Claude Skill
Infisical/agent-vault
Agent Vault 是一个安全的 HTTP 凭证代理与保险库,专为 Claude Code、OpenClaw、Hermes 等 AI 代理设计。管理密钥、防止泄露、简化轮换。
概览
仓库信息
安装这个 Skill
docker run -it -p 14321:14321 -p 14322:14322 \Registry 信息
docker run -it -p 14321:14321 -p 14322:14322 \npm install @infisical/agent-vault-sdk
项目简介
Agent Vault 是一个专为 Claude Code、OpenClaw、Hermes 以及自定义代理工具等 AI 代理设计的 HTTP 凭证代理与保险库。它能够安全地管理并将密钥注入代理工作流,防止凭证泄露并简化密钥轮换。
A HTTP credential proxy and vault for AI agents like Claude Code, OpenClaw, Hermes, custom agents + harnesses, and more.
要点
- 为 AI 代理提供 HTTP 凭证代理
- 安全的密钥与 API 密钥保险库
- 与 Claude Code、OpenClaw、Hermes 无缝集成
- 支持自定义代理及工具
- 防止代理输出中的凭证泄露
- 使用 Go 语言构建,性能可靠
使用场景
- 将密钥注入 Claude Code 工作流
- 安全管理 OpenClaw 代理的 API 密钥
- 为 Hermes 代理工具提供凭证
- 集中管理自定义 AI 代理的密钥
- 无需修改代理代码即可轮换凭证
README 摘要
<p align="center"> <img src="assets/banner.png" alt="Agent Vault" /> </p> <p align="center"><strong>HTTP credential proxy and vault</strong></p> <p align="center"> An open-source credential broker by <a href="https://infisical.com">Infisical</a> that sits between your agents and the APIs they call.<br> Agents should not possess credentials. Agent Vault eliminates credential exfiltration risk with brokered access. </p> <p align="center"> <strong>New here? The <a href="https://infisical.com/blog/agent-vault-the-open-source-credential-proxy-and-vault-for-agents">launch blog post</a> has the full story behind Agent Vault.</strong> </p> <p align="center"> <a href="https://docs.agent-vault.dev">Documentation</a> | <a href="https://docs.agent-vault.dev/installation">Installation</a> | <a href="https://docs.agent-vault.dev/tutorial">Tutorial</a> | <a href="https://youtu.be/6dERVjLk0-Q">Video Demo</a> | <a href="https://infisical.com/slack">Slack</a> </p> <p align="center"> <img src="assets/agent-vault.gif" alt="Agent Vault demo" /> </p> ## Why Agent Vault Traditional secrets management involves returning credentials back to you applications and services. This breaks down with AI agents which can be tricked via [prompt injection](https://en.wikipedia.org/wiki/Prompt_injection) into leaking secrets. This is the problem of **credential exfiltration**. Agent Vault was created to solve credential exfiltration for all AI agents. Instead of giving AI agents credentals directly, you store them in Agent Vault (e.g. `ANTHROPIC_API_KEY`, `GITHUB_PAT`, etc.) and force your agents to route HTTP requests through it. Agent Vault intercepts every request and attaches credentials onto it before forwarding the request to the target outbound API. Features: - **Credential Brokering**