Expand description
Keynest - Simple, offline, cross-platform secrets manager
Keynest provides secure local secret storage using Argon2id for key derivation and XChaCha20-Poly1305 for authenticated encryption.
§Security
For detailed cryptographic architecture, see CRYPTO.md. For security policy and vulnerability reporting, see SECURITY.md.
§Quick Start
ⓘ
use keynest::{Keynest, Storage};
use zeroize::Zeroizing;
// Create a new keystore
let mut kn = Keynest::init(Zeroizing::new("password".to_string())).unwrap();
// Store secrets
kn.set("api_key", "secret123").unwrap();
kn.save().unwrap();
// Later: reopen the keystore
let kn = Keynest::open(Zeroizing::new("password".to_string())).unwrap();
assert_eq!(kn.get("api_key"), Some("secret123"));Structs§
- KdfParams
- Parameters for Argon2id key derivation.
- Keynest
- A secure keystore for storing secrets locally.
- Storage
- A storage backend for persisting keystore data.
- Store
Info - Information about a keystore.
Enums§
- Algorithm
- Encryption algorithm used for the keystore.
Functions§
- default_
storage - Returns the default storage location for the keystore.