Protect every API key in your project in under 2 minutes.
Create a free account — no credit card required.
Free tier includes 3 keys and 10,000 proxy calls per month. No expiry.
Run one command in your project directory.
Each key is Shamir-split in your terminal. The plaintext never leaves your machine. Your .env is rewritten with one project ID. Your code doesn't change.
Copy your new env vars to your hosting platform. None of them are secrets.
These are all public identifiers — safe to commit. Your real keys exist only as encrypted Shamir shares on the proxy.
Growing provider support. 250 provider signatures, including OpenAI, Azure OpenAI, Anthropic, Google/Gemini, DeepL, MiniMax, Voyage AI, Jina AI, AI21, AssemblyAI, Hume AI, RunPod, Browserbase, Stripe, Chargebee, Adyen, Twilio, Telnyx, Vonage, MessageBird, Plivo, Paystack, Lemon Squeezy, Groq, Mistral, Together, Fireworks, DeepSeek, xAI, OpenRouter, Resend, SendGrid, Linear, Notion, Figma, Asana, ClickUp, monday.com, Todoist, Coda, Shortcut, GitHub, GitLab, Bitbucket, Jira, Zendesk, Freshdesk, Netlify, Render, Heroku, Railway, Fly.io, DigitalOcean, Linode, Vultr, Hetzner, Scaleway, Fastly, HCP Terraform, Pulumi, npm Registry, CircleCI, Buildkite, Semgrep, Qdrant, Turso, Meilisearch, Typesense, Elasticsearch, Directus, Strapi, Hygraph, DatoCMS, fal.ai, Serper, Make, n8n, Axiom, InfluxDB, Rollbar, BugSnag, Codecov, BrowserStack, Auth0, FusionAuth, Aiven, CockroachDB Cloud, DataStax Astra, Redis Cloud, ClickHouse Cloud, Razorpay, Mollie, GoCardless, Mercado Pago, Wise, Shippo, EasyPost, ShipEngine, Front, Help Scout, Calendly, Typeform, Productboard, Dropbox, Box, Pinata, DeepInfra, Baseten, Cartesia, Unstructured, Luma AI, Portkey, Scale AI, Braintrust, Eden AI, VirusTotal, IPinfo, Apollo, Buttondown, Close, Greenhouse Harvest, Xendit, Midtrans, Coinbase Commerce, Lokalise, Crowdin, Sendbird, Mux, bunny.net, Prerender.io, ImageKit, SambaNova, NVIDIA NIM, FriendliAI, Hyperbolic, Vapi, Retell AI, Rev AI, Speechmatics, Gladia, Soniox, Resemble AI, Infobip, Mailchimp Marketing, Fauna, Zilliz Cloud, Pipedream, Attio, Recurly, Phrase Strings, Transifex, RevenueCat, Qovery, Northflank, Koyeb, Deno Deploy, Snyk, Doppler, PagerDuty, Grafana, Honeycomb -- plus custom APIs via npx @vaultproof/init custom, vault-only runtime secrets via npx @vaultproof/init secrets add, and Ansible/Terraform secrets via npx @vaultproof/init netops.
That's it. Your app is protected. ↓ Come back here when you need to add or rotate keys.
Added a new provider to your app? Protect it.
Add the new key to your .env, then run init again. It detects the new key and adds it to your existing project.
npx @vaultproof/init
Click + on your project, paste the key. Provider is auto-detected from the key's shape.
Open Keys Dashboard →Provider rotated your key? Update VaultProof in 30 seconds. Your project ID stays the same — zero code changes.
npx @vaultproof/init