Skip to content

Releases: sschmid/pw-terminal-password-manager

pw-10.0.0

10 Nov 21:45
@sschmid sschmid
10.0.0
e14e540
This commit was signed with the committer’s verified signature.
sschmid Simon Schmid
GPG key ID: 429C12EC553AB56C
Learn about vigilant mode.
Compare
Choose a tag to compare
pw-10.0.0 Latest
Latest

Upgrading to pw 10.0.0

The .pwrc format has changed to an INI-like format. pw can automatically
migrate your .pwrc to the new format:

[config]
	password_length = 35
	password_character_class = [:graph:]
	clipboard_clear_time = 45

[plugins]
	$PW_HOME/plugins/gpg
	$PW_HOME/plugins/keepassxc
	$PW_HOME/plugins/macos_keychain

[keychains]
	secrets.keychain-db
	~/path/to/myproject.keychain-db
	~/path/to/keepassxc.kdbx
	~/path/to/gpg/secrets

The new format includes config, plugins, and keychains sections. The
config section includes password_length, password_character_class, and
clipboard_clear_time. You can still override these values with the environment
variables PW_GEN_LENGTH, PW_GEN_CLASS, and PW_CLIP_TIME respectively.

Additionally, with the new plugin section, you now have fine-grained control
over the plugins you want to use. You can specify your own plugins in addition
to the default plugins provided by pw.

Added

  • Set SHELL with type -p bash

Changed

  • Change pwrc to INI-like format including config, plugins, and keychains sections
  • Move plugins out of src folder

Other

  • Run tests and coverage in parallel
Assets 2
Loading

pw-9.2.3

31 Oct 18:07
@sschmid sschmid
9.2.3
2785249
This commit was signed with the committer’s verified signature.
sschmid Simon Schmid
GPG key ID: 429C12EC553AB56C
Learn about vigilant mode.
Compare
Choose a tag to compare
pw-9.2.3

Added

  • Make pw work on Arch btw
  • Improve entropy in password generation by reducing read size

Fixed

  • Fix character classes for BusyBox tr to avoid using sed
Assets 2
Loading

pw-9.2.2

27 Oct 11:19
@sschmid sschmid
9.2.2
04e1338
This commit was signed with the committer’s verified signature.
sschmid Simon Schmid
GPG key ID: 429C12EC553AB56C
Learn about vigilant mode.
Compare
Choose a tag to compare
pw-9.2.2

Added

  • keepassxc: Display error messages prominently to avoid them being missed

Fixed

  • Fix fzf preview in docker container
Assets 2
Loading

pw-9.2.1

27 Oct 09:56
@sschmid sschmid
9.2.1
e3b4ed6
This commit was signed with the committer’s verified signature.
sschmid Simon Schmid
GPG key ID: 429C12EC553AB56C
Learn about vigilant mode.
Compare
Choose a tag to compare
pw-9.2.1

Fixed

  • Fix fzf yank to use new copy paste
  • Discard Xvfb output when running docker container
Assets 2
Loading

pw-9.2.0

26 Oct 21:13
@sschmid sschmid
9.2.0
7987259
This commit was signed with the committer’s verified signature.
sschmid Simon Schmid
GPG key ID: 429C12EC553AB56C
Learn about vigilant mode.
Compare
Choose a tag to compare
pw-9.2.0

Added

  • Make pw work on Alpine Linux and Ubuntu
  • Add Dockerfiles for building and testing pw on Alpine Linux and Ubuntu
  • Add support for clipboard tools: xclip, xsel, wl-clipboard
  • Faster copy to clipboard
Assets 2
Loading

pw-9.1.1

19 Oct 16:56
@sschmid sschmid
9.1.1
eceb988
This commit was signed with the committer’s verified signature.
sschmid Simon Schmid
GPG key ID: 429C12EC553AB56C
Learn about vigilant mode.
Compare
Choose a tag to compare
pw-9.1.1

Added

  • macos_keychain: Remove unnecessary password prompt for show command
  • macos_keychain: Remove unnecessary password prompt for fzf preview
Assets 2
Loading

pw-9.1.0

19 Oct 15:03
@sschmid sschmid
9.1.0
e9d071f
This commit was signed with the committer’s verified signature.
sschmid Simon Schmid
GPG key ID: 429C12EC553AB56C
Learn about vigilant mode.
Compare
Choose a tag to compare
pw-9.1.0

Upgrading to pw 9.1.0

In order to increase security, the macos_keychain plugin won't automatically
add the security command to the keychain's access control list anymore.

Typically, when accessing keychain items added by other applications, the user
is prompted to allow or always allow access. However, when keychain entries are
added using the security command itself, the command is automatically granted
access to those items without future prompts. This can be a security risk, because
other applications can use the security command to access these items without
prompting the user.

pw changes this behaviour to reduce security risks by not automatically adding
the security command to the keychain's access control list. This way you have
full control over which applications can access your keychain items and decide
whether to allow or deny access.

If you want to add the security command to the keychain's access control list
by default, you can set the environment variable
PW_MACOS_KEYCHAIN_ACCESS_CONTROL to always-allow:

export PW_MACOS_KEYCHAIN_ACCESS_CONTROL="always-allow"

Added

  • Add PW_MACOS_KEYCHAIN_ACCESS_CONTROL to control access control list behavior
  • Add "Security Considerations" section to readme

Changed

  • macos_keychain: Don't add security command to access control list by default
  • macos_keychain: Don't unlock keychain for fzf preview
  • gpg: Don't unlock keychain for fzf preview
Assets 2
Loading

pw-9.0.0

17 Oct 11:48
@sschmid sschmid
9.0.0
4e6d805
This commit was signed with the committer’s verified signature.
sschmid Simon Schmid
GPG key ID: 429C12EC553AB56C
Learn about vigilant mode.
Compare
Choose a tag to compare
pw-9.0.0

Upgrading to pw 9.0.0

In order to increase security, plugins are no longer sourced. Instead they are
executed as separate scripts. This change also makes it easier to write and
maintain plugins. Please migrate your custom plugins to the new format.

Additionally, .pwrc is also no longer sourced and has been replaced by a
new format. pw can automatically migrate your .pwrc to the new format:

~/path/to/myproject.keychain-db
~/path/to/keepassxc.kdbx
~/path/to/gpg/secrets

Added

  • Added .pwrc migration
  • Script optimizations
  • Explicit variable declarations and strict scoping

Changed

  • Plugins are no longer sourced
  • Plugins functions have been extracted to separate files
  • .pwrc is no longer sourced and has a new format
  • .pwrc is no longer created by default and is optional

Removed

  • Removed redirecting from tty
  • Deleted sample plugin
Assets 2
Loading

pw-8.2.1

08 Oct 13:56
@sschmid sschmid
8.2.1
4c39369
This commit was signed with the committer’s verified signature.
sschmid Simon Schmid
GPG key ID: 429C12EC553AB56C
Learn about vigilant mode.
Compare
Choose a tag to compare
pw-8.2.1

Fixed

  • Fix generated password being empty
Assets 2
Loading

pw-8.2.0

08 Oct 12:59
@sschmid sschmid
8.2.0
e724122
This commit was signed with the committer’s verified signature.
sschmid Simon Schmid
GPG key ID: 429C12EC553AB56C
Learn about vigilant mode.
Compare
Choose a tag to compare
pw-8.2.0

Added

  • Add pw show to show details
  • Add fzf shortcut CTRL-Y to copy (or print) details
  • Add fzf shortcut ? to toggle preview and make preview hidden by default
  • Sort discovered keychains
  • Display error message when no keychain was set
  • macos_keychain: Show name, account, url and notes in fzf preview
  • keepassxc: Enable yubikey and key-file fzf preview
  • gpg: Add name to fzf preview

Fixed

  • Fix password prompt did trim whitespace
  • Support multiline notes when adding new entry interactively

Changed

  • Sort using users default LC_ALL

Removed

  • Remove login.keychain-db as default keychain
Assets 2
Loading