secure-vault
Secure Vault
Secure encrypted secrets storage with local key file protection. Inspired by ZeroClaw's encrypted secrets with XOR + local key file.
Setup
No additional setup required. Generates encryption key on first use.
Usage
Store a Secret
{baseDir}/secure-vault.js set --name "api_key" --value "secret-value"
Retrieve a Secret
{baseDir}/secure-vault.js get --name "api_key"
List All Secrets
{baseDir}/secure-vault.js list
Delete a Secret
{baseDir}/secure-vault.js delete --name "api_key"
Export Secrets (Encrypted)
{baseDir}/secure-vault.js export --output "vault-backup.enc"
Import Secrets
{baseDir}/secure-vault.js import --path "vault-backup.enc"
Options
| Option | Description | Default |
|---|---|---|
--name |
Secret name/identifier | Required for set/get/delete |
--value |
Secret value | - |
--path |
File path for import/export | - |
--output |
Output file path | - |
--key |
External encryption key (optional) | Auto-generated |
Encryption
Uses XOR encryption with a local key file (similar to ZeroClaw):
- Key file stored at
~/.config/agent/vault.key(mode 0600) - Secrets encrypted before storage
- Key file never leaves the local system
Security Features
- Local-only key: Encryption key never stored with secrets
- File permissions: Key file created with 0600 permissions
- No plaintext storage: All secrets stored encrypted
- Secure deletion: Overwrites data before deletion
Response Format
{
"success": true,
"name": "api_key",
"encrypted": true
}
When to Use
- Storing API keys securely
- Managing credentials for multiple services
- Backup and restore encrypted secrets
- Secure configuration storage
- Managing secrets across environments
More from winsorllc/upgraded-carnival
vector-memory
Vector-based semantic memory using embeddings for intelligent recall. Store and search memories by meaning rather than keywords. Use when you need semantic search, similar document retrieval, or context-aware memory.
132model-router
Route requests between different LLM providers and models. Configure routing rules, fallback providers, and model-specific parameters inspired by ZeroClaw and OpenClaw model routing systems.
63rss-monitor
Monitor RSS/Atom feeds and blogs for new content using feedparser.
60rss-reader
Read and parse RSS/Atom feeds. Use when: user wants to subscribe to feeds, get latest articles, or monitor news sources.
55video-frames
Production-grade video frame extraction with thumbnail grids, GIF creation, and batch frame processing. Includes intelligent quality presets, progress tracking, and comprehensive error handling.
39elevenlabs-tts
Convert text to speech using ElevenLabs API. Use when you need to generate voice audio for messages, narrations, or accessibility.
25