Stats
Actions
Tags
'%20stop-opacity%3D'0.16'%2F%3E%3Cstop%20offset%3D'1'%20stop-color%3D'rgb(200%2C90%2C60)'%20stop-opacity%3D'0.03'%2F%3E%3C%2FlinearGradient%3E%3C%2Fdefs%3E%3Crect%20width%3D'320'%20height%3D'200'%20fill%3D'url(%23g)'%2F%3E%3Ccircle%20cx%3D'250'%20cy%3D'56'%20r%3D'92'%20fill%3D'rgb(200%2C90%2C60)'%20fill-opacity%3D'0.06'%2F%3E%3Ccircle%20cx%3D'64'%20cy%3D'172'%20r%3D'58'%20fill%3D'rgb(200%2C90%2C60)'%20fill-opacity%3D'0.05'%2F%3E%3C%2Fsvg%3E)
From claude-commands
Flags redacted placeholder tokens (e.g. __OPENCLAW_REDACTED__) in CLI config output and advises checking environment overrides when debugging unauthorized/fallback errors.
How this skill is triggered — by the user, by Claude, or both
Slash command
/claude-commands:cli-secretsThe summary Claude sees in its skill listing — used to decide when to auto-load this skill
Some CLIs **intentionally redact** secrets in `config get` output (e.g. `__OPENCLAW_REDACTED__` in legacy configs). That string is **not** a valid token.
Some CLIs intentionally redact secrets in config get output (e.g. __OPENCLAW_REDACTED__ in legacy configs). That string is not a valid token.
~/.hermes_prod/config.yaml — do not confuse Hermes auth with the legacy OpenClaw auth tokens.npx claudepluginhub jleechanorg/claude-commands --plugin claude-commandsSecures Claude Code sessions with nopeek CLI: loads .env secrets without exposing values, stores keys, redacts cloud CLI outputs to prevent API key leaks. Useful for secret and credential safety.
Manages environment variables and secrets in Claude Code sessions without exposing values. Validates, loads, and audits secrets while keeping them out of logs, diffs, and assistant context.
Provides Python patterns for external service authentication using API keys, OAuth, tokens. Includes verification flows, smoke tests, env checks, and error handling with leyline.