Key Management
Generate and manage cryptographic keys for agent identity.
Commands
- sekuire keygen — Generate Ed25519 keypair
- sekuire hash — Calculate Sekuire ID
keygen
Generate a new Ed25519 keypair for signing your agent.
bash
sekuire keygen [OPTIONS]Options
| Option | Description |
|---|---|
--force | Overwrite existing keys |
Example
Terminalbash
$ sekuire keygen
🔑 Generating Ed25519 Keypair...
✅ Keys generated!
Private: .sekuire/secret.key (KEEP SAFE)
Public: .sekuire/public.key
Public Key Hash: a1b2c3d4e5f6...Generated Files
| File | Description |
|---|---|
.sekuire/secret.key | Private key (hex-encoded) — Never share or commit |
.sekuire/public.key | Public key (hex-encoded) — Safe to share |
❗Add
.sekuire/secret.key to your .gitignore. Losing your private key means losing your agent identity.hash
Calculate the deterministic Sekuire ID (fingerprint) for your agent.
bash
sekuire hashThe Sekuire ID is computed from your sekuire.yml manifest and uniquely identifies your agent.
Example
Terminalbash
$ sekuire hash
🥝 Sekuire ID (Fingerprint): 7f8a9b3c2d1e...What's Hashed
The ID is derived from:
- Project name and version
- Identity configuration (model, provider)
- Capabilities and tools
- Public key
Any change to these values produces a different ID.
Key Security
Best Practices
- Never commit
.sekuire/secret.key - Backup your private key securely
- Rotate keys if compromised using
sekuire keygen --force - Use different keys for dev/staging/production
Recovery
If you lose your private key:
- Generate a new keypair with
sekuire keygen --force - Re-publish your agent with
sekuire push - Your agent will have a new identity