GitHub Repository

Factorly is a local runtime for agent tool chains. It manages tool calls, injects credentials from an encrypted vault, enforces governance rules, and logs everything. Your agent sees workflows, tools, and data. Secrets stay secret.

21 starsGo

I made a local proxy for AI tool calls to keep my API keys safe

Name: I made a local proxy for AI tool calls to keep my API keys safe
Availability: InStock
Author: jsherer

by jsherer·May 5, 2026·5 points·2 comments

Visit Project View on HN

AI Analysis

●●●BangerSolve My ProblemSlick

Finally, a way to use MCP tools without hardcoding API keys in every prompt.

Strengths

•Unified config for REST APIs, CLI commands, and MCP servers simplifies tool management.
•AES-256-GCM per-entry encryption keeps secrets strictly out of the agent's context window.
•Automatic audit logging of all tool interactions provides necessary compliance trails.

Weaknesses

•Requires agents to support proxy configuration, limiting compatibility with some hosted models.
•Local-only architecture means remote CI/CD pipelines need a separate deployment strategy.

Similar Projects

Security●●Solid

Aquaman keeping your OpenClaw secrets safe

The plugin-proxy split is smart: credentials live in a backend (Keychain/1Password/Vault/etc.) and a separate proxy injects auth headers over a UDS so the agent process never handles raw keys. It autosurveys plugin configs and channels to migrate plaintext secrets and even ships a Docker image and CLI for local setups — very practical for anyone already on OpenClaw, though it’s narrowly focused and adds an extra trusted component that deserves an audit.

Niche GemSolve My Problem

tech4242

104mo ago

Security●●●Banger