infisical/infisical — reverse-engineered prompt

Build me a self hosted open source security platform like Infisical that feels polished and usable right away. I want a web dashboard, API, and CLI where a team can store app secrets and config by project and environment, manage versions, roll back changes, rotate secrets on a schedule, generate temporary credentials, and scan for leaked secrets before they end up in git. It should also let people sync secrets out to places like GitHub, Vercel, AWS, Terraform, and Kubernetes, and have an agent style way to inject secrets into apps without changing app code.

I also want certificate management included, with a private CA, support for external CAs, certificate issuing, renewal, revocation, syncs, and expiry alerts. Add a simple KMS area for encrypt and decrypt with managed keys, plus basic privileged access controls and auditing for sensitive systems.

Make it easy to run locally with Docker, include sensible auth and onboarding, and give me demo data so I can click around and test everything. If you need details, look up the current docs online and match the product direction closely.