@swamp/1password
v2026.04.22.2
Read and write secrets stored in 1Password using the op CLI.
Prerequisites
- 1Password CLI installed and in
PATH - Authenticated via one of:
- Service account:
export OP_SERVICE_ACCOUNT_TOKEN=<token> - Desktop app: enable CLI integration in 1Password settings
- Connect Server:
export OP_CONNECT_HOST=<url>andexport OP_CONNECT_TOKEN=<token>
- Service account:
Usage
swamp vault create @swamp/1password my-1password \
--config '{"op_vault": "Private"}' --json
swamp vault get my-1password my-api-key --json
swamp vault put my-1password my-api-key "s3cr3t" --json
swamp vault list-keys my-1password --jsonSecret Key Format
item-name— reads thepasswordfield of the named itemitem-name/field— reads a specific fieldop://vault/item/field— full 1Password URI (passthrough)
Repository
https://github.com/systeminit/swamp-extensions
Labels
Contents
Quality score
Verified by SwampHow well-documented and verifiable this extension is.
Grade A
- Has README or module doc2/2earned
- README has a code example1/1earned
- README is substantive1/1earned
- Most symbols documented1/1earned
- No slow types1/1earned
- Has description1/1earned
- At least one platform tag (or universal)1/1earned
- Two or more platform tags (or universal)1/1earned
- License declared1/1earned
- Verified public repository2/2earned
Install
$ swamp extension pull @swamp/1password1Password vault provider. Uses the 1Password CLI (op) for secret operations.
Config Fields
| Field | Type | Description |
|---|---|---|
| op_vault | string | The 1Password vault to use |
| op_account? | string | Account shorthand or UUID |
Read and write secrets stored in 1Password using the `op` CLI. ## Prerequisites - [1Password CLI](https://developer.1password.com/docs/cli/get-started/) installed and in `PATH` - Authenticated via one of: - **Service account**: `export OP_SERVICE_ACCOUNT_TOKEN=<token>` - **Desktop app**: enable CLI integration in 1Password settings - **Connect Server**: `export OP_CONNECT_HOST=<url>` and `export OP_CONNECT_TOKEN=<token>` ## Usage ```bash swamp vault create @swamp/1password my-1password \ --config '{"op_vault": "Private"}' --json swamp vault get my-1password my-api-key --json swamp vault put my-1password my-api-key "s3cr3t" --json swamp vault list-keys my-1password --json ``` ## Secret Key Format - `item-name` — reads the `password` field of the named item - `item-name/field` — reads a specific field - `op://vault/item/field` — full 1Password URI (passthrough)
Read and write secrets stored in 1Password using the `op` CLI. ## Prerequisites - [1Password CLI](https://developer.1password.com/docs/cli/get-started/) installed and in `PATH` - Authenticated via one of: - **Service account**: `export OP_SERVICE_ACCOUNT_TOKEN=<token>` - **Desktop app**: enable CLI integration in 1Password settings - **Connect Server**: `export OP_CONNECT_HOST=<url>` and `export OP_CONNECT_TOKEN=<token>` ## Usage ```bash swamp vault create @swamp/1password my-1password \ --config '{"op_vault": "Private"}' --json swamp vault get my-1password my-api-key --json swamp vault put my-1password my-api-key "s3cr3t" --json swamp vault list-keys my-1password --json ``` ## Secret Key Format - `item-name` — reads the `password` field of the named item - `item-name/field` — reads a specific field - `op://vault/item/field` — full 1Password URI (passthrough)
1Password vault provider — uses the op CLI for secret operations
1Password vault provider — uses the op CLI for secret operations
1Password vault provider — uses the op CLI for secret operations
1Password vault provider — uses the op CLI for secret operations
1Password vault provider — uses the op CLI for secret operations