(In)Security of the “Pass” password manager

This page summarizes the projects mentioned and recommended in the original post on news.ycombinator.com
Keepass enpass password-manager CLI Unix

WorkOS
Our great sponsors
  • WorkOS - The modern identity platform for B2B SaaS
  • InfluxDB - Power Real-Time Data Analytics at Scale
  • SaaSHub - Software Alternatives and Reviews
Our great sponsors

  • passable

    passable: password manager command line tool that's just good enough

    • I like the command line capabilities of "pass", and I also agree with the author about some of its complexity.

    I created "passable" to do what I believe is easier: symmetric encryption, and files do not use any particular in-the-clear directory structure. The code is POSIX shell, quite short,and easy to audit. Constructive feedback welcome.

    https://github.com/SixArm/passable

  • passhole

    A secure hole for your passwords (KeePass CLI)

    • The KeePass format has been around for years. I don't really understand why people keep using pass, or why it bills itself as the "standard" Unix password manager.

    There are also already command line KeePass utilities, like passhole [0] (mine) and keepassxc-cli.

    [0]: https://github.com/evidlo/passhole

  • WorkOS

    The modern identity platform for B2B SaaS. The APIs are flexible and easy-to-use, supporting authentication, user identity, and complex enterprise features like SSO and SCIM provisioning.

    WorkOS logo

  • op-js

    A JS library powered by the 1Password CLI

    • I know it's not FOSS but 1Password does have a decently fully-featured CLI client

    https://developer.1password.com/docs/cli/

  • enpass-cli

    Enpass commandline client

    • Enpass has a CLI client and it's MIT-licensed.

    https://github.com/hazcod/enpass-cli

NOTE: The number of mentions on this list indicates mentions on common posts plus user suggested alternatives. Hence, a higher number means a more popular project.

Suggest a related project

Related posts