// zero credential exposure

They do the work. They never see your passwords.

AI agents, consultants, and freelancers get full access to your tools — without ever seeing a single credential. You stay in control.

// products

Three products. One principle.

Nobody should need your password to do their job.

01 open source

Vault MCP

MCP server for AI agents. Log into websites, call APIs, import .env files — agent never sees a password. AES-256 encryption, SHA-256 audit chain, TOTP.

  • 11 MCP tools
  • Chrome CDP login
  • Bearer / Basic / Query auth
  • Claude, GPT, any agent
02 coming soon

NDA-less Consulting

Consultant applies methodology to your systems through a credential proxy. They see dashboards and results — never the underlying passwords or API keys.

  • Screen-level isolation
  • Session recording
  • Zero data extraction
  • No NDA paperwork needed
03 coming soon

Managed Freelancer

Hire a freelancer. They work with your tools — Jira, Shopify, AWS, whatever — through credential proxy. You grant access, they work, you revoke anytime.

  • Instant access grant/revoke
  • Per-session credential scope
  • Full audit trail
  • Works with any website
// how it works

Credentials stay with you. Access flows through us.

01

Store locally

Your passwords and API keys are encrypted on your machine with AES-256-GCM. They never leave your device.

02

Request access

Agent, consultant, or freelancer asks to use a service. They describe what they need — not the credentials.

03

Proxy fills creds

Vault decrypts and injects credentials into browser or API call. The worker sees the result, not the password.

04

Audit & revoke

Every access logged with tamper-proof hash chain. Revoke with one click. Session creds auto-expire.

// use cases

Who uses ZeroCreds

AI coding assistant logs into GitHub

Claude uses vault_login to authenticate on GitHub, creates a PR, pushes code. Never sees the password or SSH key.

Product: Vault MCP

Marketing consultant reviews ad campaigns

Consultant analyzes your Meta Ads and Google Ads dashboards through credential proxy. They see the data, not the login.

Product: NDA-less Consulting

AI agent makes Stripe API calls

Agent calls Stripe API through vault_api_request. Bearer token injected at proxy level. Agent gets the response, never the key.

Product: Vault MCP

Freelance dev deploys to your AWS

Freelancer accesses AWS console via session-scoped credential. You see every action in the audit log. Revoke after project ends.

Product: Managed Freelancer

Security auditor reviews your infra

Auditor inspects your cloud setup without extracting credentials. Their session is recorded. No NDA needed for the credential part.

Product: NDA-less Consulting

VA manages your Shopify store

Virtual assistant processes orders, updates products, handles customer service — all through credential proxy. You revoke access when the contract ends.

Product: Managed Freelancer
// vault mcp — available now

Install in 2 minutes

Open source. MIT license. Works with any MCP-compatible agent.

terminal
# install
npm install -g chillai-vault-mcp

# initialize vault
vault-mcp init

# add credential (opens secure form)
vault-mcp add github

# start mcp server
vault-mcp start
claude_desktop_config.json
{
  "mcpServers": {
    "vault": {
      "command": "vault-mcp",
      "args": ["start"],
      "env": {
        "VAULT_PASSPHRASE": "your-passphrase"
      }
    }
  }
}
vault_addvault_loginvault_api_request vault_removevault_updatevault_check vault_importvault_templatesvault_list vault_statusvault_audit

Compatible with OpenAI, Anthropic, Stripe, GitHub, GitLab, Jira, Slack, Twilio, SendGrid, Google Maps, Shopify, AWS, and 25+ more.

// pricing

Start free. Scale when ready.

Open source tools are free forever. Managed services for teams and enterprises.

open source

Free

$0 / forever
Self-hosted, unlimited credentials
  • Vault MCP — all 11 tools
  • AES-256-GCM encryption
  • SHA-256 audit trail
  • TOTP / 2FA support
  • .env import, templates
  • Chrome CDP web login
  • Bearer, Basic, Query auth
  • Community support (GitHub)
Get started →
team

Business Suite

$49 / mo, up to 5 users
Managed workspace for small teams
  • Everything in Free
  • Shared credential vault
  • Team activity dashboard
  • Credential leak monitoring
  • Local security scanner
  • Google Workspace integration
  • Colleague access oversight
  • Priority email support
Coming soon — notify me
enterprise

Enterprise

Custom
For teams >5, compliance, SSO
  • Everything in Business
  • SSO / SAML integration
  • Advanced threat monitoring
  • Compliance reports (SOC 2)
  • NDA-less consulting access
  • Managed freelancer portal
  • Custom auth pattern plugins
  • Dedicated support + SLA
Book a call →

Stop sharing passwords.

Start with the free open-source tools. Upgrade when your team needs managed security.

GitHub npm Article Book a call