secrets-yubikey-unlock
OfficialSecure Infisical auth via OS keychains
System Documentation
What problem does it solve?
It prevents users from keeping Infisical Machine Identity credentials in plaintext files or shell dotfiles by guiding them to store credentials in the local operating system’s credential store.
Core Features & Use Cases
- OS credential store bootstrap: Initializes and stores an Infisical Machine Identity locally using the right backend for macOS or Linux.
- Shell-time secret loading: Loads live Infisical secrets into the current shell session without exporting from a child process.
- Optional hardware-key hardening: Keeps onboarding open while allowing stricter unlock policies via Keychain/Secret Service/pass+GPG or hardware/security key policies.
Use case: A developer needs to access Infisical-managed environment variables from CLI tools across multiple terminals while ensuring no secrets ever land in ~/.zshrc, ~/.env, or other synced plaintext locations.
Quick Start
Run walter-os secrets-identity-init to store your Infisical Machine Identity in your local credential store, then use walter_secrets_load to load secrets into your current shell session.
Dependency Matrix
Required Modules
None requiredComponents
💻 Claude Code Installation
Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.
Please help me install this Skill: Name: secrets-yubikey-unlock Download link: https://github.com/Xipher-Labs/walter-os/archive/main.zip#secrets-yubikey-unlock Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
Agent Skills Search Helper
Install a tiny helper to your Agent, search and equip skill from 471,000+ vetted skills library on demand.