密钥管理器
Terms
by BytesAgain
Store, rotate, and audit API keys and tokens securely. Use when generating keys, checking strength, rotating tokens, auditing credentials.
安装
claude skill add --url github.com/openclaw/skills/tree/main/skills/ckchzh/terms文档
Terms
Terms v2.0.0 — a security toolkit for managing API keys, tokens, and credentials from the command line. Generate, store, rotate, audit, and revoke secrets — all logged locally with timestamps for full accountability.
Why Terms?
- Works entirely offline — your data never leaves your machine
- Simple command-line interface, no GUI needed
- Timestamped logging for every credential operation
- Export to JSON, CSV, or plain text for compliance evidence
- Automatic history and activity tracking
- Searchable records across all security operations
Getting Started
# See all available commands
terms help
# Check current health status
terms status
# View summary statistics
terms stats
Commands
Security Operations Commands
Each command works in two modes: run without arguments to view recent entries, or pass input to record a new entry.
| Command | Description |
|---|---|
terms generate <input> | Record key/token generation events (API keys created, tokens issued) |
terms check-strength <input> | Log strength assessments (password entropy, key length validation) |
terms rotate <input> | Record rotation events (scheduled rotations, emergency rotations) |
terms audit <input> | Log audit results (access reviews, usage audits, compliance checks) |
terms store <input> | Record storage events (vault entries, secure storage operations) |
terms retrieve <input> | Log retrieval events (key lookups, secret access, credential fetches) |
terms expire <input> | Record expiration events (expired tokens, cert expirations, TTL resets) |
terms policy <input> | Log policy operations (policy creation, enforcement rules, rotation schedules) |
terms report <input> | Create report entries (compliance reports, audit summaries, risk findings) |
terms hash <input> | Record hashing operations (password hashing, integrity checks, checksums) |
terms verify <input> | Log verification events (signature checks, token validation, cert verification) |
terms revoke <input> | Record revocation events (compromised keys, decommissioned tokens) |
Utility Commands
| Command | Description |
|---|---|
terms stats | Show summary statistics across all log categories |
terms export <fmt> | Export all data (formats: json, csv, txt) |
terms search <term> | Search across all entries for a keyword |
terms recent | Show the 20 most recent history entries |
terms status | Health check — version, data dir, entry count, disk usage |
terms help | Show the built-in help message |
terms version | Print version (v2.0.0) |
Data Storage
All data is stored locally in ~/.local/share/terms/. Structure:
generate.log,rotate.log,audit.log, etc. — one log file per command, pipe-delimited (timestamp|value)history.log— unified activity log across all commandsexport.json/export.csv/export.txt— generated export files
Each entry is stored as YYYY-MM-DD HH:MM|<input>. Use export to back up your data anytime.
Requirements
- Bash 4+ (uses
set -euo pipefail) - Standard Unix utilities (
date,wc,du,tail,grep,sed,cat) - No external dependencies or internet access needed
When to Use
- Credential lifecycle management — Track every API key from generation through rotation to revocation, maintaining a complete chain of custody
- Compliance auditing — Use
auditandreportto document credential reviews and produce evidence for SOC 2, ISO 27001, or PCI DSS audits - Incident response — When a key is compromised, log the
revokeaction, thensearchto find all related operations and assess blast radius - Rotation tracking — Record every
rotateevent with the old/new key identifiers so you know exactly when credentials changed and why - Policy enforcement — Use
policyto document rotation schedules and strength requirements, thencheck-strengthto verify compliance
Examples
# Record generating a new API key
terms generate "Created prod API key for payment-service, expires 2025-06-01"
# Check and log key strength
terms check-strength "payment-service key: 256-bit, AES — STRONG"
# Record a rotation event
terms rotate "Rotated DB password for analytics-ro user, old key revoked"
# Log an audit finding
terms audit "Q1 review: 3 keys older than 90 days found, rotation scheduled"
# Record a revocation
terms revoke "Emergency revoke: staging key leaked in public repo, rotated immediately"
# Export audit trail to JSON
terms export json
# Search for a specific service
terms search "payment-service"
Output
All commands output to stdout. Redirect to a file if needed:
terms stats > credential-summary.txt
terms export csv
Configuration
Set TERMS_DIR environment variable to override the default data directory (~/.local/share/terms/).
Powered by BytesAgain | bytesagain.com | hello@bytesagain.com
相关 Skills
技能工坊
by anthropics
覆盖 Skill 从创建到迭代优化全流程:起草能力、补测试提示、跑评测与基准方差分析,并持续改写内容和描述,提升效果与触发准确率。
✎ 技能工坊把技能从创建、迭代到评测串成闭环,方差分析加描述优化,特别适合把触发准确率打磨得更稳。
表格处理
by anthropics
围绕 .xlsx、.xlsm、.csv、.tsv 做读写、修复、清洗、格式整理、公式计算与格式转换,适合修改现有表格、生成新报表或把杂乱数据整理成交付级电子表格。
✎ 做 Excel/CSV 相关任务很省心,能直接读写、修复、清洗和格式转换,尤其擅长把乱七八糟的表格整理成交付级文件。
Word文档
by anthropics
覆盖Word/.docx文档的创建、读取、编辑与重排,适合生成报告、备忘录、信函和模板,也能处理目录、页眉页脚、页码、图片替换、查找替换、修订批注及内容提取整理。
✎ 搞定 .docx 的创建、改写与精排版,目录、批量替换、批注修订和图片更新都能自动化,做正式文档尤其省心。
相关 MCP 服务
文件系统
编辑精选by Anthropic
Filesystem 是 MCP 官方参考服务器,让 LLM 安全读写本地文件系统。
✎ 这个服务器解决了让 Claude 直接操作本地文件的痛点,比如自动整理文档或生成代码文件。适合需要自动化文件处理的开发者,但注意它只是参考实现,生产环境需自行加固安全。
by wonderwhy-er
Desktop Commander 是让 AI 直接执行终端命令、管理文件和进程的 MCP 服务器。
✎ 这工具解决了 AI 无法直接操作本地环境的痛点,适合需要自动化脚本调试或文件批量处理的开发者。它能让你用自然语言指挥终端,但权限控制需谨慎,毕竟让 AI 执行 rm -rf 可不是闹着玩的。
EdgarTools
编辑精选by dgunning
EdgarTools 是无需 API 密钥即可解析 SEC EDGAR 财报的开源 Python 库。
✎ 这个工具解决了金融数据获取的痛点——直接让 AI 读取结构化财报,比如让 Claude 分析苹果的 10-K 文件。适合量化分析师或金融开发者快速构建数据管道。但注意,它依赖 SEC 网站稳定性,高峰期可能延迟。