Blog Releases Issues Docs Download Status Looking Glass Contact Sales
Network Resilience Recovery Security Immutable Vault Tamper-Evident Audit Pricing
Developers
Developer overviewCLI, SDKs, webhooks InfrastructureDocker, K8s, Terraform, CI/CD. AI AgentsClaude Code, Codex, Cursor, Hermes, OpenClaw. MSP ToolsDatto, NinjaOne, ConnectWise, N-able. Browser extensionAutofill, device-based login, generator Mobile appsNative iOS and Android Claude CodeScoped tokens CodexOpenAI integration CursorAgent mode Hermes AgentHermes Agent by Nous Research OpenClawAgent resolver ImportFrom any password manager
Resources
Blog Releases Issues Docs Download Status Looking Glass Contact Sales
Solutions
Consumer SMB Enterprise MSP
Language
🇺🇸 English 🇮🇩 Bahasa Indonesia 🇩🇰 Dansk 🇩🇪 Deutsch 🇪🇸 Español 🇫🇷 Français 🇮🇹 Italiano 🇳🇱 Nederlands 🇳🇴 Norsk 🇵🇱 Polski 🇧🇷 Português 🇫🇮 Suomi 🇸🇪 Svenska 🇻🇳 Tiếng Việt 🇹🇷 Türkçe 🇷🇺 Русский 🇺🇦 Українська 🇮🇳 हिन्दी 🇹🇭 ไทย 🇨🇳 中文 🇯🇵 日本語 🇰🇷 한국어
Sign in 영원히 무료 Get started

통합 가이드

clavitor + OpenAI Codex

Give your Codex agent access to credentials and 2FA codes — without exposing card numbers, passports, or recovery codes.

What your agent sees

공유 필드

Your agent reads these to help you code, deploy, and authenticate.

  • API keys (GitHub, AWS, Stripe, OpenAI...)
  • SSH 호스트 자격 증명
  • 데이터베이스 연결 문자열
  • TOTP 시드 — 요청 시 실시간 2FA 코드 생성
  • 서비스 계정 비밀번호

What your agent never sees

개인 필드

지문, 얼굴 인식 또는 보안 키를 사용해 클라이언트 측에서 암호화돼요. 서버에는 암호문만 저장되며, 키가 없으면 접근할 수 없어요.

  • 신용카드 번호 및 CVV
  • 여권 및 정부 발급 신분증
  • 복구 코드 및 시드 구문
  • 주민등록번호
  • 은행 계좌 정보

설정

Create an agent, initialize the CLI on the machine where Codex runs.

1. 에이전트 생성

Open your vault -> Agents -> Create. Name it "Codex" and choose which entries it can access. Copy the setup token.

2. CLI 초기화

$ echo "$CLAVITOR_TOKEN" | clavitor-cli init

3. Run with the proxy

Point Codex at the Clavitor proxy. Credentials are injected into API calls transparently — no keys in the environment.

$ export HTTPS_PROXY=http://localhost:1983
$ codex

CLI and proxy — by design, no REST or MCP

The agent surface is capability only, never enumeration. Codex fetches credentials by name through the CLI or transparently through the HTTPS proxy. There is no agent-facing list, search, browse, or discover endpoint — that's a deliberate architectural choice, not a missing feature.

CLI — one value at a time

$ clavitor-cli get "GitHub" --field password
$ clavitor-cli totp "GitHub"
$ clavitor-cli render app.config.json

Proxy — transparent injection

$ export HTTPS_PROXY=http://localhost:1983
$ curl -H "Authorization: Bearer clavitor://OpenAI/key" \
    https://api.openai.com/v1/models

One vault, multiple agents

Running agents on different projects? Create a separate agent for each.

Work agent

Scoped to GitHub, AWS, Jira, and Slack credentials

Personal agent

Scoped to email, social media, and cloud storage

Deploy agent

Scoped to SSH keys, database creds, and API tokens

모든 접근이 기록돼요

The audit log records which agent accessed which credential, when, and from where.

# TIME                 ACTION  ENTRY               ACTOR
2026-03-08 10:23:14  read    github.com          cli:codex
2026-03-08 10:23:15  totp    github.com          cli:codex
2026-03-08 11:45:02  read    openai-prod         proxy:codex
2026-03-08 14:12:33  read    aws-production      cli:deploy-agent

시작하기

무료로 시작하기요금제 확인하기