# Agent Vault

## Docs

- [Agents](https://docs.agent-vault.dev/agents/overview.md): Understand how agents connect to Agent Vault and how to manage them.
- [Agent protocol](https://docs.agent-vault.dev/agents/protocol.md): How agents authenticate, discover services, route requests through HTTPS_PROXY/HTTP_PROXY, and propose changes through Agent Vault.
- [Connect a coding agent](https://docs.agent-vault.dev/guides/connect-coding-agent.md): Connect Claude Code, Cursor, or any chat-based coding agent to Agent Vault.
- [Connect a custom agent](https://docs.agent-vault.dev/guides/connect-custom-agent.md): Wire up a custom agent or script to Agent Vault through HTTPS_PROXY/HTTP_PROXY and the transparent CA.
- [Deploy your agent in a container](https://docs.agent-vault.dev/guides/deploy-agent-container.md): Run an Agent Vault-wrapped agent in an unattended container (k8s, Fly, ECS) using a pre-supplied token — no interactive `auth login` required.
- [Run Hermes on a VPS](https://docs.agent-vault.dev/guides/hermes-on-vps.md): Keep real credentials off the agent host by routing every outbound call through Agent Vault on a separate VPS.
- [Instance Settings](https://docs.agent-vault.dev/guides/instance-settings.md): Configure instance-wide settings for your Agent Vault server.
- [OAuth for Claude Code](https://docs.agent-vault.dev/guides/oauth-claude-code.md): Manage Claude Code's OAuth tokens through Agent Vault so agents never hold real credentials.
- [Run OpenClaw on a VPS](https://docs.agent-vault.dev/guides/openclaw-on-vps.md): Keep real credentials off the agent host by routing every outbound call through Agent Vault on a separate VPS.
- [Slack agent template](https://docs.agent-vault.dev/guides/slack-agent-template.md): Build a custom Slack agent that uses Agent Vault for brokered credentials.
- [Configure Email SMTP](https://docs.agent-vault.dev/guides/smtp.md): Configure SMTP to enable email verification, vault invites, and notifications.
- [Introduction](https://docs.agent-vault.dev/index.md): A credential broker for AI agents to prevent credential exfiltration.
- [Installation](https://docs.agent-vault.dev/installation.md): Get a server running in under a minute.
- [Credential stores](https://docs.agent-vault.dev/learn/credential-stores.md): Where a vault's credentials come from: Agent Vault's local DB, or an external system like Infisical.
- [Credentials](https://docs.agent-vault.dev/learn/credentials.md): Store and manage the credentials that Agent Vault attaches to proxied requests.
- [Permissions](https://docs.agent-vault.dev/learn/permissions.md): Understand how instance roles and vault roles control access across Agent Vault.
- [Proposals](https://docs.agent-vault.dev/learn/proposals.md): Review, approve, and manage agent-initiated credential and service changes.
- [Security](https://docs.agent-vault.dev/learn/security.md): How Agent Vault protects credentials at rest, in transit, and across the network.
- [Services](https://docs.agent-vault.dev/learn/services.md): Define which services your agents can access and how credentials are attached.
- [Vaults](https://docs.agent-vault.dev/learn/vaults.md): Create vaults and manage team access with invites and roles.
- [Claude Code](https://docs.agent-vault.dev/quickstart/claude-code.md): Learn how to connect Claude Code to Agent Vault so it can make authenticated API requests without ever seeing your credentials.
- [Codex](https://docs.agent-vault.dev/quickstart/codex.md): Learn how to connect Codex to Agent Vault so it can make authenticated API requests without ever seeing your credentials.
- [Cursor](https://docs.agent-vault.dev/quickstart/cursor.md): Learn how to connect Cursor to Agent Vault so it can make authenticated API requests without ever seeing your credentials.
- [Custom Agent](https://docs.agent-vault.dev/quickstart/custom-agent.md): Wire up any custom agent, harness, or application so its outbound API calls route through Agent Vault for credential injection.
- [Hermes Agent](https://docs.agent-vault.dev/quickstart/hermes-agent.md): Learn how to connect Hermes Agent to Agent Vault so it can make authenticated API requests without ever seeing your credentials.
- [OpenClaw](https://docs.agent-vault.dev/quickstart/openclaw.md): Learn how to connect OpenClaw to Agent Vault so it can make authenticated API requests without ever seeing your credentials.
- [OpenCode](https://docs.agent-vault.dev/quickstart/opencode.md): Learn how to connect OpenCode to Agent Vault so it can make authenticated API requests without ever seeing your credentials.
- [CLI reference](https://docs.agent-vault.dev/reference/cli.md): Complete reference for all Agent Vault CLI commands.
- [Docker](https://docs.agent-vault.dev/self-hosting/docker.md): Run Agent Vault in a Docker container
- [Environment variables](https://docs.agent-vault.dev/self-hosting/environment-variables.md): Configuration for deploying an instance of Agent Vault.
- [Fly.io](https://docs.agent-vault.dev/self-hosting/fly-io.md): Deploy Agent Vault to Fly.io with persistent storage
- [Linux & macOS](https://docs.agent-vault.dev/self-hosting/local.md): Install and run Agent Vault on Linux or macOS using the install script
- [Maintenance](https://docs.agent-vault.dev/self-hosting/maintenance.md): Verify release signatures and upgrade an existing Agent Vault installation.
- [Overview](https://docs.agent-vault.dev/self-hosting/overview.md): Choose how to deploy Agent Vault.
- [PostgreSQL Database](https://docs.agent-vault.dev/self-hosting/postgres.md): Deploy Agent Vault with PostgreSQL for production and multi-instance setups
- [Tutorial](https://docs.agent-vault.dev/tutorial.md): Walk through your first vault, service, and agent end to end.