Simple password manager using gpg and ordinary unix directories. https://git.zx2c4.com/password-store/atom/?h=master 2025-06-18T09:51:54Z 2025-06-18T09:51:54Z Tino Calancha tino.calancha@gmail.com 2025-06-18T09:51:54Z urn:sha1:3ca13cd8882cae4083c1c478858adbf2e82dd037 - contrib/emacs/password-store.el (password-store-get, password-store-get-field): Prevent redundant calls to `auth-source-pass-get` by preserving the retrieved value instead of letting downstream functions repeat the decryption. Also narrow the use of `inhibit-message` to internal calls to avoid unintended side effects elsewhere. Suggested at https://lists.zx2c4.com/pipermail/password-store/2025-June/004901.html 2023-12-01T09:54:43Z Niall Dooley dooleyn@gmail.com 2023-12-01T09:43:36Z urn:sha1:b5e965a838bb68c1227caa2cdd874ba496f10149 Prior to this commit, after the timeout expired, the password was cleared from the kill-ring but remained in the system clipboard. To ensure passwords are also cleared from the system clipboard, `(kill-new "")` has been added inside the `password-store-clear` function when clearing the kill-ring. - Ensure that passwords are cleared from the system clipboard as well [1]. - Declare `password-store-timeout` obsolete since v2.0.4 [2]. - Header and docstring improvements [3]. - Rename argument in `password-store--run-init` [4]. - Bump version to 2.3.2. Reported by Niall Dooley <dooleyn@gmail.com>: [1] https://lists.zx2c4.com/pipermail/password-store/2023-November/004800.html [2] https://lists.zx2c4.com/pipermail/password-store/2023-November/004798.html [3] https://lists.zx2c4.com/pipermail/password-store/2023-November/004791.html [4] https://lists.zx2c4.com/pipermail/password-store/2023-November/004799.html 2023-05-03T06:19:56Z Mekeor Melire mekeor@posteo.de 2023-05-03T06:02:12Z urn:sha1:28cec11f1dbe6c4273d30370af45b69c9f408386 Remove the unused dependency on the s library. Suggested in: https://lists.zx2c4.com/pipermail/password-store/2023-April/004751.html 2022-12-26T15:28:09Z Tino Calancha tino.calancha@gmail.com 2022-12-26T15:28:09Z urn:sha1:26d2dae04bb76a87be6960861c10432820cd5d55 The package auth-source-pass.el is not distributed externally anymore. It was added into Emacs since Emacs 26.1. Bump Emacs minor version requirement to emacs 26. Reported by Declan Tsien <declantsien@riseup.net>: https://lists.zx2c4.com/pipermail/password-store/2022-December/004697.html 2022-09-22T10:26:16Z Justus Winter justus@sequoia-pgp.org 2022-09-22T09:57:33Z urn:sha1:dddca73694d1ecc2381cde6c02a9d1466cf0ab41 Short 32-bit OpenPGP key ids are easily spoofed, so their use is strongly discouraged. The test suite uses short key ids to refer to test keys. This prevents the OpenPGP implementations from rejecting short key ids, and is a bad example for other developers to follow. This patch replaces all short key ids with fingerprints. 2022-09-06T18:55:16Z Tino Calancha tino.calancha@gmail.com 2022-09-06T18:50:35Z urn:sha1:47f8d950c58949733862813f29856480a9e232c7 This command generates a new password not including symbols. Suggested by Aner Zakobar <aner@zakobar.com>: https://lists.zx2c4.com/pipermail/password-store/2022-August/004638.html 2022-03-06T22:30:56Z Tino Calancha tino.calancha@gmail.com 2022-03-06T22:06:56Z urn:sha1:c4d8a1d815e79ddd89a85d3e36a41d29f0475771 The infloop has been observed in calls to `pasword-store--run' for pass v1.7.4 in a Windows/WSL2 enviroment. When this happens, the sentinel in `password-store--run-1' doesn't call the callback. * contrib/emacs/password-store.el (password-store--run-1): Prefer `process-status' over the string comparison to check the process status. Problem reported by Kai Tetzlaff <pwstore@tetzco.de>: https://lists.zx2c4.com/pipermail/password-store/2022-February/004583.html 2022-01-17T16:55:06Z Marius Bakke marius@gnu.org 2022-01-17T16:54:32Z urn:sha1:eea24967a002a2a81ae9b97a1fe972b5287f3a09 Tree 2.0 and later will unconditionally ignore all options and write JSON data on file descriptor 3 when available, which causes problems for the test harness and other scripts that use FD 3. Work around by closing descriptor 3 for the 'tree' command. 2021-09-23T21:31:03Z Sam W sam@wlcx.cc 2021-06-26T22:57:48Z urn:sha1:04cd3023f48cd203f6c0193e57a427226e8b431c POSIX sed doesn't support \+ in BREs which causes the regex that extracts a file's current keys to return nothing, meaning that files are unecessarily reencrypted. This converts the regex in question to use ERE. 2021-09-23T21:28:59Z Axel Tripier axel@tripier.fr 2021-07-02T17:40:44Z urn:sha1:fde8baea4c7886237ef5acc26a18a9ecbb97c432 The `.extensions` directory can contain extensions code, for example as git submodules, that have `.gpg` files as part of their code but that are not files encrypted with the PGP keys of our password store. One example is `pass-tomb`, that contains `.gpg` files in `tests/gnupg`, but there are more, like `pass-update`, `pass-otp`, etc. However those `.gpg` files in the `.extensions` directory are currently processed by the `grep` and `reencrypt` functions of `pass`. At best this can cause errors to be shown to the user when grepping/reencrypting, and at worst it can cause files in the `.extensions` directory to be decrypted and returned as part of a search, or reencrypted with the incorrect PGP keys. This patch tries to mitigate that issue by removing the `*/.extensions` directories from the list of processed `.gpg` files for the grep/reencrypt functions. However this patch is not perfect as it does not take into account the fact that the `.extensions` directory can be renamed to something else using `PASSWORD_STORE_EXTENSIONS_DIR`. But knowing if this `PASSWORD_STORE_EXTENSIONS_DIR` is inside the `PREFIX` or not and formatting the path exclusion for `find` accordingly could require a fair bit of additional logic that I am not sure how you want to implement.