secrets/Cargo.toml at 8fdb6db87bb8a868d74f936615e0c0f42fdbeba0

refining/secrets

Public Access

Fork 0

Files

voson 8fdb6db87b

Secrets CLI - Build & Release / 质量检查 (fmt / clippy / test) (push) Successful in 1m27s

Details

Secrets CLI - Build & Release / 版本 & Release (push) Successful in 2s

Details

Secrets CLI - Build & Release / Build (x86_64-unknown-linux-musl) (push) Successful in 1m14s

Details

Secrets CLI - Build & Release / 发布草稿 Release (push) Successful in 2s

Details

Secrets CLI - Build & Release / Build (aarch64-apple-darwin) (push) Failing after 11m1s

Details

Secrets CLI - Build & Release / Build (x86_64-pc-windows-msvc) (push) Has been cancelled

Details

feat: 客户端加密 encrypted 字段，数据库只存密文 (v0.5.0)

- 新增 src/crypto.rs：AES-256-GCM 加解密 + Argon2id 密钥派生 + OS Keychain 读写
- 新增 `secrets init` 命令：输入 Master Password，派生 Master Key 存入 Keychain
- 新增 `secrets migrate-encrypt` 命令：将旧明文 JSONB 数据批量加密
- 修改 db.rs：encrypted 列 JSONB → BYTEA，新增 kv_config 表（存 Argon2id salt）
- 修改 models.rs：encrypted 字段类型 Value → Vec<u8>
- 修改 add/update：写入前 encrypt_json，update 读取后 decrypt → 合并 → 重新加密
- 修改 search：按需解密，未解密时显示 _encrypted:true/_key_count:N
- 通过 6 个 crypto 单元测试（加解密、JSON roundtrip、Argon2id 确定性）

Made-with: Cursor

2026-03-18 20:10:13 +08:00

790 B

Raw Blame History

View Raw

790 B Raw Blame History

790 B

Raw Blame History