Quickstart

Push your first secret in under two minutes. No server to run — Sirr Cloud handles everything.

1. Sign up and get your key

Create an account at sirrlock.com. You will get a principal key and org ID from your dashboard.

# Set your credentials (no SIRR_SERVER needed — defaults to Sirr Cloud)
export SIRR_TOKEN="your-principal-key"
export SIRR_ORG="your-org-id"

2. Install the CLI

# macOS
brew install sirrlock/tap/sirr

# Windows
scoop bucket add sirrlock https://github.com/sirrlock/scoop-bucket
scoop install sirr

# Or download from GitHub Releases
# https://github.com/sirrlock/sirr/releases

3. Push and retrieve

# Public dead drop (burns after 1 read, returns a URL)
sirr push "postgres://..." --reads 1 --ttl 1h
# → https://sirr.sirrlock.com/s/a1b2c3d4...

# Org named secret (requires --org)
sirr set DB_URL="postgres://..." --org $SIRR_ORG --reads 5
sirr get DB_URL --org $SIRR_ORG   # returns value, reads remaining: 4

# Run a process with secrets injected as env vars
sirr run --org $SIRR_ORG -- node app.js

Want to self-host?

Run Sirr on your own infrastructure with full control over data and configuration.

Get your own →

Next steps

CLI Reference — every command and flag
MCP Integration — give AI assistants direct vault access
Self-Hosting — Docker, env vars, and architecture
SDKs — Node.js, Python, and .NET clients