Add secretctl to MCP Security Servers

[forest6511]

Summary

Add secretctl to the MCP Security Servers section.

secretctl is an AI-safe secrets manager with MCP support that addresses a critical security concern in the MCP ecosystem: preventing AI agents from accessing plaintext secrets.

Key Security Features

• AI-Safe Access: AI agents can use secrets via environment variable injection without ever seeing plaintext values
• AES-256-GCM encryption with Argon2id key derivation (OWASP parameters)
• Comprehensive audit logging for all secret access
• Output sanitization to prevent accidental secret exposure in command output
• Local-first architecture - secrets never leave your machine

Why This Fits awesome-mcp-security

This tool directly addresses the MCP security concerns documented in this repository, particularly:

• Insecure credential storage (referenced in Trail of Bits articles)
• API key theft via MCP (referenced in multiple security advisories)
• The need for "human in the loop" secret management

Installation

Available via:

• Homebrew (macOS)
• Scoop (Windows)
• Direct binary download (Linux)

Links

• GitHub: https://github.com/forest6511/secretctl
• Documentation: https://forest6511.github.io/secretctl/