Skip to content

feat: Implement Offline Secrets Manager with AES-256 Encryption #3

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
curiouscoder-cmd merged 1 commit into from
Oct 11, 2025

feat(core): implement offline secrets manager with AES-256 encryption

8a130a2
Select commit
Loading
Failed to load commit list.
Merged

feat: Implement Offline Secrets Manager with AES-256 Encryption #3

feat(core): implement offline secrets manager with AES-256 encryption
8a130a2
Select commit
Loading
Failed to load commit list.
GitHub Advanced Security / CodeQL failed Oct 11, 2025 in 5s

7 new alerts including 1 high severity security vulnerability

New alerts in code changed by this pull request

Security Alerts:

  • 1 high

Other Alerts:

  • 6 notes

See annotations below for details.

View all branch alerts.

Annotations

Check notice on line 97 in src/cli/main.py

See this annotation in the file changed.

Code scanning / CodeQL

Unused local variable Note

Variable project is not used.

Check notice on line 8 in src/core/models.py

See this annotation in the file changed.

Code scanning / CodeQL

Unused import Note

Import of 'Optional' is not used.

Check notice on line 9 in src/core/storage.py

See this annotation in the file changed.

Code scanning / CodeQL

Unused import Note

Import of 'InvalidToken' is not used.

Check failure on line 123 in src/crypto/encryption.py

See this annotation in the file changed.

Code scanning / CodeQL

Use of a broken or weak cryptographic hashing algorithm on sensitive data High

Sensitive data (password)
Loading
is used in a hashing algorithm (SHA256) that is insecure for password hashing, since it is not a computationally expensive hash function.
Sensitive data (password)
Loading
is used in a hashing algorithm (SHA256) that is insecure for password hashing, since it is not a computationally expensive hash function.
Sensitive data (password)
Loading
is used in a hashing algorithm (SHA256) that is insecure for password hashing, since it is not a computationally expensive hash function.
Sensitive data (password)
Loading
is used in a hashing algorithm (SHA256) that is insecure for password hashing, since it is not a computationally expensive hash function.
Sensitive data (password)
Loading
is used in a hashing algorithm (SHA256) that is insecure for password hashing, since it is not a computationally expensive hash function.

Check notice on line 4 in tests/test_storage.py

See this annotation in the file changed.

Code scanning / CodeQL

Unused import Note test

Import of 'tempfile' is not used.

Check notice on line 5 in tests/test_storage.py

See this annotation in the file changed.

Code scanning / CodeQL

Unused import Note test

Import of 'Path' is not used.

Check notice on line 10 in tests/test_storage.py

See this annotation in the file changed.

Code scanning / CodeQL

Unused import Note test

Import of 'EncryptionManager' is not used.