🚧 SanctumAI is in beta. APIs may change before v1.0.

SanctumAI Documentation

The Identity Control Plane for Autonomous AI Agents.

SanctumAI is a credential management platform purpose-built for AI agents. It provides encrypted vaults, policy-controlled access, time-limited leases, and tamper-evident audit logging β€” so your AI tools get the secrets they need without the security risks of .env files.

Why SanctumAI?

AI agents are the new workforce β€” but they access secrets like it’s 2015. API keys in plaintext files, tokens in environment variables, no audit trail, no access control. SanctumAI fixes this:

  • Encrypted at rest β€” AES-256-GCM envelope encryption. No plaintext, ever.
  • Policy engine β€” Deny-by-default. Agents only access what they’re explicitly allowed.
  • Time-limited leases β€” Secrets expire automatically. No lingering credentials.
  • Tamper-evident audit β€” HMAC-chained log. Every access recorded and verifiable.
  • MCP native β€” Works with Cursor, Claude Desktop, Claude Code, Windsurf, VS Code.
  • Local-first β€” Your secrets never leave your machine. No cloud dependency.

Quick Start

Get from zero to a working vault in under 10 minutes:

# Install
cargo install sanctum
 
# Create a vault
sanctum init
 
# Store a secret
sanctum store openai/api_key --type api_key
 
# Register an AI agent
sanctum agent register cursor-agent
 
# Grant access
sanctum policy add cursor-access \
  --principal "agent:cursor-agent" \
  --resources "openai/*" \
  --actions retrieve
 
# Connect to your AI editor
sanctum mcp serve

β†’ Full Getting Started Guide

Architecture at a Glance

β”Œβ”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”
β”‚                   AI Editors                         β”‚
β”‚  Cursor Β· Claude Desktop Β· Claude Code Β· Windsurf   β”‚
β”‚                                                      β”‚
β”‚         MCP (Model Context Protocol)                 β”‚
β””β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”¬β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”˜
                       β”‚
β”Œβ”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β–Όβ”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”
β”‚                   SanctumAI                          β”‚
β”‚  β”Œβ”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β” β”Œβ”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β” β”Œβ”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β” β”‚
β”‚  β”‚ Policy   β”‚ β”‚ Lease    β”‚ β”‚ Audit Log            β”‚ β”‚
β”‚  β”‚ Engine   β”‚ β”‚ Manager  β”‚ β”‚ (HMAC chain)         β”‚ β”‚
β”‚  β””β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”˜ β””β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”˜ β””β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”˜ β”‚
β”‚  β”Œβ”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β” β”‚
β”‚  β”‚          Encrypted Vault (AES-256-GCM)          β”‚ β”‚
β”‚  β””β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”˜ β”‚
β””β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”˜

SDKs & Tools

ToolInstallLanguage
CLIcargo install sanctumRust binary
Rust SDKcargo add sanctum-aiRust
Python SDKpip install sanctum-aiPython 3.9+
Node SDKnpm install sanctum-aiNode 16+ / TypeScript
Go SDKgo get github.com/SanctumSec/sanctum-sdk-goGo 1.21+
Overview