npm package discovery and stats viewer.

Discover Tips

  • General search

    [free text search, go nuts!]

  • Package details

    pkg:[package-name]

  • User packages

    @[username]

Sponsor

Optimize Toolset

I’ve always been into building performant and accessible sites, but lately I’ve been taking it extremely seriously. So much so that I’ve been building a tool to help me optimize and monitor the sites that I build to make sure that I’m making an attempt to offer the best experience to those who visit them. If you’re into performant, accessible and SEO friendly sites, you might like it too! You can check it out at Optimize Toolset.

About

Hi, 👋, I’m Ryan Hefner  and I built this site for me, and you! The goal of this site was to provide an easy way for me to check the stats on my npm packages, both for prioritizing issues and updates, and to give me a little kick in the pants to keep up on stuff.

As I was building it, I realized that I was actually using the tool to build the tool, and figured I might as well put this out there and hopefully others will find it to be a fast and useful way to search and browse npm packages as I have.

If you’re interested in other things I’m working on, follow me on Twitter or check out the open source projects I’ve been publishing on GitHub.

I am also working on a Twitter bot for this site to tweet the most popular, newest, random packages from npm. Please follow that account now and it will start sending out packages soon–ish.

Open Software & Tools

This site wouldn’t be possible without the immense generosity and tireless efforts from the people who make contributions to the world and share their work via open source initiatives. Thank you 🙏

© 2026 – Pkg Stats / Ryan Hefner

safevibe

v0.3.4

Published

Safevibe CLI - Simple personal secret vault for AI developers and amateur vibe coders

Vulnerabilities

Powered byPowered by Snyk
  • 0High
  • 0Medium
  • 0Low

Links

Git

Maintainers

edonadeiedonadei

Keywords

clisecretsaizero-knowledgeencryptionsafevibesecret-managementsecuritymcpcursormodel-context-protocolapi-keysagentsopenaianthropic

Readme

Safevibe CLI

Zero-knowledge secret management for AI developers. Ship agents, not API keys.

Installation

Install globally via npm:

npm install -g safevibe

Or use with npx (no installation required):

npx safevibe init

Quick Start

  1. Initialize Safevibe:

    safevibe init

  2. Authenticate with Google OAuth (opens browser automatically)

  3. Start the MCP server for Cursor integration:

    safevibe start

  4. Use Cursor to manage secrets via MCP tools:

    • "Store my OpenAI API key securely"
    • "Get my database password"
    • "What secrets do I have stored?"
    • "Rotate my API key"

Commands

safevibe init

Initialize Safevibe with Google OAuth authentication.

Options:

  • --force - Overwrite existing configuration
  • --backend-url <url> - Custom backend URL (default: https://safevibe-backend.vercel.app)

What it does:

  • Sets up Google OAuth authentication
  • Generates local encryption keys
  • Configures backend connection
  • Prepares MCP server integration

safevibe start

Start the MCP server for Cursor integration.

Options:

  • -d, --daemon - Run in daemon mode
  • -p, --port <port> - Port number

What it does:

  • Starts the Model Context Protocol server
  • Enables Cursor integration
  • Provides MCP tools for secret management

Cursor Integration

Safevibe integrates with Cursor via the Model Context Protocol (MCP). After running safevibe init, add the generated configuration to your Cursor settings:

  1. Open Cursor
  2. Press Cmd+, (macOS) or Ctrl+, (Windows/Linux)
  3. Click "Open Settings (JSON)"
  4. Add the configuration shown after safevibe init
  5. Restart Cursor

Available MCP Tools

Once integrated, Cursor provides these tools for secret management:

  • save_key - Store encrypted secrets
  • get_key - Retrieve encrypted secrets
  • list_keys - List all your secrets
  • rotate_key - Rotate secret versions

Usage Examples

Ask Cursor natural language questions:

"Store my OpenAI API key sk-abc123 securely"
"What's my database password?"
"List all my secrets"
"Rotate my GitHub token"

Why This Approach?

The Safevibe CLI is intentionally minimal:

  • 🎯 Focused: Only handles setup and server management
  • 🔗 Integrated: All secret operations through Cursor's natural interface
  • 🚀 Efficient: No context switching between CLI and editor
  • 🤖 AI-Native: Designed for AI-assisted development workflows

Traditional CLI commands like save, get, list are replaced by natural language interactions with Cursor.

Security

  • Zero-knowledge encryption: Secrets are encrypted locally before sending to the server
  • End-to-end security: Safevibe never sees your secrets in plain text
  • Google OAuth: Secure authentication with industry-standard OAuth 2.0
  • Audit logs: Track all secret access and modifications

Requirements

  • Node.js 20 or higher
  • Google account for authentication
  • Cursor editor for secret management

Configuration

Configuration is stored in ~/.safevibe/:

  • config.json - CLI configuration and authentication
  • keys.json - Local encryption keys

Troubleshooting

Authentication Issues

# Re-initialize with force flag
safevibe init --force

Connection Issues

# Check backend connectivity
curl https://safevibe-backend.vercel.app/api/health

MCP Server Issues

# Restart the MCP server
safevibe start

Permission Issues

# Check config directory permissions
ls -la ~/.safevibe/

Support