Vault secret proxy sidecar using AWS IAM Auth

Sample showing how to use an HttpPipelinePolicy to proxy secrets, keys, and certificates from Azure Key Vault.

Dr. Vault — Host-side credential proxy for OpenClaw. Keeps API keys, tokens, and secrets out of Docker containers. The agent gets capabilities, never credentials.

Production-grade reference architecture for running Odoo 19 Enterprise in HA/clustered mode on Kubernetes using Gateway API, Vault, External Secrets, oauth2-proxy and immutable Odoo images.

Python SDK for vault-proxy -- secrets vault with HTTP proxy for AI agents

No description available

Discord Auth Proxy for securing access to vaults, dashboards, and secrets

OpenBao KV v2 secrets backend plugin for Agent Zero — replaces .env secrets with vault-managed credentials, auth proxy, and 3-surface secret interception.

High-performance caching proxy for Puppet Hiera secrets with HashiCorp Vault integration. Drop-in replacement that reduces Vault load by 99%.

This script manages creating the approle and proxy configuration necessary for managing secrets to a HashiCorp Vault instance.

Secure serverless proxy for Customer.io API using AWS Lambda + Terraform. HTTP Signature auth, Vault secrets, dual API support, 85%+ test coverage.

Azure Functions proxy for Zabbix API integration with Azure AI Foundry. Fetches incident context from Zabbix, analyzes events using GPT models with Polish-language reports, and optionally publishes to Microsoft Teams. Supports Key Vault for secrets, provides OpenAPI spec.

Vault-0: The secure desktop dashboard for autonomous AI agents Zero plaintext secrets. Policy-controlled actions. Visual monitoring and evidence logs. Local-first Tauri app that hardens any agent runtime (OpenClaw, IronClaw, LangGraph, CrewAI) with drop-in proxy security —open-source core. Safe autonomy.

Way To Citadel Logical Architecture (W2CLA) is an open-source experimental Zero Trust protocol for secure shared key and secret management through a distributed Citadel/Proxy system. It leverages DIDs, local Vaults for sensitive data, and a Guardhouse for real-time access control and revocation.