6 comments

[ 3.2 ms ] story [ 18.8 ms ] thread
Skimmed the readme, seems like it's not AEAD? I don't see any reason to use a tool that's not AEAD.

Also, while I get the appeal of just storing it all in a giant JSON, I don't really feel that's the final word in simple storage formats. I'd personally just use SQLite, or some other format I could rsync.

It’s fun to build things like this but if you want to nourish a user base you need to fully understand the landscape of similar tools and then explain your differentiating value. This is /particularly/ important for security related tools.

Specifically you should compare and contrast to tools like SOPS, Ansible Vault, pass, etc.

Cool project. Is there a concept of namespaces or tags? Looking to store a group of secrets and then fetch them all with a single call.
thank you. I will be adding namespaces in the next release. Currently testing password rotation and backup to s3
Will be extending this with one more feature which I didnt think about .. the possibility to rotate passwords.

Might also extend it with an API. Not sure. cheers!