Vault Release 18.0.0

Released on May 13, 2026 (Early Access)

New Feature

Keeper is redefining how users and teams organize, share and protect their most sensitive records. With the introduction of Nested Share Subfolders with Role-Based Folder Permissions, we’ve rebuilt the vault’s folder, sharing and permissions model from the ground up, delivering a more flexible and scalable experience for every user and team.

During this transition, the new Nested Share Subfolder system will exist alongside the existing Classic folder system and permission model, with two distinct folder icons to help users easily differentiate between them.

This feature is currently available by invitation only. To request access or learn more, please contact your Keeper representative or visit keepersecurity.com/contact.

Organize records and folders up to five levels deep, with no flat structures or workarounds — just logical organization that scales with your team.

Permissions flow down automatically from a parent folder through all nested subfolders and records within it, so broad access policies apply consistently without manual effort

Role-Based Folder Permissions give administrators granular control over exactly who can view, edit, share and manage content at every level of the folder hierarchy — whether you're an individual user, managing a small team, or operating across a global enterprise.

Creating Folders

Clicking on Create New > Folder creates a folder - no need to decide between a regular or shared folder. If you want to share a folder, click Share.

Rollout Approach

The Nested Share Subfolders feature was a rebuild from the ground up - which includes advanced encryption upgrades in addition to functional upgrades. Therefore, the Classic and Nested Share Subfolder systems must be separated in the vault. When creating a new Folder, you will have the option to use the Classic permission model which will limit sharing to basic access levels and can be used for compatibility with older workflows. Existing workflows remain unaffected while organizations adopt the new experience at their own pace. In the future, we plan to support conversion between the two systems — for now, they remain separate.

Key Features

Hierarchical organization up to five levels deep — Create folders and subfolders with independent sharing configurations at each level, enabling logical organization that scales with your team structure.
Role-based folder permissions — Assign granular permissions at both the folder and record level, giving every user exactly the access their role requires. Permissions can be applied through inheritance (flowing automatically from parent to child folders), direct folder assignment, or direct record assignment.
Permission inheritance with targeted overrides — Broad access policies apply consistently across a folder structure, with the flexibility to make precise exceptions at any level. When multiple permission paths apply, precedence rules ensure the most specific assignment wins — record-level permissions override folder-level ones, which override inherited permissions from a parent.
Access management controls — Share managers can add users and teams, perform bulk permission changes, and set access expiration dates or revoke access entirely at the folder or record level. Users cannot grant permissions higher than their own access level.

Roadmap

The Nested Share Subfolder feature is available through a "feature flag" that can be enabled by the Keeper support team. Over the coming weeks, we plan to gather customer feedback and roll out critical capabilities which include:

Vault Transfer Policy
Deletion and Restore
Moving records
Import
Migration from Classic shared folders
iOS, Android, Browser Extension end-user application support
Secrets Manager SDKs and integrations

Commander CLI

The Nested Share Subfolder capabilities are supported with Commander CLI with the new "KeeperDrive Commands" that have the prefix of kd-. The list of commands is below.

KeeperDrive Commands
    kd-get                            Get details of a KeeperDrive record or folder
    kd-list                           List Keeper Drive folders and records
    kd-ln                             Link a record into a KeeperDrive folder (positional)
    kd-mkdir                          Create a KeeperDrive folder
    kd-record-add                     Create a KeeperDrive record
    kd-record-details                 Get record metadata (title, color)
    kd-record-permission              Modify sharing permissions of records in a folder
    kd-record-update                  Update a KeeperDrive record
    kd-rm                             Remove (delete/unlink) a KeeperDrive record
    kd-rmdir                          Remove a KeeperDrive folder and its contents
    kd-rndir                          Rename a KeeperDrive folder
    kd-share-folder                   Grant/update/revoke folder sharing
    kd-share-record                   Grant/update/revoke record sharing
    kd-shortcut                       Manage KeeperDrive record shortcuts (multi-folder links)
    kd-transfer-record                Transfer record ownership to another user

Bug Fixes

VAUL-8619: Various issues with Dark Mode.
VAUL-8714: Improved Error Messaging for Session Persistence Conflicts.
VAUL-8748: Resolved test alignment in the Query Log display.

Web Vault Update Instructions

To ensure you're using the latest Web Vault, simply reload the vault login page (or Shift+Ctrl/Cmd+R to force refresh)

Desktop Update Instructions

If you installed Keeper Desktop directly from the Keeper website, download the latest version from: https://www.keepersecurity.com/download.html?t=d
If you installed Keeper Desktop from the Mac App Store or Microsoft Store, visit the store to perform the update.

PreviousVault Release 18.0.1 NextVault Release 17.6.1

Last updated 22 days ago