Phantom Secrets

Name: Phantom Secrets
Author: ashlrai

ashlrai/phantom-secrets

Run coding agents against real APIs without exposing raw API keys in prompts, logs, or repo diffs.

Overview

Phantom Secrets is a MCP server for the Ship phase that proxies agent API traffic and swaps real secrets for phm_ tokens so keys never enter the model context.

What is this MCP server?

Local proxy intercepts agent traffic and swaps real secrets for phm_ placeholder tokens
stdio MCP server (npm package phantom-secrets-mcp, v0.6.0) for Claude Code–style agent workflows
Keeps true keys off the model context while still allowing authenticated API calls
Designed to reduce accidental commits and chat/log leaks from AI coding sessions
Runs as a sidecar-style local service rather than cloud secret storage
Registry version 0.6.0
Transport: stdio
npm identifier: phantom-secrets-mcp

Compatible agents: Claude Code, Cursor, Codex, any compatible agent

What problem does it solve?

AI coding agents routinely read .env files and echo API keys into chats, tickets, and PRs.

Who is it for?

Indie builders who run Claude Code or Cursor against staging or production API keys daily.

Skip if: Teams that only use mock APIs offline or already enforce a fully remote secrets broker with no local keys.

What do I get? / Deliverables

Your agent keeps calling real APIs while only opaque phm_ tokens appear in prompts, logs, and most diffs.

MCP-registered local proxy that tokenizes secrets for agent sessions
Authenticated outbound API calls without plaintext keys in agent-visible text

Recommended MCP Servers

1Claw Vault1clawAI/1claw-mcp

1Claw Vault exposes a stdio MCP server (@1claw/mcp) that connects AI agents to HSM-backed secret storage with just-in-ti…2 stars

1passwordCakeRepository/1Password-MCP

The 1Password MCP server lets solo builders wire service-account access into Claude Code, Cursor, or other stdio MCP hos…16 stars

402sentinel Mcpkaditang/402sentinel-mcp

402 Sentinel MCP gives solo builders and agent authors a pre-flight check before honoring x402 payment flows on Base. In…1 stars

A2adependencyinspector Mcpclauxel/a2a-dependency-inspector-mcp

A2A Dependency Inspector MCP is a hosted Clauxel server for builders shipping agent-to-agent (A2A) workflows who must pr…

A2a Governance Bridge Mcp

A2A Governance Bridge is a Model Context Protocol server that exposes governance-oriented tools for multi-agent setups: …

A2aidentitytoll Mcpclauxel/a2a-identity-toll-mcp

A2A Identity Toll MCP is a Clauxel-hosted remote MCP server that acts as an identity and policy toll booth for agent-to-…

Journey fit

Primary fit

Secret leakage is a launch-readiness and safe-shipping concern—this proxy belongs on the security shelf before you trust agents on production credentials. It directly mitigates credential exposure during agent-assisted coding, reviews, and automated refactors.

How it compares

Local secret-proxy MCP, not a static pre-commit secret scanner skill.

Common Questions / FAQ

Who is Phantom Secrets for?

Solo and indie developers who use AI coding agents with real API keys and want a local layer that keeps plaintext secrets out of model context.

When should I use Phantom Secrets?

Use it during Ship security work—before you widen agent autonomy on repos that touch .env, third-party SDKs, or deployment secrets.

How do I add Phantom Secrets to my agent?

Register the npm stdio package phantom-secrets-mcp in your MCP client (e.g. Claude Code), start the local proxy, and point agent HTTP traffic through it per the phantom-secrets repo docs.

Phantom Secrets

ashlrai/phantom-secrets

Run coding agents against real APIs without exposing raw API keys in prompts, logs, or repo diffs.

Overview

Phantom Secrets is a MCP server for the Ship phase that proxies agent API traffic and swaps real secrets for phm_ tokens so keys never enter the model context.

What is this MCP server?

Local proxy intercepts agent traffic and swaps real secrets for phm_ placeholder tokens
stdio MCP server (npm package phantom-secrets-mcp, v0.6.0) for Claude Code–style agent workflows
Keeps true keys off the model context while still allowing authenticated API calls
Designed to reduce accidental commits and chat/log leaks from AI coding sessions
Runs as a sidecar-style local service rather than cloud secret storage
Registry version 0.6.0
Transport: stdio
npm identifier: phantom-secrets-mcp

Compatible agents: Claude Code, Cursor, Codex, any compatible agent

What problem does it solve?

AI coding agents routinely read .env files and echo API keys into chats, tickets, and PRs.

Who is it for?

Indie builders who run Claude Code or Cursor against staging or production API keys daily.

Skip if: Teams that only use mock APIs offline or already enforce a fully remote secrets broker with no local keys.

What do I get? / Deliverables

Your agent keeps calling real APIs while only opaque phm_ tokens appear in prompts, logs, and most diffs.

MCP-registered local proxy that tokenizes secrets for agent sessions
Authenticated outbound API calls without plaintext keys in agent-visible text

Recommended MCP Servers

1Claw Vault1clawAI/1claw-mcp

1Claw Vault exposes a stdio MCP server (@1claw/mcp) that connects AI agents to HSM-backed secret storage with just-in-ti…2 stars

1passwordCakeRepository/1Password-MCP

The 1Password MCP server lets solo builders wire service-account access into Claude Code, Cursor, or other stdio MCP hos…16 stars

402sentinel Mcpkaditang/402sentinel-mcp

402 Sentinel MCP gives solo builders and agent authors a pre-flight check before honoring x402 payment flows on Base. In…1 stars

A2adependencyinspector Mcpclauxel/a2a-dependency-inspector-mcp

A2A Dependency Inspector MCP is a hosted Clauxel server for builders shipping agent-to-agent (A2A) workflows who must pr…

A2a Governance Bridge Mcp

A2A Governance Bridge is a Model Context Protocol server that exposes governance-oriented tools for multi-agent setups: …

A2aidentitytoll Mcpclauxel/a2a-identity-toll-mcp

A2A Identity Toll MCP is a Clauxel-hosted remote MCP server that acts as an identity and policy toll booth for agent-to-…

Journey fit

Primary fit

How it compares

Local secret-proxy MCP, not a static pre-commit secret scanner skill.

Common Questions / FAQ

Who is Phantom Secrets for?

Solo and indie developers who use AI coding agents with real API keys and want a local layer that keeps plaintext secrets out of model context.

When should I use Phantom Secrets?

Use it during Ship security work—before you widen agent autonomy on repos that touch .env, third-party SDKs, or deployment secrets.

How do I add Phantom Secrets to my agent?

Register the npm stdio package phantom-secrets-mcp in your MCP client (e.g. Claude Code), start the local proxy, and point agent HTTP traffic through it per the phantom-secrets repo docs.

Overview

What is this MCP server?

What problem does it solve?

Who is it for?

What do I get? / Deliverables

Recommended MCP Servers

Journey fit

Who is Phantom Secrets for?

When should I use Phantom Secrets?

How do I add Phantom Secrets to my agent?

This week for builders

Overview

What is this MCP server?

What problem does it solve?

Who is it for?

What do I get? / Deliverables

Recommended MCP Servers

Journey fit

Who is Phantom Secrets for?

When should I use Phantom Secrets?

How do I add Phantom Secrets to my agent?