secrets-mcp-server
Verified Safeby andriyshevchenko
Overview
Enables AI agents to securely store and retrieve secrets cross-platform using native operating system credential management systems.
Installation
npx -y secrets-mcp-serverSecurity Notes
The server utilizes native operating system secret management APIs (Windows Credential Vault/DPAPI, macOS Keychain, Linux Secret Service) via the `@napi-rs/keyring` library, which is a strong security practice as it leverages OS-level encryption and access controls. Communication is restricted to standard I/O (stdin/stdout) using the Model Context Protocol, eliminating direct network exposure for the server itself. Input validation for all tool parameters is performed using Zod schemas, reducing the risk of malformed inputs or injection attacks. No 'eval', code obfuscation, or hardcoded sensitive credentials were found in the application logic. The primary security risk would lie in potential vulnerabilities within the underlying native OS keyring implementations or the `@napi-rs/keyring` bindings, which are external dependencies.
Similar Servers
toolhive-studio
ToolHive is a desktop application (Electron UI) for discovering, deploying, and managing Model Context Protocol (MCP) servers in isolated containers, and connecting them to AI agents and clients.
authenticator_mcp
Enables AI agents to securely retrieve 2FA codes and passwords from a local Authenticator App for automated login processes.
agent-identity-management
A production-ready identity verification and security platform for AI agents and Model Context Protocol (MCP) servers, providing cryptographic identity, access control, and real-time threat detection.
dev-kit-mcp-server
A Model Context Protocol (MCP) server targeted for agent development tools, providing scoped authorized operations in the root project directory.