Open-source credential gateway with a built-in vault. give your AI agents access to services without exposing keys.
2.5k
Stars
135
Forks
81
Open issues
20
Contributors
AI Analysis
OneCLI is an open-source credential gateway that acts as a proxy between AI agents and external services, storing secrets centrally and injecting credentials transparently so agents never see raw API keys. It serves teams deploying AI agents that need secure, auditable access to multiple APIs without distributing credentials widely. This tool is most valuable for organizations running autonomous AI systems and DevOps teams managing credential rotation at scale.
Inferred from signals mentioned in the README (tests, CI, type safety) — not a review of the actual code.
AI's overall editorial judgment — not an average of the bars above, can weigh other factors too.
TypeScript credential gateway for AI agents; three months old with modest early traction in an emerging category.
OneCLI is an open-source credential management gateway designed to let AI agents access APIs without directly handling credentials. Agents authenticate with the gateway using placeholder keys; the gateway stores and injects real credentials into outbound requests. The project is three months old, has 2,430 GitHub stars, and targets teams building multi-agent AI systems. Real-world adoption is not yet verifiable beyond GitHub interest.
Created in March 2026 as a response to the operational challenge of managing API credentials across multiple AI agents. The project emerged in the context of rapidly-expanding agentic AI deployments where credential sprawl and rotation become difficult at scale.
The project gained 2,430 stars in approximately 14 weeks, averaging ~173 stars per week. In the last 7 days it gained 30 stars, indicating sustained but slowing growth trajectory. The rapid initial adoption suggests the problem is recognized by early-stage AI teams, but the recent deceleration warrants monitoring.
Adoption not verified. The project provides no public case studies, deployment counts, or client roster. GitHub stars and forks are the only quantifiable signals; these indicate interest but do not confirm production usage. The existence of a Discord community and managed website suggests effort to build a user base, but no adoption metrics are published.
Based on README: polyglot monorepo with a Rust HTTP gateway (port 10255) for credential interception and injection, a Next.js web dashboard (port 10254) for management, and a Prisma-backed PostgreSQL data layer. The gateway appears to operate as a transparent MITM proxy that matches host/path patterns to encrypted credentials (AES-256-GCM) and injects them as headers or query parameters. Architecture is documented but implementation details regarding TLS handling, certificate management, and failure modes are not visible in README.
Not documented in README. No reference to test frameworks, coverage targets, or testing strategy.
Last push was 2026-06-29 (1 day before analysis date), indicating active ongoing development. Repository is 4 months old. The presence of Docker Compose local setup, clear npm/pnpm workflows, and Prisma migrations suggests operational maturity for a project of this age. No evidence of major architectural churn or breaking changes reported.
ADOPT IF: you are building multi-agent AI systems in early stages of production where credential management is a friction point and you can tolerate a three-month-old project with active maintenance and no public production references. AVOID IF: you require proven production track record, formal security audit results, or established enterprise support. MONITOR IF: you are evaluating credential solutions for AI systems and want to track whether real-world adoption emerges over the next 6–12 months.
Independent dimensions
Mainstream potential
4/10
Technical importance
7/10
Adoption evidence
1/10
- No published security audit or threat model; credential interception and injection are high-sensitivity operations requiring rigorous validation.
- Adoption not verified; project may remain niche or fail to gain traction if deployment friction or competing solutions prove more attractive.
- Early-stage codebase; breaking changes, migrations, or architectural shifts may occur as the project matures.
- Test coverage not documented; production reliability unknown.
- Dependency on single maintainer team; project continuity is unverified.
OneCLI will likely evolve into a stable, actively-maintained tool for credential management in agentic systems, but mainstream adoption remains contingent on (1) public production deployments from recognizable teams, (2) security audit publication, and (3) ecosystem integration (e.g., LangChain, Anthropic SDK support). May become a standard component in enterprise AI agent platforms within 12–24 months if adoption accelerates.
Newsletter
Get analyses like this every Monday
Free weekly digest of the most interesting open-source discoveries.
Languages
Information
- Website
- https://onecli.sh
- Language
- TypeScript
- License
- Apache-2.0
- Last updated
- 3d ago
- Created
- 4mo ago
- Analyzed with
- anthropic/claude-haiku-4-5
Stars over time
Contributors over time
Top 100 contributors only — repos with more will plateau at 100.
Open issues
Codex (ChatGPT-OAuth) model calls 401 — stub id_token advertises "free" plan, routing codex to api.openai.com
Gateway returns 502 ("resolution_failed") when a host's AAAA record SERVFAILs, instead of falling back to IPv4
Add xAI (Grok) OAuth app connector
App request: Testiny
OAuth callback always redirects to localhost:10254 when APP_URL is not set (the fallback never runs)
Top contributors
Similar repos
Gitlawb/openclaude
OpenClaude is a terminal-first coding agent CLI that unifies access to multiple...
| Repository | Stars | Week Δ | Language | Score | Updated |
|---|---|---|---|---|---|
|
|
2.5k | +30 | TypeScript | 8/10 | 3d ago |
|
|
1.9k | — | Go | 7/10 | 5d ago |
|
|
29.9k | — | TypeScript | 7/10 | 12h ago |
|
|
1.4k | — | JavaScript | 8/10 | 4w ago |
|
|
1.2k | — | Python | 7/10 | 3w ago |
|
|
25.7k | — | TypeScript | 7/10 | 2d ago |
Go-based, 1,767 stars. Similar positioning (credential gateway), but older and smaller community. No direct feature comparison available from README.
Python-based, 1,212 stars. Likely serves similar use case but language/ecosystem entirely different.
JavaScript-based, 1,418 stars. Similar ecosystem to OneCLI but star count slightly lower.
TypeScript-based, 5,630 stars. Much larger adoption but likely different problem domain (not a credential gateway).