Skip to content

Latest commit

 

History

History
89 lines (64 loc) · 1.96 KB

File metadata and controls

89 lines (64 loc) · 1.96 KB

@secr/mcp

Secr MCP server — gives AI coding agents (Claude Code, Cursor, Copilot) direct access to secrets via the Model Context Protocol.

Install

npm install @secr/mcp

Setup

Claude Code

claude mcp add secr -e SECR_TOKEN=secr_agent_xxx -- npx @secr/mcp

Cursor

Add to ~/.cursor/mcp.json:

{
  "mcpServers": {
    "secr": {
      "command": "npx",
      "args": ["@secr/mcp"],
      "env": { "SECR_TOKEN": "secr_agent_xxx" }
    }
  }
}

VS Code (Copilot)

Add to .vscode/mcp.json:

{
  "servers": {
    "secr": {
      "command": "npx",
      "args": ["@secr/mcp"],
      "env": { "SECR_TOKEN": "secr_agent_xxx" }
    }
  }
}

Tools

The server exposes 5 tools to AI agents:

Tool Description
get_secret Get a single secret value by key
list_secrets List secret key names (no values) with optional search
set_secret Create or update a secret
delete_secret Delete a secret
list_environments List environments for a project

All tools accept optional org, project, and environment parameters. When omitted, they resolve from environment variables or .secr.json.

Environment Variables

Variable Required Default Description
SECR_TOKEN Yes -- Agent token (secr_agent_...)
SECR_ORG No .secr.json Organization slug
SECR_PROJECT No .secr.json Project slug
SECR_ENVIRONMENT No .secr.json Default environment slug
SECR_API_URL No https://api.secr.dev API base URL

Creating an Agent Token

secr agents create --name "claude-code" --scope "read:secrets,write:secrets"

Agent tokens use scoped permissions — the server only has access to what the token allows.

Documentation

Full docs at secr.dev/docs.

License

MIT