mcp-api-keys-server
Verified Safeby unalluri
Overview
Manages and securely retrieves API keys for various services (LLM, SaaS, Canva, internal) by exposing them as an MCP server.
Installation
docker run -i --rm --env-file /path/to/your/.env mcp-api-keys-serverEnvironment Variables
- OPENAI_API_KEY
- ANTHROPIC_API_KEY
- GOOGLE_AI_API_KEY
- COHERE_API_KEY
- STRIPE_API_KEY
- STRIPE_WEBHOOK_SECRET
- TWILIO_ACCOUNT_SID
- TWILIO_AUTH_TOKEN
- SENDGRID_API_KEY
- AWS_ACCESS_KEY_ID
- AWS_SECRET_ACCESS_KEY
- CANVA_CLIENT_ID
- CANVA_CLIENT_SECRET
- CANVA_APP_ID
- DATABASE_URL
- REDIS_URL
- JWT_SECRET
- APP_SECRET
Security Notes
The server stores API keys exclusively in environment variables, preventing hardcoding. It explicitly lists supported keys, preventing arbitrary environment variable retrieval. The `list_api_keys` tool does not reveal key values, and `check_api_key_exists` masks found keys. The server runs via stdin/stdout, avoiding direct network exposure. Input validation is present for tool arguments. The primary security consideration is the secure management of the `.env` file or Docker secrets outside of the application's direct control, and how the calling MCP client handles the retrieved secrets.
Similar Servers
toolhive-studio
ToolHive is a desktop application (Electron UI) for discovering, deploying, and managing Model Context Protocol (MCP) servers in isolated containers, and connecting them to AI agents and clients.
toolhive-registry-server
The central metadata hub for enterprise Model Context Protocol (MCP) server governance and discovery, implementing the official MCP Registry API specification.
mcp-cli
A command-line interface tool for managing Model Context Protocol (MCP) server configuration files across various AI tools.
mcp-safe-run
Securely launches Model Context Protocol (MCP) servers by dynamically resolving and injecting sensitive credentials (secrets) from various sources (environment, files, OS keychain) into the server's environment.