npm package discovery and stats viewer.

Discover Tips

  • General search

    [free text search, go nuts!]

  • Package details

    pkg:[package-name]

  • User packages

    @[username]

Sponsor

Optimize Toolset

I’ve always been into building performant and accessible sites, but lately I’ve been taking it extremely seriously. So much so that I’ve been building a tool to help me optimize and monitor the sites that I build to make sure that I’m making an attempt to offer the best experience to those who visit them. If you’re into performant, accessible and SEO friendly sites, you might like it too! You can check it out at Optimize Toolset.

About

Hi, 👋, I’m Ryan Hefner  and I built this site for me, and you! The goal of this site was to provide an easy way for me to check the stats on my npm packages, both for prioritizing issues and updates, and to give me a little kick in the pants to keep up on stuff.

As I was building it, I realized that I was actually using the tool to build the tool, and figured I might as well put this out there and hopefully others will find it to be a fast and useful way to search and browse npm packages as I have.

If you’re interested in other things I’m working on, follow me on Twitter or check out the open source projects I’ve been publishing on GitHub.

I am also working on a Twitter bot for this site to tweet the most popular, newest, random packages from npm. Please follow that account now and it will start sending out packages soon–ish.

Open Software & Tools

This site wouldn’t be possible without the immense generosity and tireless efforts from the people who make contributions to the world and share their work via open source initiatives. Thank you 🙏

© 2026 – Pkg Stats / Ryan Hefner

@benzid.wael/secure-vault

v0.1.5

Published

A secure password management application built with Electron and React

Vulnerabilities

Powered byPowered by Snyk
  • 0High
  • 0Medium
  • 0Low

Links

Git

Maintainers

benzid.waelbenzid.wael

Keywords

Readme

SecureVault CLI

vault — a secure, offline password & environment-variable manager for your terminal.

SecureVault stores secrets in local, encrypted vaults using AES-256-GCM with PBKDF2 key derivation. Nothing leaves your machine. The CLI is especially handy for managing per-project .env files as encrypted, versioned vaults.

Install

Via npm (requires Node.js 20.10+):

npm install -g @benzid.wael/secure-vault
vault info

Standalone binary (no Node required) — download the build for your OS from the releases page:

# macOS / Linux
chmod +x vault-macos-arm64        # or vault-linux-x64, etc.
sudo mv vault-macos-arm64 /usr/local/bin/vault
vault info

On Windows, rename vault-windows-x64.exe to vault.exe and add its folder to PATH. On macOS, if the unsigned binary is blocked, run xattr -d com.apple.quarantine vault once.

Usage

vault info                       # show version and vault location
vault recover --name <vault>     # recover a vault with your master password

Environment vaults

Manage .env secrets as encrypted, versioned vaults:

Variable-level commands (set, get, rm) take the key as the argument and the environment as -e <env> (defaults to "default"). Environment-level commands take the environment name as the argument.

vault env init                   # create an environment vault for this project
vault env import dev .env        # import a .env file into the "dev" environment
vault env set API_KEY s3cr3t -e dev   # set a variable in "dev"
vault env set API_KEY -e dev          # no value: edit in $EDITOR (previous value shown commented)
vault env get API_KEY -e dev          # read it back
vault env show dev               # show all variables in an environment
vault env list                   # list environments in the vault
vault env export dev             # print as dotenv (or JSON)
vault env template dev           # generate a .env.template (keys only)
vault env diff dev prod          # compare two environments
vault env history dev            # view version history
vault env rollback 3 -e dev      # restore a previous version of "dev"
vault env run dev -- npm start   # run a command with the env injected

Layering & template references

Environments can extend a parent so shared variables live in one place, and values can reference another variable with {{env:<name>/<KEY>}} (use self for the same environment). Both are resolved on read — by export, run, get, diff, and validate — so the stored value keeps its reference and re-resolves whenever the source changes.

# Shared defaults in a "base" environment
vault env set LOG_LEVEL info -e base --public
vault env set PORT 3000 -e base --public --required

# "staging" inherits base, then overrides. Any `set` creates the environment;
# `extends` wires the parent (which must already exist; --none clears it).
vault env set API_URL https://staging.example.com -e staging --public
vault env extends staging base
vault env set PORT 8080 -e staging --public           # override an inherited value

# Reference another environment, or your own keys with self.
# --extends sets the parent in the same step as the write.
vault env set --extends base DB_URL '{{env:staging/API_URL}}' -e dev
vault env set ENDPOINT 'localhost:{{env:self/PORT}}' -e dev   # PORT inherited from base

vault env export staging --format json   # base keys merged in (PORT shows 8080)
vault env validate dev                   # required keys aggregated across the chain; all refs must resolve

Layering and references support chains up to 5 deep; circular extends, circular references, and missing keys are reported as validation errors.

Wire layering up front at import time (import every environment in the chain):

vault env init --env base:.env.base --env staging:.env.staging --extends staging:base

Other commands: rm, delete, rename, copy, squash, extends, change-password. Run vault env <command> --help for the full options of any command.

Safety: every write keeps a <vault>.bak of the previous good state and writes atomically, so an interrupted save can never corrupt the vault. Deleting an environment also leaves a timestamped <vault>.deleted.<ts> copy.

Where data is stored

Vaults live in a single location shared with the desktop app:

| OS | Path | | ------- | -------------------------------------------------------- | | macOS | ~/Library/Application Support/secure-password-manager/ | | Linux | ~/.secure-password-manager/ | | Windows | %APPDATA%\secure-password-manager\ |

Security

  • Zero-knowledge: your master password is never stored.
  • AES-256-GCM authenticated encryption (tamper-evident).
  • PBKDF2 key derivation (100,000 iterations).
  • Secrets are never written to disk in plaintext.

Prefer a graphical app?

SecureVault also ships as a cross-platform desktop app (macOS, Windows, Linux) with the same encrypted vaults — so anything you manage in the CLI shows up in the GUI and vice-versa.

👉 Download the desktop app (.dmg, .exe, .AppImage, .deb).

License

MIT