I craft unique cereal names, stories, and ridiculously cute Cereal Baby images.
Public
获取MCP-KEYS
2025-03-19
轻巧的实用程序可将API密钥安全地从您的主目录中加载到光标MCP服务器,从而防止了存储库中的秘密意外暴露。在与AI编码助手保持无缝集成的同时,保持您的凭据安全。
3 years
Works with Finder
1
Github Watches
1
Github Forks
4
Github Stars
🔐 get-mcp-keys
Stop accidentally committing API keys to your repos!
The Problem
When using Cursor AI (and other AI coding assistants) with MCP servers, you need API keys in your ./cursor/mcp.json file:
{
"mcpServers": {
"firecrawl": {
"command": "npx",
"args": [
"-y",
"firecrawl-mcp"
],
"env": {
"FIRECRAWL_API_KEY": "sk_live_ohno-this-should-NOT-be-in-git" // 💀
}
}
}
}
This is a security nightmare waiting to happen. One accidental commit and your keys are exposed in your Git history.
💯 The Solution
get-mcp-keys loads your API keys from a secure file in your home directory, keeping them out of your repositories entirely.
⚡ Quick Start
1. Create a .mcprc file in your home directory
touch ~/.mcprc
chmod 600 ~/.mcprc # Make it readable only by you
3. Add your API keys to the file
# ~/.mcprc
FIRECRAWL_API_KEY="your_actual_api_key_here"
BRAVE_API_KEY="another_secret_key_here"
# Add any other MCP server keys you use
4. Update your MCP configuration to use get-mcp-keys
{
"mcpServers": {
"firecrawl": {
"command": "npx",
"args": [
"@masonator/get-mcp-keys", // 🔐
"npx",
"-y",
"firecrawl-mcp"
]
}
}
}
That's it! The get-mcp-keys utility will:
- Load your API keys from
~/.mcprc - Inject them as environment variables
- Run your MCP server command with the keys available
🛡️ Security
- Your API keys stay in your home directory
- Keys are never committed to repositories
- Keys are loaded only when needed
- Debug output shows only first/last few characters of keys
🧰 Supported MCP Servers
Works with any MCP server that needs environment variables, including:
- FireCrawl
- Brave Search
- Supabase
- And any other MCP servers you configure!
🔍 How It Works
get-mcp-keys reads your .mcprc file, adds those environment variables to the current environment, and then executes whatever command you specify after it in the args list. It's simple yet effective!
📋 License
MIT
⭐ If this saved you from committing your keys, star the repo!
相关推荐
Evaluator for marketplace product descriptions, checks for relevancy and keyword stuffing.
Confidential guide on numerology and astrology, based of GG33 Public information
A geek-themed horoscope generator blending Bitcoin prices, tech jargon, and astrological whimsy.
Therapist adept at identifying core issues and offering practical advice with images.
Reviews
1
(1)
user_G3UYoVzh
2025-04-16
I'm a loyal fan of get-mcp-keys! StuMason has really outdone himself with this application. The interface is user-friendly and the functionality is top-notch. It's incredibly easy to generate keys for various MCP applications. Whether you're a developer or just need the keys for everyday use, this tool is indispensable. Highly recommend checking out StuMason's work at the provided GitHub link.