One extension. One password. All your API keys encrypted and ready when you need them. Auto-detects keys across 20+ platforms and fills them in one click.
Or install via CLI: npm install -g lockbox-vault
If you're building with AI tools like Claude Code or Cursor, you've probably hit at least one of these.
You forgot to add .env to .gitignore, or your AI tool committed it for you. Now your OpenAI key is public and someone's running up your bill.
Some in .env files, some in browser tabs, some in Slack messages. You've got the same API key in three different projects and can't remember which one is current.
Claude Code asks for your API key and you paste it right into the chat. Now it's in your conversation history, your clipboard, and who knows where else.
One key gets compromised and you're hunting through every project, every .env file, every config to find where you used it. It takes hours.
Lockbox is a MetaMask-style wallet built for API keys. Everything is encrypted locally with AES-256-GCM. Your keys never leave your device unencrypted.
Lockbox detects API key fields on 20+ platforms including OpenAI, Anthropic, Stripe, AWS, and more. One click to fill — no more copy-pasting from text files.
FREEWhen a platform shows you a new API key, Lockbox detects it and offers to save it instantly. Keys go straight into your encrypted vault the moment they appear.
FREEAES-256-GCM encryption with PBKDF2 key derivation. Your keys are encrypted before they ever leave your browser. Even we can't read your vault — true zero-knowledge.
FREESee all your vaults and services at a glance from the web dashboard. Track which keys you have, when they were last used, and your security health score.
Open Dashboard → FREEMCP server integration for Claude Code, Cursor, and Windsurf. Plus a CLI for scripts and automation. Your AI tools can access keys without seeing the actual values.
FREEMetaMask-style recovery phrase. If you forget your password or switch devices, your 12-word phrase restores everything. No account needed, no server dependency.
FREEInstall the extension, create your wallet, and start adding keys. No server to set up. No account required.
Add Lockbox to Chrome with one click. A small lock icon appears in your toolbar — that's your wallet.
Paste keys manually, import from .env files, or let Lockbox auto-capture them as they appear on API platforms. Everything gets encrypted instantly.
Visit any supported platform and Lockbox auto-fills your keys. Or use the CLI and MCP server to let your AI tools access keys safely. Nothing is saved to disk.
Other tools were built for DevOps teams or general password management. Lockbox was built from day one for people who build with AI.
| Feature | Lockbox | Doppler | Infisical | 1Password | EnvKey |
|---|---|---|---|---|---|
| Browser extension wallet | ✓ Built-in | ✗ | ✗ | Partial | Shut down |
| Works with AI tools | ✓ MCP + CLI | ✗ | ✗ | ✗ | Shut down |
| Auto-detect API keys | ✓ 20+ sites | ✗ | ✗ | ✗ | Shut down |
| Works offline | ✓ | ✗ Cloud only | ✗ Cloud only | Partial | Shut down |
| Recovery phrase | ✓ 12-word | ✗ | ✗ | ✗ | Shut down |
| Open source | ✓ MIT | ✗ | ✓ | ✗ | Shut down |
| Free tier | ✓ Generous | Limited | Limited | Trial only | — |
| Paid price | $5/mo | $7–21/user | $8–18/user | $3–8/user | — |
The wallet extension and CLI are free. Upgrade to Pro for unlimited vaults, cloud sync, and premium features.
Install the Lockbox wallet extension and never worry about leaking API keys again. Free, open source, and encrypted by default.