Cloak

Visit Tool

Cloak protects .env secrets from AI coding agents by encrypting real credentials and replacing them with sandbox values on disk. It ensures agents only see fakes while developers see real values.

Claim this tool

No Views Yet

At a glance

Pricing

Open Source · Free

Free tier

Yes

API

Skill level

Technical

About

What is Cloak?

Cloak is a developer tool designed to protect sensitive .env secrets from being exposed to AI coding agents. It encrypts real API keys, database passwords, and tokens, storing them in a local AES-256-GCM encrypted vault. On disk, Cloak replaces these with structurally valid sandbox values, ensuring AI agents like Claude Code, Cursor, Copilot, and Codex only read fakes. Developers interact with real credentials through editor extensions (VS Code, Cursor, Windsurf) or the CLI, which decrypts values on demand, often gated by Touch ID or password. This zero-cloud solution prevents secrets from traveling over the wire to AI providers and offers an offline recovery system, making it a critical tool for developer security.

Best used for

Ideal for developers who need to protect sensitive .env secrets from AI coding agents, ensuring real credentials are never exposed to AI models. Especially valuable for securing API keys, database passwords, and tokens while maintaining a seamless development workflow with editor integrations and CLI tools.

Common actions

secure environment variables

protect API keys

manage secrets locally

prevent AI data leaks

CLI tooldata protectionVSCode extensionsecure codingenvironment variablesSecuritydev workflowDeveloper tool

Capabilities

Key features

Encrypt .env secrets
Sandbox values on disk
Biometric authentication gate
VS Code extension
CLI for terminal
Offline recovery system
No cloud accounts

Target Audience

developer

Integrations

vs-codecursorwindsurf

Pricing & Plans

Open Source · Free

Free

FAQs

How does Cloak prevent AI agents from reading my real .env secrets?

Cloak encrypts your real secrets into a local vault and replaces them with structurally valid sandbox values on disk. AI agents read these fakes, while your editor or `cloak run` command decrypts and shows you the real values in memory, often requiring biometric authentication.

Is Cloak a cloud-based solution, or does it send my secrets anywhere?

No, Cloak is entirely local and operates with zero cloud accounts or network calls. All encryption, decryption, and secret management happen on your machine. The only optional network request is for `cloak update` to check GitHub releases.

What happens if I lose my recovery key or forget my CLI password?

If you lose both keychain access and your recovery key, you cannot decrypt the vault, but your project structure with sandbox values remains intact. You can re-initialize Cloak. If you only forget your CLI password, you can delete the authentication file and run `cloak init` again to set a new one.

How is Cloak different from existing secret managers like Vault or .gitignore?

Cloak is designed for workstation-level protection against AI agents, unlike team secret managers (Vault, Infisical) which protect production infrastructure. .gitignore only prevents files from being committed to git, not from being read locally by AI agents, which Cloak specifically addresses.

Trending

Subcategories trending in Productivity & Business

Strategy & Planning HR & Recruiting Document Management Legal & Compliance Team Collaboration Startup Tools

Trending

Explore

Browse AI tools by category

Content & Design Productivity & Business Coding & Development AI Agents & Automation Research & Education Wellness & Lifestyle Career Development Marketing & Growth Data & Analytics Customer Support & CX Finance E-commerce