Server data from the Official MCP Registry
Issue, rotate and revoke scoped API-key passes for 25+ providers — the agent never sees a real key
Issue, rotate and revoke scoped API-key passes for 25+ providers — the agent never sees a real key
Remote endpoints: streamable-http: https://mcp.proxykey.org/mcp
Valid MCP server (1 strong, 1 medium validity signals). No known CVEs in dependencies. Imported from the Official MCP Registry.
Endpoint verified · Requires authentication · 1 issue found
Security scores are indicators to help you make informed decisions, not guarantees. Always review permissions before connecting any MCP server.
This plugin requests these system permissions. Most are normal for its category.
Remote Plugin
No local installation needed. Your AI client connects to the remote endpoint directly.
Add this to your MCP configuration to connect:
{
"mcpServers": {
"org-proxykey-proxykey": {
"url": "https://mcp.proxykey.org/mcp"
}
}
}From the project's GitHub README.
Issue, rotate and revoke API-key passes from your AI agent — without the agent ever seeing a real key.
proxykey is a credential vault and proxy: your real API keys (OpenAI,
Anthropic, Telegram, Stripe, 25+ providers) are encrypted with AES-256-GCM
and never leave the server. Apps and agents use revocable virtual keys —
passes (vlt_…) — with per-pass IP binding, rate limits and full request
logs. This MCP server lets an agent manage those passes.
https://mcp.proxykey.org/mcpAnything that enters a model's context can leak — through logs, traces or prompt injection. With proxykey the agent gets a tool, not a secret:
mcp_…).Claude Code
claude mcp add --transport http proxykey https://mcp.proxykey.org/mcp \
--header "Authorization: Bearer mcp_YOUR_TOKEN"
Claude Desktop / Cursor (mcp.json)
{
"mcpServers": {
"proxykey": {
"url": "https://mcp.proxykey.org/mcp",
"headers": { "Authorization": "Bearer mcp_YOUR_TOKEN" }
}
}
}
| Tool | What it does |
|---|---|
list_providers | Provider catalogue (slugs, auth models) |
list_secrets | Stored keys (metadata only — never values) |
get_manual_secret_setup | Link for a human to enter a key |
list_passes | All passes with status, limits, binding |
create_pass | Issue a pass for an existing secret |
create_pending_pass | Issue a pass before the key exists; a human fills the key in later, the pass activates automatically |
update_pass | Change limits, IP mode, expiry |
revoke_pass / delete_pass | Kill a pass instantly / remove a revoked one |
rotate_pass | Reissue the token, same settings |
rebind_pass_ip | Reset IP learning |
get_pass_logs / get_pass_stats | Per-pass request log and usage stats |
Point your client at the proxy and use the pass as the API key — only the host and the key change:
# before
curl https://api.openai.com/v1/chat/completions -H "Authorization: Bearer sk-..."
# after
curl https://api.proxykey.org/p/openai/v1/chat/completions -H "Authorization: Bearer vlt_openai_..."
Streaming (SSE), request bodies and headers pass through unchanged.
Telegram bots keep their URL shape (/p/telegram-bot/<pass>/getMe).
Full reference: https://app.proxykey.org/docs.html
Be the first to review this server!
by Modelcontextprotocol · Developer Tools
Web content fetching and conversion for efficient LLM usage
by Modelcontextprotocol · Developer Tools
Read, search, and manipulate Git repositories programmatically
by Toleno · Developer Tools
Toleno Network MCP Server — Manage your Toleno mining account with Claude AI using natural language.