OneCLI tackles a growing security problem: AI agents shouldn't hold raw API keys. The open-source tool creates a secure gateway that sits between agents and the services they call, storing credentials in an encrypted vault and injecting them only when needed. Instead of baking secrets into every agent, developers store credentials once and give agents placeholder keys.

Built with a Rust gateway and Next.js dashboard, OneCLI runs in a single Docker container with embedded PGlite. The system matches requests by host and path, verifies agent permissions, swaps placeholder keys for real credentials, and forwards requests—all without exposing secrets to the agent. AES-256-GCM encryption protects stored credentials, which are decrypted only at request time.

Developers can spin up OneCLI with one Docker command or Docker Compose. The tool supports any agent framework that can set an HTTPS_PROXY, works with pattern-based routing, and includes audit logging and human approval workflows for sensitive actions. OneCLI is Apache-2.0 licensed and available on GitHub.