← Index

1Claw Vault

io.github.1clawAI/1claw-mcp·v0.40.3·Security

HSM-backed vault secrets for AI agents (JIT fetch) plus prompt-injection and threat scanning.

In-path gate · all MCP tools

Using 1Claw Vault in Claude, Cursor, Gemini CLI, Cline, or Zed?

MCP tool contracts can change remotely with no version bump. The mcpindex gate pins each contract and HOLDs the call when it drifts-before your agent acts. Zero credentials. This is not the package install for this server itself (use Install this server for that).

Install the mcpindex gate (one command)

Rewrites your MCP host config so each server launches behind the gate. Inspect first: curl -fsSL https://mcpindex.ai/install.sh | less

uv tool install mcpindex-gate && mcpindex-config-wire
Trust verdict · v1 advisory · method
NOT YET SCREENEDno verdict on file

Verdict not yet evaluated for this tool. The semantic screen takes adversarial cases first; coverage rolls out as the corpus expands (15/150 labels to graduation). The deterministic conformance probe is built but has not yet run on the public corpus, so a recorded verdict here is REVIEW or UNVERIFIED, never a clearing ALLOW. Until a verdict is recorded, an agent should treat this tool as not-yet-cleared and fall back to its own checks. Method: the eval, four-state verdict, honest limits.

Own this server? Screen its description →

Environment variables
ONECLAW_AGENT_API_KEY
secret

Agent API key (ocv_...). Exchanged for a short-lived JWT; auto-discovers agent ID and vault. Recommended for stdio.

ONECLAW_AGENT_ID

Optional agent UUID when pinning identity (usually auto-discovered from the API key).

ONECLAW_VAULT_ID

Optional vault UUID when the agent can access multiple vaults.

ONECLAW_BASE_URL

Vault API base URL (default https://api.1claw.xyz).

ONECLAW_LOCAL_ONLY

Set to true for security-only mode (inspect_content only; no vault credentials).

MCP quality score · maturity, not trust · methodology
freshness
25
completeness
20
installability
25
documentation
15
stability
5
Alternatives in Security