Secrets Vault
БесплатноНе проверенEnables AI agents and MCP clients to securely store, retrieve, and manage encrypted credentials without hardcoding API keys.
Описание
Enables AI agents and MCP clients to securely store, retrieve, and manage encrypted credentials without hardcoding API keys.
README
Security-first secrets vault for MCP servers, Claude Code, Cursor, and AI agents.
License: AGPL v3 npm MCP Compatible
Stop hardcoding API keys in .env files and MCP configs. MCP-Secrets-Vault stores credentials encrypted (AES-256-GCM) on your machine and exposes them to AI clients via MCP tools.
Quick Start
npx @gpitrella/mcp-secrets-vault init
# Set VAULT_PASSPHRASE in ~/.mcp-secrets-vault/.env
npx @gpitrella/mcp-secrets-vault set openai_key sk-your-key
npx @gpitrella/mcp-secrets-vault get openai_key
Claude Desktop / Cursor
{
"mcpServers": {
"secrets-vault": {
"command": "npx",
"args": ["-y", "@gpitrella/mcp-secrets-vault"],
"env": {
"VAULT_PASSPHRASE": "your-passphrase"
}
}
}
}
MCP Tools
| Tool | Description |
|---|---|
set_secret |
Store encrypted credential |
get_secret |
Retrieve decrypted credential |
rotate_secret |
Rotate value (keeps 5 versions) |
list_secrets |
List metadata (no values) |
delete_secret |
Soft or hard delete |
search_secrets |
Full-text search |
import_env |
Bulk import from .env content |
export_env |
Export as .env format |
dashboard |
Interactive HTML dashboard |
CLI
npx @gpitrella/mcp-secrets-vault init
npx @gpitrella/mcp-secrets-vault set <name> <value> [--workspace=default]
npx @gpitrella/mcp-secrets-vault get <name>
npx @gpitrella/mcp-secrets-vault list
npx @gpitrella/mcp-secrets-vault import .env --workspace=memxus
npx @gpitrella/mcp-secrets-vault export --workspace=memxus
npx @gpitrella/mcp-secrets-vault gen-key
Security
- Bound to
127.0.0.1only for HTTP (NeighborJack defense) - AES-256-GCM with Node.js
crypto(zero third-party crypto deps) - Strict Zod validation,
additionalProperties: falseon all tools - Audit logs never contain secret values
- All dependencies pinned to exact versions
See docs/SECURITY.md for the threat model.
License
AGPL v3 — See LICENSE.
Vault Cloud (coming soon)
Self-hosted is free forever. Hosted tier with team workspaces, RBAC, and compliance reports.
Установить Secrets Vault в Claude Desktop, Claude Code, Cursor
unyly install mcp-secrets-vaultСтавит в Claude Desktop, Claude Code, Cursor и VS Code — сам разбирается с npx, uvx и сборкой из исходников.
Впервые? Поставь CLI: curl -fsSL https://unyly.org/install | sh
Или настроить вручную
Выполни в терминале:
claude mcp add mcp-secrets-vault -- npx -y github:gpitrella/mcp-secrets-vaultFAQ
Secrets Vault MCP бесплатный?
Да, Secrets Vault MCP бесплатный — установка в пару кликов через Unyly без оплаты.
Нужен ли API-ключ для Secrets Vault?
Нет, Secrets Vault работает без API-ключей и переменных окружения.
Secrets Vault — hosted или self-hosted?
Self-hosted: сервер запускается локально на твоей машине командой из раздела установки.
Как установить Secrets Vault в Claude Desktop, Claude Code или Cursor?
Открой Secrets Vault на unyly.org, выбери вкладку своего клиента (Claude Desktop, Claude Code, Cursor) и нажми Install — конфиг сгенерируется автоматически, без правки JSON.
Похожие MCP
Fetch
Web content fetching and conversion for efficient LLM usage.
AWS KB Retrieval
Retrieval from AWS Knowledge Base using Bedrock Agent Runtime.
автор: modelcontextprotocolSpring AI MCP Server
Provides auto-configuration for setting up an MCP server in Spring Boot applications.
llm-analysis-assistant
A very streamlined mcp client that supports calling and monitoring stdio/sse/streamableHttp, and can also view request responses through the /logs page. It also
автор: xuzexin-hzCompare Secrets Vault with
Не уверен что выбрать?
Найди свой стек за 60 секунд
Автор?
Embed-бейдж для README
Похожее
Все в категории ai
