Upload folder using huggingface_hub

Dockerfile

@@ -0,0 +1,10 @@
+FROM python:3.11-slim
+
+WORKDIR /app
+
+COPY pyproject.toml .
+RUN pip install .
+
+COPY . .
+
+CMD ["python", "server.py"]

README.md

@@ -1,10 +1,21 @@
 ---
-title: Secrets Manager Mcp
-emoji: 📊
-colorFrom: indigo
-colorTo: pink
+title: Secrets-Manager-MCP
+emoji: 🔐
+colorFrom: red
+colorTo: yellow
 sdk: docker
 pinned: false
+app_port: 8000
 ---
 
-Check out the configuration reference at https://huggingface.co/docs/hub/spaces-config-reference
+# Secrets Manager MCP Server
+
+This agent automates the management of secrets (environment variables) for Hugging Face Spaces. It allows you to programmatically add, delete, and list secrets.
+
+## Features
+- **Add Secret**: Securely push environment variables to any Space.
+- **Configure Agent**: Quick-start tool for setting up OpenAI and Stripe keys.
+- **List Secrets**: Audit existing secret keys in your Spaces.
+
+## Deployment
+This Space is configured to run the MCP server.

hf_secrets.py

@@ -0,0 +1,32 @@
+import os
+from typing import List, Optional
+from huggingface_hub import HfApi
+
+class HFSecretsManager:
+    def __init__(self, token: Optional[str] = None):
+        self.api = HfApi(token=token or os.getenv("HF_TOKEN"))
+
+    def add_secret(self, repo_id: str, secret_name: str, secret_value: str) -> str:
+        """Adds or updates a secret in a Hugging Face Space."""
+        try:
+            self.api.add_space_secret(repo_id=repo_id, key=secret_name, value=secret_value)
+            return f"Successfully added secret '{secret_name}' to {repo_id}."
+        except Exception as e:
+            return f"Error adding secret: {str(e)}"
+
+    def delete_secret(self, repo_id: str, secret_name: str) -> str:
+        """Deletes a secret from a Hugging Face Space."""
+        try:
+            self.api.delete_space_secret(repo_id=repo_id, key=secret_name)
+            return f"Successfully deleted secret '{secret_name}' from {repo_id}."
+        except Exception as e:
+            return f"Error deleting secret: {str(e)}"
+
+    def list_secrets(self, repo_id: str) -> List[str]:
+        """Lists the names of secrets in a Hugging Face Space."""
+        try:
+            # list_space_secrets returns a list of Secret objects (which only show keys)
+            secrets = self.api.list_space_secrets(repo_id=repo_id)
+            return [s.key for s in secrets]
+        except Exception as e:
+            return [f"Error listing secrets: {str(e)}"]

pyproject.toml

@@ -0,0 +1,18 @@
+[project]
+name = "secrets-manager"
+version = "0.1.0"
+description = "Secrets Manager MCP Server Agent for HF Spaces"
+readme = "README.md"
+requires-python = ">=3.10"
+dependencies = [
+    "mcp[cli]>=1.21.2",
+    "huggingface_hub>=0.24.0",
+    "python-dotenv>=1.0.0",
+]
+
+[build-system]
+requires = ["setuptools>=61.0"]
+build-backend = "setuptools.build_meta"
+
+[project.scripts]
+secrets-manager = "secrets_manager.server:main"

server.py

@@ -0,0 +1,70 @@
+from mcp.server.fastmcp import FastMCP
+from secrets_manager.hf_secrets import HFSecretsManager
+import os
+from dotenv import load_dotenv
+from typing import List, Optional
+
+# Load environment variables
+load_dotenv()
+
+# Initialize FastMCP
+mcp = FastMCP("Secrets-Manager")
+
+# Initialize Secrets Manager
+secrets_mgr = HFSecretsManager()
+
+@mcp.tool()
+def add_space_secret(repo_id: str, secret_name: str, secret_value: str) -> str:
+    """
+    Adds or updates a secret (environment variable) in a Hugging Face Space.
+    
+    Args:
+        repo_id: The full Space ID (e.g., 'username/space-name').
+        secret_name: The name of the secret (e.g., 'OPENAI_API_KEY').
+        secret_value: The value of the secret.
+    """
+    # Note: FastMCP logs tool calls, but we should be careful about printing values.
+    # The return message is safe.
+    return secrets_mgr.add_secret(repo_id, secret_name, secret_value)
+
+@mcp.tool()
+def delete_space_secret(repo_id: str, secret_name: str) -> str:
+    """
+    Deletes a secret from a Hugging Face Space.
+    """
+    return secrets_mgr.delete_secret(repo_id, secret_name)
+
+@mcp.tool()
+def list_space_secrets(repo_id: str) -> str:
+    """
+    Lists the names of all secrets currently configured in a Hugging Face Space.
+    Note: Values are hidden by Hugging Face.
+    """
+    keys = secrets_mgr.list_secrets(repo_id)
+    if not keys:
+        return f"No secrets found in {repo_id}."
+    return f"Secrets in {repo_id}:\n" + "\n".join([f"- {k}" for k in keys])
+
+@mcp.tool()
+def configure_agent_space(repo_id: str, openai_key: Optional[str] = None, stripe_key: Optional[str] = None, hf_token: Optional[str] = None) -> str:
+    """
+    Helper tool to quickly configure a new agent Space with necessary secrets.
+    """
+    results = []
+    if openai_key:
+        results.append(secrets_mgr.add_secret(repo_id, "OPENAI_API_KEY", openai_key))
+    if stripe_key:
+        results.append(secrets_mgr.add_secret(repo_id, "STRIPE_SECRET_KEY", stripe_key))
+    if hf_token:
+        results.append(secrets_mgr.add_secret(repo_id, "HF_TOKEN", hf_token))
+    
+    if not results:
+        return "No keys provided to configure."
+    
+    return "Configuration Summary:\n" + "\n".join(results)
+
+def main():
+    mcp.run()
+
+if __name__ == "__main__":
+    main()