onecli
OneCLI is an open-source credential gateway that lets AI agents access APIs without ever seeing real credentials. You store secrets once in OneCLI's encrypted vault, and the gateway transparently swaps fake placeholder keys for real ones on outbound requests—agents just make normal HTTP calls.
Key facts
Objective fields from the source. Values we can't verify are shown as “Unknown” rather than guessed.
| Field | Value |
|---|---|
| Repository | onecli/onecli |
| Owner | onecli |
| Primary language | TypeScript |
| License | Apache-2.0 — OSI-approved |
| Stars | 2.5k |
| Forks | 133 |
| Open issues | 76 |
| Latest release | v1.41.0 (2026-07-07) |
| Last updated | 2026-07-07 |
| Source | https://github.com/onecli/onecli |
What onecli is
TypeScript/Node.js dashboard (Next.js) paired with a Rust HTTP gateway that intercepts outbound requests and performs credential injection via pattern matching (host/path), with AES-256-GCM encryption at rest and token-based access control. Supports Google OAuth, PostgreSQL persistence, and optional Bitwarden vault integration.
Get the onecli source
Clone the repository and explore it locally.
git clone https://github.com/onecli/onecli.gitcd onecli# follow the project's README for install & configurationNeed it deployed, integrated, or customized instead? DEV.co ships production installs.
Best use cases
Implementation considerations
- PostgreSQL dependency required for persistence; local mode (single-user, no login) available for dev but production needs database setup and backups.
- Rust gateway requires compilation and deployment separate from the Node.js dashboard; Docker Compose provided but multi-node/HA scenarios require custom orchestration.
- Agents must use HTTP(S) and be configured to route through the gateway; non-proxied direct API calls bypass credential injection entirely.
- AES-256-GCM encryption key management critical; auto-generation in dev acceptable but production requires secure key rotation and storage strategy.
- Pattern matching (host/path) for credential selection must be configured carefully to avoid collisions or overly broad injection rules.
When to avoid it — and what to weigh
- Extremely low-latency requirements (<10ms gateway overhead critical) — Rust gateway is fast, but network round-trips and pattern matching add latency. Validate performance in your environment before committing to production.
- Existing mature vault ecosystem (HashiCorp Vault, AWS Secrets Manager) already deployed — OneCLI overlaps significantly in functionality. Migration/dual-management may add complexity unless you need AI-agent-specific UX and transparent proxy injection.
- Non-HTTP or exotic transport protocols (gRPC, WebSocket) — OneCLI intercepts HTTP(S) at the gateway level. Agents using other protocols cannot benefit from transparent credential injection.
- Offline-first or air-gapped agent deployments — Requires network access to OneCLI gateway for every credential lookup and injection. Not suitable for environments without reliable connectivity.
License & commercial use
Apache License 2.0 (Apache-2.0). Permissive OSI-approved license allowing commercial use, modification, and distribution with attribution and liability disclaimer.
Apache-2.0 is permissive and allows commercial use. However, this is the project license, not a guarantee of vendor support, SLA, or commercial licensing. Evaluate vendor support options and any downstream dependencies (PostgreSQL, Docker, Google OAuth) for your own commercial terms.
DEV.co evaluation signals
Editorial assessment — not user reviews. Directional, with an explicit confidence level.
| Signal | Assessment |
|---|---|
| Maintenance | Active |
| Documentation | Adequate |
| License clarity | Clear |
| Deployment complexity | Moderate |
| DEV.co fit | Strong |
| Assessment confidence | High |
AES-256-GCM encryption at rest and decryption only at request time are sound practices. Pattern matching (host/path) for credential routing reduces blast radius vs. global injection. No details on key rotation, audit logging volume/retention, or TLS/MITM handling between agents and gateway. Secret Encryption Key auto-generation in dev is acceptable; production requires secure key derivation and rotation strategy. Access token model depends on secure token generation and revocation. No third-party security audit or CVE disclosures mentioned.
Alternatives to consider
HashiCorp Vault
Enterprise-grade secret management with broader protocol support, RBAC, audit logging, and HA. Steeper learning curve and operational overhead; no transparent HTTP proxy injection for agents out-of-the-box.
AWS Secrets Manager / AWS Systems Manager Parameter Store
Cloud-native secret storage with IAM integration, audit trails, and rotation. AWS-only; agents must use AWS SDKs and explicit API calls; no transparent gateway interception.
Bitwarden Secrets Manager
Lightweight, user-friendly credential storage. OneCLI integrates with Bitwarden for on-demand fetch. Lacks transparent proxy injection and agent-specific access control.
Build on onecli with DEV.co software developers
OneCLI eliminates the need to distribute raw API keys to each agent. Deploy the gateway, store credentials once, and let agents access services safely. Start with local mode or reach out to discuss production setup.
Talk to DEV.coRelated on DEV.co
Explore the category and the services that help you build with it.
onecli FAQ
Can I run OneCLI in production without external databases?
Does OneCLI work with agents that don't support HTTP proxies?
How does OneCLI handle credential rotation?
Is OneCLI suitable for air-gapped or offline-first deployments?
Work with a software development agency
From first prototype to production, DEV.co delivers software development services around tools like onecli. Our software development agency staffs experienced software developers and web developers for custom software development, web development, integrations, and ongoing support across mcp servers and beyond.
Secure your AI agent deployments with centralized credential management.
OneCLI eliminates the need to distribute raw API keys to each agent. Deploy the gateway, store credentials once, and let agents access services safely. Start with local mode or reach out to discuss production setup.