MCP Server
Expose FyVault secrets to AI coding assistants via the Model Context Protocol. Works with Claude Desktop, Cursor, and Windsurf.
Setup
Install the MCP server globally, then add it to your editor config.
npm install -g @fyvault/mcp-server
Claude Desktop
Add to claude_desktop_config.json:
{
"mcpServers": {
"fyvault": {
"command": "fyvault-mcp",
"args": ["--org", "org_acme"],
"env": {
"FYVAULT_API_KEY": "fv_live_..."
}
}
}
}Cursor / Windsurf
Add to .cursor/mcp.json or.windsurf/mcp.json:
{
"mcpServers": {
"fyvault": {
"command": "fyvault-mcp",
"args": ["--org", "org_acme"],
"env": { "FYVAULT_API_KEY": "fv_live_..." }
}
}
}Available tools
| Tool | Description |
|---|---|
| get_secret | Retrieve a secret value by name or ID |
| list_secrets | List all secrets in an environment |
| list_environments | List all environments in the org |
| rotate_secret | Trigger rotation for a secret |
| scan_text | Scan text for leaked credentials |
Example usage
Once configured, ask your AI assistant to fetch secrets directly:
> "Get the DATABASE_URL secret from staging" > "List all secrets in production" > "Rotate the STRIPE_SECRET_KEY" > "Scan this code snippet for leaked keys"
See also: Agent Credentials, FyVault.auto()