Skills
.Work. You
Rest

agenix

Community

NixOS secret management with age-based encryption.

Software Engineering#encryption#secrets#SSH#age#NixOS#decryption#agenix
Authorolafkfreund
Version1.0.0
Installs0

System Documentation

What problem does it solve?

Agenix provides secure management of secrets in NixOS configurations by encrypting sensitive values with age and enabling runtime decryption during activation, avoiding plaintext secrets in the Nix store.

Core Features & Use Cases

  • Secret encryption and decryption: Uses age with SSH keys to protect secrets stored in your NixOS configuration and deployed systems.
  • NixOS and Home Manager integration: Secrets decrypt automatically during nixos-rebuild switch and system activation, ensuring runtime availability without exposing plaintext.
  • Version-control friendly workflow: Encrypted secrets are tracked in version control; only encrypted data is stored, never plaintext.
  • Use Case: Store API keys and database passwords as encrypted .age files and reference them in age.secrets.* within your configuration for secure deployment.

Quick Start

  1. Set EDITOR and create a secret: agenix -e secret.age
  2. Rekey when keys change: agenix --rekey
  3. Decrypt to verify content: agenix -d secret.age

Dependency Matrix

Required Modules

None required

Components

Standard package

💻 Claude Code Installation

Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.

Please help me install this Skill:
Name: agenix
Download link: https://github.com/olafkfreund/nixos_config/archive/main.zip#agenix

Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
View Source Repository

Agent Skills Search Helper

Install a tiny helper to your Agent, search and equip skill from 223,000+ vetted skills library on demand.