder Demo: Daniel Vega, Co-Founder & CTO of Inversion Semiconductor
YC Root Access
Wither Realignment?
YC Root Access
Founder Demo: Cyril Gorrla, Co-founder & CEO of CTGT
YC Root Access
Founder Demo: Newsha Ghaeli, Co-founder & President of Biobot Analytics
YC Root Access
Fireside with FTC Chairman Andrew Ferguson
YC Root Access
Fireside with Boom Founder & CEO Blake Scholl
YC Root Access
Founder Demo: AJ Forsythe & Jordan Barnes of Coop
YC Root Access
Are Techno Optimism and Populism Incompatible?
YC Root Access
Founder Demo: Trevor Mckendrick, Co-founder & CEO of Seis
YC Root Access
Founder Demo: Matt Bolous, Head of Policy & Safety of Imbue
YC Root Access
Fireside with Teresa Ribiera, EVP, European Commission for Clean, Just & Competitive Transition
YC Root Access
Fireside with Epic Games Founder & CEO Tim Sweeney
YC Root Access
Fireside with Former FTC Chair Lina Khan
YC Root Access
More on: Startup Basics
View skill →Related Reads
📰
📰
📰
📰
Tencent moves to sell up to $1.6B of its Kuaishou stake
The Next Web AI
Sell BEFORE You Build. I Learned It the Expensive Way.
Medium · AI
Sell BEFORE You Build. I Learned It the Expensive Way.
Medium · Startup
My Money-Making Journey Didn't Start With Success—It Started With Doubt
Medium · Startup
Chapters (10)
Introduction
0:10
What is Infisical?
0:33
Managing Secrets at Scale
0:58
Origin Story
2:43
From Closed Source to Open Source
3:51
Landing Big Contracts
5:17
Competing in a Crowded Market
6:39
Technical Challenges and Innovations
8:15
Future Vision and AI Integration
9:48
Hiring and Opportunities
🎓
Tutor Explanation
DeepCamp AI