MCP Container

get-mcp-keys

get-mcp-keys is a tool designed to manage API keys securely. It mitigates the risk of accidentally committing API keys to repositories by creating a secure file in the user's home directory from which keys are loaded. This enhances security and provides developers with a safer working environment.

GitHub

GitHub Stars

9

User Rating

Not Rated

Favorites

0

Views

14

Forks

2

Issues

0

README
🔐 get-mcp-keys

Stop accidentally committing API keys to your repos!

The Problem

When using Cursor AI (and other AI coding assistants) with MCP servers, you need API keys in your ./cursor/mcp.json file:

{
  "mcpServers": {
    "firecrawl": {
      "command": "npx",
      "args": [
        "-y",
        "firecrawl-mcp"
      ],
      "env": {
        "FIRECRAWL_API_KEY": "sk_live_ohno-this-should-NOT-be-in-git" // 💀
      }
    }
  }
}

This is a security nightmare waiting to happen. One accidental commit and your keys are exposed in your Git history.

💯 The Solution

get-mcp-keys loads your API keys from a secure file in your home directory, keeping them out of your repositories entirely.

⚡ Quick Start
1. Create a .mcprc file in your home directory
touch ~/.mcprc
chmod 600 ~/.mcprc  # Make it readable only by you
3. Add your API keys to the file
# ~/.mcprc
FIRECRAWL_API_KEY="your_actual_api_key_here"
BRAVE_API_KEY="another_secret_key_here"
# Add any other MCP server keys you use
4. Update your MCP configuration to use get-mcp-keys
{
  "mcpServers": {
    "firecrawl": {
      "command": "npx",
      "args": [
        "@masonator/get-mcp-keys", // 🔐
        "npx",
        "-y",
        "firecrawl-mcp"
      ]
    }
  }
}

That's it! The get-mcp-keys utility will:

  • Load your API keys from ~/.mcprc
  • Inject them as environment variables
  • Run your MCP server command with the keys available
🛡️ Security
  • Your API keys stay in your home directory
  • Keys are never committed to repositories
  • Keys are loaded only when needed
  • Debug output shows only first/last few characters of keys
🧰 Supported MCP Servers

Works with any MCP server that needs environment variables, including:

  • FireCrawl
  • Brave Search
  • Supabase
  • And any other MCP servers you configure!
🔍 How It Works

get-mcp-keys reads your .mcprc file, adds those environment variables to the current environment, and then executes whatever command you specify after it in the args list. It's simple yet effective!

get-mcp-keys in action

📋 License

MIT

⭐ If this saved you from committing your keys, star the repo!

Author Information
Stu Mason
Stu Mason

Writing profiles is for bots

Folkestone
GitHub

26

Followers

49

Repositories

17

Gists

0

Total Contributions

Tags
apicredential-cursordevsecopsdotenvkey-managementkeysmcp-sermcp-servernodejssecrets-management
Related MCPs
thales-cdsp-crdp-mcp-server logo
thales-cdsp-crdp-mcp-server
1

The Thales CDSP CRDP MCP Server is an MCP server that enables AI applications and LLMs to securely protect and reveal sensitive data through the CipherTrust CRDP service. It supports both individual and bulk protect and reveal operations, along with versioning capabilities.

JavaScript
pentest-mcp logo
pentest-mcp
80

NOT for educational purposes: An MCP server for professional penetration testers including STDIO/HTTP/SSE support, nmap, go/dirbuster, nikto, JtR, hashcat, wordlist building, and more.

JavaScript
CyberSecurity-MCPs logo
CyberSecurity-MCPs
13

This project is a collection of Model Context Protocol Servers (MCPs) focused on the field of cybersecurity. It includes various implementations such as an SQL injection testing tool, a cyberspace search engine, and a Markdown to Word document converter. Each MCP server is encapsulated independently, making management straightforward.

JavaScript