Quick Start

Get up and running with secretctl in 5 minutes.

1. Initialize Your Vault

secretctl init

You'll be prompted to create a master password. This password encrypts all your secrets.

caution

Remember your master password! It cannot be recovered if lost.

2. Add Your First Secret

echo "sk-your-api-key" | secretctl set api/openai

Or interactively (prompts for value):

secretctl set api/openai

3. Retrieve a Secret

secretctl get api/openai

4. Use Secrets in Commands

secretctl run -k "api/*" -- your-command

This injects secrets as environment variables without exposing them in your shell history.

Next Steps

• Managing Secrets - Learn all secret operations
• Running Commands - Advanced environment injection
• MCP Integration - Use with AI agents