moldable-ai/aivault
skills/aivault/SKILL.md
Complete guide for using aivault as a zero-trust local vault and proxy for API secrets. Use this skill when initializing/configuring aivault, managing secrets and credentials, invoking capability-backed API calls, setting workspace/group isolation, adding custom providers, or troubleshooting daemon and policy issues.
development
Updated Apr 22, 2026
$ install --global
skillsauthnpx skillsauth add moldable-ai/skills aivaultInstall this skill globally with one command. Works with Claude Code, Cursor, and Windsurf.
Security Scan Results
3 of 9 scanners reported clean
Some scanners were skipped, did not run, or reported a non-clean status. Review each row below.
3
Scanners Passed
9
Scanners in report
Clean
TrivyContainer and dependency vulnerability scanner
95%
Clean
SemgrepStatic code analysis for vulnerabilities
95%
Clean
mcp-scan (Snyk)Model Context Protocol security validation
95%
Skipped
Snyk (dep)Open source security scanning
50%
Skipped
Socket.devSupply chain security analysis
50%
Skipped
VirusTotalMulti-engine malware detection
50%
Skipped
CrowdStrikeAdvanced threat intelligence
50%
Skipped
OSV-ScannerOpen Source Vulnerability database check
50%
Skipped
OWASP Dep-Check
50%
Last scanned: Apr 22, 2026, 5:14 PM79.9s6 files scanned
SKILL.md
- name:
- aivault
- description:
- Complete guide for using aivault as a zero-trust local vault and proxy for API secrets. Use this skill when initializing/configuring aivault, managing secrets and credentials, invoking capability-backed API calls, setting workspace/group isolation, adding custom providers, or troubleshooting daemon and policy issues.
aivault Runtime and Integration
This skill covers secure setup and day-to-day use of aivault for agent workflows.
Install
Install aivault if it is not already available:
curl -fsSL https://aivault.moldable.sh/install.sh | sh
Quick Reference
| Resource | Path |
|----------|------|
| CLI binary | aivault |
| Daemon binary | aivaultd |
| Vault root (default) | ~/.aivault/data/vault/ |
| Daemon socket (default) | ~/.aivault/run/aivaultd.sock |
| Registry definitions | ~/aivault/registry/*.json |
| Registry schema | ~/aivault/registry/schemas/registry-provider.schema.json |
| Upstream docs source | ~/aivault/docs/ |
Default Workflow
- Check status and provider setup:
aivault status
- Create provider secret (auto-provisions registry credential + capabilities when names match):
aivault secrets create --name OPENAI_API_KEY --value "sk-..." --scope global
- Inspect available capabilities:
aivault capability listaivault capability describe openai/chat-completions
- Invoke through policy boundary:
aivault invoke openai/chat-completions --body '{"model":"gpt-5.2","messages":[{"role":"user","content":"hello"}]}'
- Verify audit trail:
aivault audit
Detailed References
Read these as needed:
Core Usage
- references/getting-started.md - first-run setup and secure invocation flow
- references/cli-reference.md - command groups and practical command patterns
Security and Isolation
- references/security-and-isolation.md - zero-trust properties, scope resolution, and common threat boundaries
Provider and Capability Design
- references/registry-custom-providers.md - built-in registry model, schema, and custom provider flow
Operations and Debugging
- references/operations.md - daemon behavior, environment flags, storage layout, and testing commands
Essential Patterns
1. Registry-backed secret provisioning
Use canonical secret names (for example OPENAI_API_KEY) so aivault can pin to a provider and auto-enable capabilities.
2. Capability-first invocation
Always call aivault invoke <capability-id> (or json / markdown) instead of direct upstream calls with raw keys.
3. Scoped tenancy controls
Use --scope workspace and --scope group for tenant isolation, then pass --workspace-id / --group-id on invoke.
4. Custom provider fallback
Only create manual credentials and capabilities when a provider is not in the built-in registry.
Common Mistakes to Avoid
- Storing API keys in
.envfor untrusted agent code - Invoking raw URLs instead of declared capabilities
- Forgetting scope context when debugging credential resolution
- Assuming caller-provided auth headers are allowed (broker owns auth headers)
- Treating custom providers as equally tamper-resistant as compiled registry providers
Source of Truth
When behavior is unclear, verify against local docs and runtime artifacts:
~/aivault/docs/~/aivault/registry/~/aivault/src/
Related Skills
moldable-ai/firecrawl
development
VerifiedTrustedCommunity
Search, scrape, crawl, map, parse, and operate Firecrawl browser/agent workflows through aivault-backed Firecrawl API capabilities. No Firecrawl API key is read by the skill runtime.
SKILL.mdUpdated May 30, 2026
moldable-ai/trello
data-ai
VerifiedTrustedCommunity
Manage Trello boards/lists/cards via aivault-backed capabilities (no Trello key/token in skill runtime).
SKILL.mdUpdated Apr 22, 2026
moldable-ai/todoist
documentation
VerifiedTrustedCommunity
Manage Todoist tasks/projects/comments via aivault-backed capabilities (no Todoist token in skill runtime).
SKILL.mdUpdated Apr 22, 2026
moldable-ai/openai-transcribe
development
VerifiedTrustedCommunity
Transcribe local audio files with OpenAI speech-to-text through aivault capability json (no provider API key in skill runtime).
SKILL.mdUpdated Apr 22, 2026