# Agent calls OpenAI — key stays in Vault, agent gets result
result = vault.call("openai", "chat.completions.create",
model="gpt-4o", messages=[...])
# Every call gets a cryptographic proof ID
proof = vault.last_proof() # → "0xa3f9...7c2d"
1
# Admin Dashboard → Secrets → Add Secret
Service:openai
Key:sk-...
2
# Admin Dashboard → Credentials → New
Label:my-research-agent
Allowed:openai
Token:cred_r1x9...4f2a← give this to your agent
3
# pip install dustbureau
fromdustbureauimportAgentVault
vault = AgentVault(credential="cred_r1x9...4f2a")
result = vault.call("openai", "chat.completions", {model: "gpt-4o-mini", ...})
proof = vault.last_proof() # audit trail
🌑
Agent Vault — Admin Dashboard
Connecting...
Vault
⬡ Dashboard
Admin
🔐 Security
🔔 Webhooks
📬 Waitlist
Services
🔑 Secrets
⚡ API Call
💰 Budget
🪪 Credentials
📋 Audit Log
Dashboard
http://localhost:3000
SECRETS IN VAULT
—
encrypted at rest
CALLS LOGGED
—
since vault start
LAST CALL
—
—
🔑 Stored Services
Loading...
📋 Recent Calls
Loading...
Secret Vault
Store API keys encrypted
+ Add New Secret
🔑 Stored Secrets
Loading...
API Call
Proxy call — key stays in Vault
⚡ Configure Call
Budget Controller
Set limits per service
⛔ Kill Switch
Immediately blocks all API calls for all services.
+ New Budget Rule
Active Rules & Usage
Loading...
Security
2FA for admin access
🔐 Two-Factor Authentication (TOTP)
Loading...
Agent Credentials
Scoped tokens for agents — no master key needed
How credentials work: Each agent gets its own token — not the master key. It can only call /call, and only for the services you allow. Revoke one agent without touching others.
+ Create Credential
Active Credentials
Loading...
Webhook Alerts
Notify on budget warning, error, or kill switch
Configure Webhook
Audit Log
Every call — immutably logged
Loading...
Waitlist
Everyone who signed up for early access
Loading...
🌑
Gene
Vault Assistant · via Anthropic
🌑
Hi, I'm Gene — the Vault Assistant. Ask me anything about Dust Bureau, the Agent Vault, or how to use the features.