Show HN: Keeper – embedded secret store for Go (help me break it)

Source: Hacker News

Keeper: An Embeddable Secret Store

Keeper is an embeddable secret store (Argon2id, XChaCha20‑Poly1305 by default). It offers four security levels, audit chains, and crash‑safe rotation. For many use cases, Vault is overkill; Keeper is intended for situations where you’re paranoid about environment variables and need encrypted local storage that actually works.

There is no security through obscurity. The project is still early, making it a good time to look for edge cases, race conditions, memory leaks, crypto misuse, or anything that could break. The README contains a full security model breakdown for those who want to take an adversarial approach.

Comments

• Hacker News discussion (4 points)