Productivity
1password avatar

1password

Securely integrate 1Password CLI (op) for secret management, vault access, and automated credential injection in tmux sessions.

Introduction

The 1Password skill provides a robust interface for interacting with the 1Password command-line tool (op). It is designed for developers, system administrators, and power users who require programmatic access to sensitive credentials, API tokens, and secrets stored in 1Password. By leveraging a dedicated tmux-based execution model, the skill ensures that sign-in flows, vault lookups, and secret retrieval remain isolated, stable, and secure across multiple agent tasks. This approach minimizes interactive prompts and prevents environment leakage, making it an essential tool for secure infrastructure automation.

  • Perform secure authentication using the op CLI with native 1Password desktop app integration.

  • Retrieve secrets and credentials dynamically using op run or op inject, preventing sensitive data from being written to persistent disk storage.

  • Support for multi-account management using specific --account identifiers or OP_ACCOUNT environment variables.

  • Automated session handling that encapsulates CLI commands within isolated tmux sessions to ensure persistent tty availability and reliable command execution.

  • Seamless integration with workflows requiring read-access to items, attachments, and fields within 1Password vaults.

  • Strictly enforced security protocols including the prohibition of pasting secrets into logs, chat interfaces, or plain-text code files.

  • Always ensure the 1Password desktop application is unlocked before executing command sequences to avoid auth failures.

  • The skill requires a functioning tmux environment; ensure tmux is installed and accessible on the host system.

  • Use the provided operational flow: verify CLI presence, authenticate via op signin, and validate identity with op whoami before attempting secret access.

  • Prefer using op inject to map secrets directly into process environments, which is the safest way to handle sensitive data during build or runtime tasks.

  • If the account session expires, the skill handles re-authorization requests to maintain operational continuity without manual intervention.

Repository Stats

Stars
365,643
Forks
74,934
Open Issues
6,975
Language
TypeScript
Default Branch
main
Sync Status
Idle
Last Synced
Apr 28, 2026, 12:08 PM
View on GitHub