0.0.2-alpha

Fixed a critical vulnerability with password decoding, fixed escape key press being misintreted as a VT100 escape code start

Full Changelog: v0.0.1-alpha...v0.0.2-alpha

0.0.1-alpha

Compared to the previous version, has some QoC and QoL improvements, and a change in how password encryption/decryption works for enhanced security: store key is salted per-password and only then hashed to generate encryption/decryption key. As a result, even if you somehow calculate the encryption key for one password using a quantum computer and leak data, in theory, you won't be able to easily use it to decrypt other passwords. You'll need to reconstruct the store key from the hash, which, I am told, even quantum computers aren't that good at.

QoL improvements:

• CLI options are now a thing, you can do something along the lines of passutil --store --load test --unlock --password --fetch 0 and it'll work
• you can use up/down arrows to peruse command history and use it to your heart's content, as you would with a normal shell (you can't use left/right arrows to move your cursor yet, though, and there's no tab completion)

There shouldn't be any more breaking changes to storage and encryption/decryption formats in the future versions, but there might be, if I discover that the way I did things isn't quite as secure as I thought it would be.

Full Changelog: v0.0.0-alpha...v0.0.1-alpha

0.0.0-alpha

The utility, at this point, is in a state I would personally describe as 'minimum viable product'. That is, I could reasonably use it if I wanted to, without it blowing up with a segfault and with full intended functionality realized to minimum extent.

It should not, however, generally be used by those who do not feel like they possess the nerve to do so, as it lacks most creature comforts and will still have some bugs, some of which might lead to data loss. You've been warned.