Best Secrets AI Skills & MCP Servers

CLI-first infrastructure intelligence platform — analyzes DynamoDB, PostgreSQL, MySQL, MongoDB, SQS, SNS, SSM, Secrets Manager, Lambda, CloudWatch Logs and exposes findings as an MCP server for Claude Code

Official Infisical MCP Server

Local encrypted vault MCP server. AES-256-GCM + Argon2id. Resolves {{PLACEHOLDER}} secrets at runtime so LLMs never see real API keys. Works with Claude Desktop, Cursor, Continue.dev, Cline, Open WebUI.

Local MCP credential broker for coding agents (Claude Code, Codex, Gemini, and any other MCP-stdio client). Values never enter the AI transcript — the agent requests secrets through a schema, a localhost form lets you type them, and they land in Vault, .e

GitHub security posture audit tools for AI agents — organization, repository, Actions, secrets, supply chain analysis via MCP

Open-source security scanner for Model Context Protocol (MCP) servers. Audits Claude Desktop, VS Code, Cursor, Windsurf, and 16+ AI tools for secrets, prompt injection, supply-chain risks, and 17+ security checks.

VibeSecurity — Auditoria de segurança para quem cria com IA. Secrets, vulnerabilidades e rotas sem auth.

Deploy and manage apps on EigenCompute TEE — trusted execution environments with hardware-level isolation, encrypted secrets, and attestation. Works as MCP server for Cursor/Claude Desktop or as Claude Code skill.

MCP server for Envault CLI operations

MCP server for agent-native secrets management — store, rotate, and inject secrets without agents seeing raw values

MCP server for Doppler API with auto-generated tools from OpenAPI specification

MCP server for 1Password service accounts — tools, prompts, and resources for vault and credential management

Security scanning for the vibe coding era. MCP server + CLI that finds secrets, auth bugs, SQL injection, XSS, IDOR, and vulnerable deps — and opens fix PRs. Works in Cursor, Claude Code, and VS Code. Bring your own model (Anthropic, OpenAI, Gemini, Groq,

MCP server for the 1claw secrets vault — lets AI agents fetch, store, and manage secrets at runtime

Bitwarden/Vaultwarden MCP server — BYOK vault access with 6 tools, Send-based reveal, TOTP, and safe agent-write

TypeScript SDK for 1Claw Vault — secret management for AI agents

BotVault CLI — install the BotVault MCP server (Claude Code, OpenClaw, Cursor) so your AI agents can fetch credentials at runtime instead of you pasting them into chat.

Cross-session memory and recall for AI agents — git-synced knowledge base, knowledge graph, confidence scoring, hybrid semantic+TF-IDF search, auto-distillation with secrets scrubbing

Security scanner for AI-generated apps (Cursor, Lovable, Windsurf, v0). Catches hardcoded secrets, prompt injection, hallucinated imports, Server Actions / Edge runtime mistakes, and the vibe-coded vulnerabilities traditional linters miss.

MCP server for secure environment variable management - Keep your secrets safe from AI agents

Vaultwarden/Bitwarden MCP server backed by Bitwarden CLI (bw).

MCP server for interacting with 1Password via the CLI