onecli

onecli/onecli

TypeScript Apache-2.0 Security

Open-source credential gateway with a built-in vault. give your AI agents access to services without exposing keys.

2.5k stars
135 forks
active
GitHub +30 / week

2.5k

Stars

135

Forks

81

Open issues

20

Contributors

v1.41.0 07 Jul 2026

AI Analysis

OneCLI is an open-source credential gateway that acts as a proxy between AI agents and external services, storing secrets centrally and injecting credentials transparently so agents never see raw API keys. It serves teams deploying AI agents that need secure, auditable access to multiple APIs without distributing credentials widely. This tool is most valuable for organizations running autonomous AI systems and DevOps teams managing credential rotation at scale.

Security Security Tool Discovery value: 7/10
Documentation 8/10
Activity 9/10
Community 8/10
Code quality 7/10

Inferred from signals mentioned in the README (tests, CI, type safety) — not a review of the actual code.

Overall score 8/10

AI's overall editorial judgment — not an average of the bars above, can weigh other factors too.

ai-agents credential-management secret-vault gateway mcp
Actively maintained Well documented Niche/specialized use case Apache-2.0 licensed Production ready
Deep Analysis · Based on README and public signals
1w ago

TypeScript credential gateway for AI agents; three months old with modest early traction in an emerging category.

OneCLI is an open-source credential management gateway designed to let AI agents access APIs without directly handling credentials. Agents authenticate with the gateway using placeholder keys; the gateway stores and injects real credentials into outbound requests. The project is three months old, has 2,430 GitHub stars, and targets teams building multi-agent AI systems. Real-world adoption is not yet verifiable beyond GitHub interest.

Origin

Created in March 2026 as a response to the operational challenge of managing API credentials across multiple AI agents. The project emerged in the context of rapidly-expanding agentic AI deployments where credential sprawl and rotation become difficult at scale.

Growth

The project gained 2,430 stars in approximately 14 weeks, averaging ~173 stars per week. In the last 7 days it gained 30 stars, indicating sustained but slowing growth trajectory. The rapid initial adoption suggests the problem is recognized by early-stage AI teams, but the recent deceleration warrants monitoring.

In production

Adoption not verified. The project provides no public case studies, deployment counts, or client roster. GitHub stars and forks are the only quantifiable signals; these indicate interest but do not confirm production usage. The existence of a Discord community and managed website suggests effort to build a user base, but no adoption metrics are published.

Code analysis
Architecture

Based on README: polyglot monorepo with a Rust HTTP gateway (port 10255) for credential interception and injection, a Next.js web dashboard (port 10254) for management, and a Prisma-backed PostgreSQL data layer. The gateway appears to operate as a transparent MITM proxy that matches host/path patterns to encrypted credentials (AES-256-GCM) and injects them as headers or query parameters. Architecture is documented but implementation details regarding TLS handling, certificate management, and failure modes are not visible in README.

Tests

Not documented in README. No reference to test frameworks, coverage targets, or testing strategy.

Maintenance

Last push was 2026-06-29 (1 day before analysis date), indicating active ongoing development. Repository is 4 months old. The presence of Docker Compose local setup, clear npm/pnpm workflows, and Prisma migrations suggests operational maturity for a project of this age. No evidence of major architectural churn or breaking changes reported.

Honest verdict

ADOPT IF: you are building multi-agent AI systems in early stages of production where credential management is a friction point and you can tolerate a three-month-old project with active maintenance and no public production references. AVOID IF: you require proven production track record, formal security audit results, or established enterprise support. MONITOR IF: you are evaluating credential solutions for AI systems and want to track whether real-world adoption emerges over the next 6–12 months.

Independent dimensions

Mainstream potential

4/10

Technical importance

7/10

Adoption evidence

1/10

Risks
  • No published security audit or threat model; credential interception and injection are high-sensitivity operations requiring rigorous validation.
  • Adoption not verified; project may remain niche or fail to gain traction if deployment friction or competing solutions prove more attractive.
  • Early-stage codebase; breaking changes, migrations, or architectural shifts may occur as the project matures.
  • Test coverage not documented; production reliability unknown.
  • Dependency on single maintainer team; project continuity is unverified.
Prediction

OneCLI will likely evolve into a stable, actively-maintained tool for credential management in agentic systems, but mainstream adoption remains contingent on (1) public production deployments from recognizable teams, (2) security audit publication, and (3) ecosystem integration (e.g., LangChain, Anthropic SDK support). May become a standard component in enterprise AI agent platforms within 12–24 months if adoption accelerates.

0 found this helpful

Newsletter

Get analyses like this every Monday

Free weekly digest of the most interesting open-source discoveries.

Languages

TypeScript
64%
Rust
34.7%
JavaScript
0.5%
Shell
0.4%
Dockerfile
0.2%
CSS
0.2%

Information

Language
TypeScript
License
Apache-2.0
Last updated
3d ago
Created
4mo ago
Analyzed with
anthropic/claude-haiku-4-5

Stars over time

Loading…

Contributors over time

Top 100 contributors only — repos with more will plateau at 100.

Loading…

Similar repos

Infisical

Infisical/agent-vault

Agent Vault is an open-source HTTP credential proxy and vault designed to...

1.9k Go Security
Gitlawb

Gitlawb/openclaude

OpenClaude is a terminal-first coding agent CLI that unifies access to multiple...

29.9k TypeScript AI & ML
chrysb

chrysb/alphaclaw

AlphaClaw is a deployment and management harness for OpenClaw AI agents,...

1.4k JavaScript DevOps
tophant-ai

tophant-ai/ClawVault

ClawVault is a security vault system designed to protect AI agents and...

1.2k Python Security
vercel-labs

vercel-labs/skills

skills is a CLI tool that provides a package manager for AI agent capabilities,...

25.7k TypeScript Dev Tools
vs. alternatives
Infisical/agent-vault

Go-based, 1,767 stars. Similar positioning (credential gateway), but older and smaller community. No direct feature comparison available from README.

tophant-ai/ClawVault

Python-based, 1,212 stars. Likely serves similar use case but language/ecosystem entirely different.

chrysb/alphaclaw

JavaScript-based, 1,418 stars. Similar ecosystem to OneCLI but star count slightly lower.

21st-dev/1code

TypeScript-based, 5,630 stars. Much larger adoption but likely different problem domain (not a credential gateway).