All activity
Horizon Flowleft a comment
I built Vault-0 because I was running OpenClaw agents with API keys sitting in plaintext .env files. One bad log or plugin and those keys are exposed. Existing secret managers like HashiCorp Vault or Doppler expect your app to call an API to fetch secrets. AI agent frameworks don't support that. They just read .env at boot. Vault-0 takes a different approach: secrets are encrypted locally...
Vault-0Encrypted secret vault and policy engine for AI agents
Vault-0 is a local desktop app that encrypts your AI agent's API keys and injects them ephemerally at launch. Keys exist on disk for about 2 seconds instead of sitting in plaintext .env files forever. It also runs a policy engine that enforces domain allow/block lists, output redaction, and spend caps on outbound requests. Built for OpenClaw agents with MCP hardening, a SHA-256 chained evidence ledger, and native x402 payment support.
Rust + Tauri, macOS, fully local.
Vault-0Encrypted secret vault and policy engine for AI agents