Alpha Open-source credential infrastructure for AI agents

Your agents have keys
to everything.
Who's watching?

Paybound Vault is the identity and credential layer for AI agents. Store encrypted credentials, scope access per agent, audit every retrieval, and revoke access instantly — with single-use token security.

Get early access

We're onboarding alpha users now. Drop your email and we'll send you an invite.

No spam. Currently in alpha — beta invites rolling out soon.

You're on the list ✓

We're currently in alpha and will be inviting beta users soon. We'll reach out with your invite.

The Problem

Agents run on scattered secrets with zero visibility

Every AI agent you deploy needs API keys. Most teams hardcode them in .env files. One compromised agent exposes everything.

Without Paybound Vault

  • API keys hardcoded in .env files
  • Every agent shares the same credentials
  • No way to see which agent used which key
  • Revoking one agent means rotating ALL keys
  • Compromised agent = full key exposure
  • Zero cost attribution per agent

With Paybound Vault

  • Credentials encrypted with AES-256-GCM
  • Each agent gets its own scoped identity
  • Every retrieval logged with full audit trail
  • Revoke one agent without touching others
  • Single-use tokens — stolen tokens are worthless
  • Retrieval frequency = cost transparency
Single-Use Token Chain

Every action is a link in the chain

Each credential retrieval consumes the current token and issues a new one. Old tokens are dead instantly. Replay attacks are impossible.

1
openai
2
stripe
3
github
4
current
replay #1
Features

Everything you need to secure agent credentials

Built for developers deploying AI agents. Not another enterprise security product.

🔐

Zero-Knowledge Encryption

AES-256-GCM with your master key. We store encrypted blobs — we literally cannot read your secrets. Same model as 1Password.

🤖

Agent Identity

Each agent gets a persistent identity with scoped credentials. Register in seconds. Authenticate with JWT. Know exactly who's accessing what.

🔗

Single-Use Token Chain

Every credential retrieval rotates the token. Spent tokens are dead instantly. Zero replay window. The auth system IS the observability system.

📋

Full Audit Trail

Every retrieval logged: which agent, which tool, which token sequence, when. Complete chain of custody for compliance.

🚫

Instant Revocation

One command kills an agent's access to any credential. Real-time. No key rotation needed. No other agents affected.

💰

Cost Transparency

Retrieval frequency maps directly to API usage. See which agent is driving which costs without touching provider dashboards.

📡

Offline Fallback

Client SDK maintains a local encrypted cache. If the vault goes down, agents keep running. No single point of failure.

🔌

MCP + n8n + SDK COMING SOON

MCP server for all AI coding tools. n8n node for workflows. TypeScript SDK for custom agents. CLI for everything else.

🏠

Self-Hosted, Open Core

Run it on your infra. Secrets never leave your network. Open-source core, MIT licensed. Cloud version for teams that prefer managed.

How It Works

Up and running in 60 seconds

1

Register agent

Create an org and register your agent. Gets a unique identity + first token.

2

Store credentials

Admin stores API keys mapped to the agent. Encrypted at rest, scoped by identity.

3

Agent retrieves

Agent authenticates, gets credentials just-in-time. Token rotates. Access logged.

4

You're in control

Full audit trail. Revoke any agent, any credential, any time. One command.

// Install the SDK
// npm install paybound

const vault = new PayboundClient({ token: AGENT_TOKEN });

// Agent retrieves credentials just-in-time
const openaiKey = await vault.getCredential("openai");
const stripeKey = await vault.getCredential("stripe");

// Token rotates automatically after each call.
// Old tokens are dead. Replays are impossible.
// Every retrieval is logged. Full chain of custody.

Stop scattering secrets. Start controlling access.

Join the alpha and be the first to secure your agent credentials.

Free and open-source core. Cloud beta invites rolling out soon.