Hand AI the kingdom.
Keep the keys.
The macOS credential manager for developers. Stored in the Keychain, unlocked by Touch ID, shared with AI agents on your terms.
- macOS Keychain
- Touch ID
- MCP-native
- Free
Your .env is a liability. Your Keychain isn't.
Every credential stored in the macOS Keychain — never in a .env file, never in your shell history, never pasted into an AI chat.
Credentials deserve better than this.
Developers work with dozens of secrets across projects. The current workflow is broken.
"Here's my API key..."
Pasting secrets into AI chats, Slack messages, or terminal prompts. Once it’s in the context, you can’t take it back.
The .env shuffle
Scattered .env files across projects. Copy-pasting between them. Accidentally committing one to git.
Expired and forgotten
An API key expires. You find out when production breaks. No warnings, no tracking. Just surprises.
Secure by design. Fast by habit.
Everything you need to manage credentials without friction, and without exposing them.
Touch ID protected
Every secret retrieval requires biometric authentication. No master passwords. No unlocked vaults sitting open on your desktop.
Quick Access
Press Cmd+Shift+1 from any app. A Spotlight-style panel opens. Search, Touch ID, copied. Under 2 seconds.
Share Secrets (Beta)
Hand a credential to a teammate without pasting plaintext into Slack. Right-click any secret, send a sealed .noxkey file via Messages or AirDrop, recipient saves behind Touch ID.
Organized by project
Name credentials as org/project/KEY and they group automatically. Filter instantly. No more hunting through .env files.
Credential types
Store API keys, login pairs, recovery codes, and plain secrets. Each with a dedicated form and type badge.
Expiry tracking
Set expiry dates on credentials. Get automatic warnings before they expire. Never find out from a production outage again.
Session unlock
Unlock a project prefix once with Touch ID. Access all credentials in that group without repeated prompts during your work session.
Clipboard auto-clear
Copied secrets are automatically cleared from your clipboard after 30 seconds. No stale credentials in your paste buffer.
macOS Keychain native
No proprietary vault. No sync servers. Everything lives in the macOS Keychain, encrypted by Apple’s Secure Enclave.
One keychain. Three ways to use it.
Built for AI agents first, with first-class surfaces for humans too.
For AI agents — MCP
Claude Code and other MCP clients call noxkey_get. The value is handed over as an env var. It never enters the model's context, never hits stdout, never gets copy-pasted.
For humans — Quick Access panel
Hit Cmd+Shift+1 from any app — or click the menu bar icon — to summon the Spotlight-style panel. Search, authenticate with Touch ID, and the value is on your clipboard — cleared 30 seconds later.
For trust — Local audit log
Every reveal, every approval, every share — written to a signed log on your Mac. Open the audit view to see exactly which agent asked for which key, and when.
Built for AI agents, end-to-end.
NoxKey ships with a Model Context Protocol server. Claude Code, Cursor, and any MCP-aware agent can ask for a secret — and get it — without the value ever touching the conversation.
Fits your existing workflow.
Noxkey integrates with the tools you already use, without requiring any changes.
Spotlight panel
Hit Cmd+Shift+1 from any app, search, Touch ID, and the value lands on your clipboard — auto-cleared after 30 seconds.
Claude Code & AI agents
Native MCP server. Agents call noxkey_get and the value loads as an env var — never into the conversation, never into stdout.
Teammate handoff
Right-click any secret to send a sealed .noxkey file via Messages or AirDrop. The recipient saves it behind their own Touch ID.
Frequently asked questions.
Is NoxKey free?
Yes. NoxKey is completely free. No accounts, no subscriptions, no telemetry.
Does NoxKey send my secrets anywhere?
No. The app has zero outbound network connections — enforced by macOS App Sandbox at the kernel level. No update checks, no telemetry, no beacons. Updates arrive exclusively through the Mac App Store, and the sandbox entitlements are publicly verifiable in the app bundle.
What happens if I uninstall NoxKey?
Your secrets stay in the macOS Keychain. You can access them through Keychain Access or reinstall NoxKey anytime. Nothing is lost.
Does it work without Touch ID?
NoxKey requires macOS 14.0 or later with Touch ID. On Macs without Touch ID, the system falls back to your device passcode.
Can AI agents see my raw secrets?
No. Agents receive a one-time source command pointing at an encrypted temp file that self-deletes the moment it's sourced (with a 120-second hard timeout if it never is). The raw value never enters the AI context. Bulk-export variants like --raw, load, and export are hard-blocked for agent callers.
How is this different from 1Password or Bitwarden?
NoxKey is built for developers and AI workflows, not browser autofill. No sync servers, no master password, no subscription. Everything stays local in the macOS Keychain.
Stop sharing secrets. Start managing them.
Now on the Mac App Store — app, MCP server, and Touch ID in one install.
Requires macOS 14.0 or later with Touch ID.
Visit noxkey.ai for docs, AI agent setup, and more.
Latest updates
How to Keep Your API Keys Safe When Using Cursor
Cursor indexes your workspace for AI suggestions. If your .env file is in the workspace, your secrets are in the index. Here's the fix.
Read articleApril 11, 2026Claude Code Security Best Practices — Protect Your Secrets and Your Codebase
Claude Code has full file system access. Here's how to use it safely — from .env protection to encrypted handoffs.
Read articleApril 8, 2026Using MCP to Give AI Agents Safe Access to Secrets
The Model Context Protocol lets AI tools call external services. Here's how to use it for secrets without exposing raw values.
Read article