by MakioNative macOS app for API keys, .env groups, and server credentials—open source (MIT). Everything stays on your Mac, secured with Keychain and encryption.
Full source, tests, and Xcode project on GitHub — verify and build it yourself.
Features
Workspaces, environments, and quick copy—built for daily dev work, with nothing synced to the cloud.
API keys, database credentials, and .env groups stay on your Mac. No cloud sync, no telemetry, no vendor lock-in — sensitive values in Keychain, not plain text in the database, plus encryption at rest.
Nothing phones home while you work — exports are explicit, under your control.
Swift and SwiftUI: fast lists, native text fields, and behaviors that feel like real Mac software — not a wrapped web view.
Sensitive values can live in the Apple Keychain instead of plain-text stores, with the OS handling access and optional biometric gates. Full overview.
Command palette, search, and shortcuts so you can jump to a secret, copy a field, and get back to the terminal without reaching for the mouse.
Group items by client or project, tag environments (local, staging, production), and keep exports scoped to the workspace you are in.
PassStore integrates directly with the macOS Keychain Services API. We leverage the hardware-backed security of your Mac's Secure Enclave to keep your keys untouchable.
Authenticated encryption for data at rest.
Memory-hard key derivation. Resistant to GPU and ASIC brute-force.
Vault key stored with biometric access control, device-only.
Secrets auto-clear after 10 s and are excluded from Handoff.
Free for macOS — no subscription. The app is open source on GitHub (MIT); the repository holds the full source, tests, and docs such as SECURITY.md. Read the security overview on this site for how PassStore protects your vault. Optional support on Ko-fi if you want to buy the developer a coffee.
REQUIREMENTS: macOS 26.0 OR LATER · UNIVERSAL BINARY
