agentsecrets

Built AgentSecrets because we got tired of AI agents touching raw credentials. 80+ authenticated calls this week. 0 credential exposures. Agents pass key names only. AgentSecrets injects credentials locally at the transport layer.

The coding assistant reading your repository right now can also read your environment variables and config files. Stop using local plaintext files. Move your environment to the OS keychain and gate it behind process-level verification. https://t.co/Url1C5MhIA

API keys don’t just leak in outbound requests. If an API response reflects the key, it enters the LLM’s context window. AgentSecrets actively scans inbound responses and redacts reflected secrets before they reach the agent.

An agent with access to database tools can retrieve data. But where does it send it? If a prompt injection tells the agent to upload the records to a foreign server, a simple network allowlist blocks it. Domain boundaries are your final line of defense.

zero-knowledge gets you halfway. the agent doesn't hold the credential. But what stops a hijacked agent from making calls it was never supposed to make? something we've been building.

The agent receives the error without the key. Your logs, debug consoles, and LLM context windows stay clean. We've had 11 of such scenarios live according to our metrics.

How does AgentSecrets protect against ASI06: Memory & Context Poisoning? When an upstream API reflects a credential back in an error payload, the agent's context is compromised. 👇

AgentSecrets intercepts the response packet at the transport layer, scans for secret patterns, and swaps them with [REDACTED_BY_AGENTSECRETS]

Secrets setting functionality is now restored in AgentSecrets. We found and fixed the bug. Thanks for your patience!

AgentSecrets is not a secret manager. It’s secrets infrastructure for AI agents. Secret managers focus on storage and access. AgentSecrets focuses on usage. Cuz the real problem isn’t just “can the agent access the secret?” It’s “what can the agent do with it after access?”

API keys don’t just leak in outbound requests. If an API response reflects the key, it enters the LLM’s context window. AgentSecrets actively scans inbound responses and redacts reflected secrets before they reach the agent.

You cannot secure an agent using prompts. Prompt engineering is a soft boundary; a clever user will always bypass it. Security must be enforced by the network and operating system layers. Keep prompts for reasoning, use architecture for protection.