Our great sponsors
-
passage
A fork of password-store (https://www.passwordstore.org) that uses age (https://age-encryption.org) as backend.
-
WorkOS
The modern identity platform for B2B SaaS. The APIs are flexible and easy-to-use, supporting authentication, user identity, and complex enterprise features like SSO and SCIM provisioning.
-
rage
A simple, secure and modern file encryption tool (and Rust library) with small explicit keys, no config options, and UNIX-style composability.
Consider, for the age and minisign/signify use-case: https://gossamer.tools
there in fact exists a pass-like interface for age: https://github.com/FiloSottile/passage
There's a package called PGPy. It's a python implementation of PGP. MIT licensed. https://github.com/SecurityInnovation/PGPy When testing it out GnuPG compatibility, I just had to add the --rfc4880 when encrypting. Then PGPy could decrypt it using the private key generated by GnuPG. PGPy supports key generation and encryption too.
It's not quite flick a switch, but with maven you can specify which keys you trust to sign which of your dependencies (anything published to maven central is required to be signed). E.g. here's one of my libraries: https://github.com/m50d/tierney/blob/master/free/keys.proper...