Skip to content

forest6511/secretctl

Secrets & Credentials

AI-safe secrets manager with MCP integration. Run commands with credentials injected as environment variables - AI agents never see plaintext secrets. Features output sanitization, AES-256-GCM encryption, and Argon2id key derivation.

Track releases GitHub Website
Go Latest v0.8.8 · 4mo ago Security brief →

Features

  • Inject secrets as environment variables so AI agents receive command results without ever seeing plaintext credentials
  • AES‑256‑GCM encryption at rest with Argon2id key derivation for strong protection against brute‑force attacks
  • Local‑first, single‑binary design – no servers, subscriptions, or cloud sync required

Recent releases

View all 10 releases →
No immediate action
v0.8.8 New feature

Competitor import + secret folders

Open
No immediate action
v0.8.7 New feature

Security Dashboard + i18n + Makefile targets

Open
No immediate action
v0.8.6 New feature

Custom icon + field selector + Docker theme

Open
No immediate action
v0.8.5 Bug fix

Desktop UI textarea fixes

Open
No immediate action
v0.8.4 New feature

Textarea field + blue theme

Open

Weekly OSS security release digest.

The CVE patches and breaking changes that affected production tools this week. One email, every Sunday.

No spam, unsubscribe anytime.

About

Stars
5
Forks
4
Languages
Go TypeScript NSIS
View on GitHub Homepage Documentation

Install & Platforms

Install via
go binary
Platforms
linux macos windows arm64

Similar tools

chamber
Ju571nK/sigil](https:
getaegis/aegis
ArmorerLabs/Armorer-Guard
rsdouglas/janee

Beta — feedback welcome: [email protected]