{"id":50486130,"url":"https://github.com/exisz/roblocks","last_synced_at":"2026-06-01T22:30:51.160Z","repository":{"id":356436092,"uuid":"1232469200","full_name":"exisz/roblocks","owner":"exisz","description":"Credential vault with git-backed storage for distributed agents","archived":false,"fork":false,"pushed_at":"2026-05-28T01:02:40.000Z","size":35,"stargazers_count":0,"open_issues_count":0,"forks_count":0,"subscribers_count":0,"default_branch":"main","last_synced_at":"2026-05-28T03:06:56.955Z","etag":null,"topics":["agents","cli","credentials","git-backed","secrets","vault"],"latest_commit_sha":null,"homepage":null,"language":"TypeScript","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"mit","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/exisz.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null,"zenodo":null,"notice":null,"maintainers":null,"copyright":null,"agents":null,"dco":null,"cla":null}},"created_at":"2026-05-08T00:55:25.000Z","updated_at":"2026-05-28T01:02:44.000Z","dependencies_parsed_at":null,"dependency_job_id":null,"html_url":"https://github.com/exisz/roblocks","commit_stats":null,"previous_names":["exisz/roblocks"],"tags_count":0,"template":false,"template_full_name":null,"purl":"pkg:github/exisz/roblocks","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/exisz%2Froblocks","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/exisz%2Froblocks/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/exisz%2Froblocks/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/exisz%2Froblocks/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/exisz","download_url":"https://codeload.github.com/exisz/roblocks/tar.gz/refs/heads/main","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/exisz%2Froblocks/sbom","scorecard":null,"host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":286080680,"owners_count":33797126,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2026-05-26T15:22:16.424Z","status":"online","status_checked_at":"2026-06-01T02:00:06.963Z","response_time":115,"last_error":null,"robots_txt_status":"success","robots_txt_updated_at":"2025-07-24T06:49:26.215Z","robots_txt_url":"https://github.com/robots.txt","online":true,"can_crawl_api":true,"host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["agents","cli","credentials","git-backed","secrets","vault"],"created_at":"2026-06-01T22:30:48.722Z","updated_at":"2026-06-01T22:30:51.155Z","avatar_url":"https://github.com/exisz.png","language":"TypeScript","funding_links":[],"categories":[],"sub_categories":[],"readme":"# 🗄️ roblocks\n\n[![npm version](https://img.shields.io/npm/v/roblocks.svg)](https://www.npmjs.com/package/roblocks)\n[![npm downloads](https://img.shields.io/npm/dm/roblocks.svg)](https://www.npmjs.com/package/roblocks)\n[![License: MIT](https://img.shields.io/badge/License-MIT-yellow.svg)](./LICENSE)\n[![Node.js \u003e=18](https://img.shields.io/badge/node-%3E%3D18-brightgreen.svg)](https://nodejs.org/)\n\n\u003e Distributed credential vault with git-backed storage for agents and small teams.\n\n**roblocks** gives robots a simple credential vault: values live in a private GitHub repo, writes are committed and pushed, reads fetch fresh origin state, and every change is auditable through git history.\n\n## Why roblocks?\n\n- **Git is the source of truth** — no local cache, no state drift\n- **Read from origin, write to origin** — every `set` is a commit + push; every `get` fetches fresh state\n- **Transparent authentication** — uses whatever git credentials the shell already has: SSH key, PAT, `gh auth`, or credential helper\n- **Strict but flexible format** — supports simple key/value secrets, objects with metadata, and lists\n- **Agent-friendly** — one CLI command is enough for distributed workers to retrieve or update shared credentials\n\n\u003e Security note: use a private repository for real credentials. roblocks provides workflow, validation, versioning, and auditability; it does not encrypt individual values before committing them.\n\n## Install\n\n```bash\nnpm install -g roblocks\n```\n\nOr run without installing:\n\n```bash\nnpm exec --package roblocks -- roblocks --help\n```\n\n## Quick Start\n\n```bash\n# Register a store in ~/.roblocks/config.yaml\nroblocks store add empire \\\n  --repo exisz/credentials \\\n  --file stores/empire.yaml \\\n  --branch main\n\n# Set a simple credential\nroblocks set empire openai_api_key \"sk-xxx\"\n\n# Set a credential with metadata\nroblocks set empire stripe_secret --json '{\"value\":\"sk_live_xxx\",\"expiry\":\"2026-12-01\"}'\n\n# Read a credential\nroblocks get empire openai_api_key\n\n# Read JSON for agents/scripts\nroblocks get empire stripe_secret --format json\n\n# List keys without printing values\nroblocks list empire\n\n# Search key names without printing values\nroblocks search empire dokploy\n\n# Validate store schema\nroblocks validate empire\n```\n\n## Data Model\n\n```yaml\n# Level 1: key → scalar, object, or sequence\nopenai_api_key: \"sk-xxx\"\n\nstripe_secret:\n  value: \"sk_live_xxx\"\n  expiry: \"2026-12-01\"\n  account: \"production\"\n\ngithub_bots:\n  - value: \"ghp_xxx\"\n    username: \"bot-001\"\n    purpose: \"star-farming\"\n  - value: \"ghp_yyy\"\n    username: \"bot-002\"\n    tags: [issue-tracker]\n```\n\n### Schema Rules\n\n| Level | Allowed | Required |\n| --- | --- | --- |\n| 1 | scalar, object, or sequence | — |\n| 2 | string or object | if object, must contain `value:` |\n| 3+ | rejected | — |\n\nMetadata fields such as `expiry`, `tags`, `purpose`, `username`, `account`, and `url` are optional.\n\n## Configuration\n\n`~/.roblocks/config.yaml` stores registered vaults:\n\n```yaml\nstores:\n  empire:\n    repo: exisz/credentials\n    file: stores/empire.yaml\n    branch: main\n  personal:\n    repo: exisz/credentials\n    file: stores/personal.yaml\n    branch: main\n```\n\nMultiple stores can point to the same repo, different files in one repo, or different repos.\n\n## CLI Reference\n\n### `roblocks store add \u003cname\u003e --repo \u003crepo\u003e --file \u003cpath\u003e [--branch \u003cbranch\u003e]`\nRegister a store in `~/.roblocks/config.yaml`.\n\n### `roblocks store list`\nList registered stores.\n\n### `roblocks store remove \u003cname\u003e`\nRemove a store from the local registry. This does not delete the remote file.\n\n### `roblocks get \u003cstore\u003e \u003ckey\u003e [--format json|yaml|string]`\nFetch and print a value. Lists can be read as a whole or by index, e.g. `github_bots[0]`.\n\n### `roblocks set \u003cstore\u003e \u003ckey\u003e \u003cvalue\u003e [--json]`\nSet a credential value. `--json` stores structured metadata.\n\n### `roblocks delete \u003cstore\u003e \u003ckey\u003e`\nRemove a key from the store.\n\n### `roblocks list \u003cstore\u003e [--format json|yaml]`\nList key names without printing secret values.\n\n### `roblocks search \u003cstore\u003e \u003ckeyword\u003e [--format json|yaml] [--metadata]`\nSearch key names without printing secret values. Matching is case-insensitive. Use `--metadata` to also search non-secret metadata fields on compound values; the secret `value` field is never searched or printed.\n\nExamples:\n\n```bash\nroblocks search empire dokploy\nroblocks search empire tailscale --format json\nroblocks search empire deploy --metadata\n```\n\n### `roblocks validate \u003cstore\u003e`\nValidate a store YAML file against roblocks' schema.\n\n## Authentication\n\nroblocks delegates to git/GitHub credentials already available in the environment:\n\n- SSH keys (`~/.ssh/id_*`)\n- GitHub CLI (`gh auth status`)\n- `GITHUB_TOKEN`\n- HTTPS credential helpers\n\n## License\n\nMIT\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fexisz%2Froblocks","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fexisz%2Froblocks","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fexisz%2Froblocks/lists"}