mcp-trove
Git-backed vault MCP for plaintext snippets and encrypted secrets, with secure storage and retrieval tools.
๐ก๏ธ AgentReady threat assessment
MAESTRO 7-layer threat model + OWASP AIVSS risk score for mcp-trove, derived from its capabilities.
AIVSS 7.1 ยท High
View MAESTRO 7-layer threat model โOverview
mcp-trove manages a git-backed vault for plaintext snippets and encrypted secrets, enabling secure storage and retrieval via MCP tools. Security surface: it is a secrets store an agent can read โ the encryption key path and access controls are exactly the boundary that stops an injected instruction from dumping stored credentials.
Key features
- Git-backed snippet vault
- Encrypted secret storage
- Secure retrieval tools
- Key-path based encryption
Use cases
- Store and fetch secrets for agent workflows
- Version snippets in a git vault