Communityv1.0.1

# key-guard A local MCP server that keeps API keys off Claude's servers. ## Why This Exists When Claude reads a file containing an API key, the raw key content gets sent to Claude's servers. key-guard prevents this by acting as a local middleman — Claude calls a tool, the tool reads the key and makes the API call locally, and only the result is returned to Claude.

Security guardrail: prevents API keys from being sent to Claude. Triggers when user asks to call an external API, use a key, check credentials, read .env fil...

1.9kdownloads2active installsDominique Jeffrey Alamaro Maximilianus
View on ClawHubBack to Skills

Skill Details

Slug
key-guard
Latest Version
1.0.1
Author
Dominique Jeffrey Alamaro Maximilianus
Published
Mar 9, 2026
Updated
May 18, 2026
Total Versions
2

How to Install

  1. 1 on OpenClawdBots (takes under 60 seconds).
  2. 2Open your bot dashboard and go to the Skills tab.
  3. 3Switch to the ClawHub tab and search for # key-guard A local MCP server that keeps API keys off Claude's servers. ## Why This Exists When Claude reads a file containing an API key, the raw key content gets sent to Claude's servers. key-guard prevents this by acting as a local middleman — Claude calls a tool, the tool reads the key and makes the API call locally, and only the result is returned to Claude..
  4. 4Click Install and the skill is deployed to your bot automatically.

Changelog — v1.0.1

- Initial MCP server implementation added in key-guard.js for local security enforcement. - All API key management functions (including validation, API calls, safe file read/write) are now handled via the MCP tool interface. - Ensures API keys are never exposed; all key-related access is routed through the local MCP server. - Protects sensitive files and scripts by masking keys and substituting only on the local server side.