/**
 * QA360 Secrets Tools
 * Manage secure secrets via MCP (requires explicit permission)
 */
import { MCPServerConfig } from '../types/index.js';
import { SecurityManager } from '../security/manager.js';
import { AuditLogger } from '../security/audit.js';
export declare class SecretsTools {
    private config;
    private secretsManager;
    private security;
    private audit;
    constructor(config: MCPServerConfig, security: SecurityManager, audit: AuditLogger);
    execute(toolName: string, args: any): Promise<any>;
    /**
     * Add a secret to the vault
     */
    private add;
    /**
     * List all secrets (names only, values redacted)
     */
    private list;
    /**
     * Remove a secret from the vault
     */
    private remove;
    /**
     * Check secrets vault health
     */
    private doctor;
    /**
     * Export redacted secrets list for audit
     */
    private exportRedacted;
    /**
     * Get secrets store (simulated in-memory storage)
     * In a real implementation, this would use SecureSecretsManager
     */
    private getSecretsStore;
    /**
     * Simulate encryption (in real implementation, use AES-256-GCM)
     */
    private encrypt;
}
//# sourceMappingURL=secrets.d.ts.map