Phase 3 Complete

AI-Native
Credential Manager

The vault is commodity.
The intelligence layer is the product.

›▎

Interactive Demo

Talk to your vault

No folders. No search bars. Just ask for what you need. Click through the tabs below to see it in action.

🔑

Click Send to start the conversation

what's the netflix password?

System Design

How it works

Architecture

Clients

Chat Web UI

CLI Client

Chrome Extension

▼

API Gateway — FastAPI

/auth

/vault

/search

/chat

▼

Intelligence

Claude — Intent Parsing

OpenAI — Embeddings

▼

Data

PostgreSQL + pgvector

Encrypted Blobs

Audit Log

Zero-Knowledge Security

Master Password + Salt
Argon2id KDF
Encryption Key
Client-only · never sent
Auth Hash
Server-stored · one-way

●AES-256-GCM— Authenticated encryption for all fields

●Client-Side Only— Server stores only encrypted blobs

●JWT + Refresh— Short-lived tokens, rotated refresh

●TLS 1.3— All API traffic encrypted in transit

Stack

Built with

⚙Backend

PythonFastAPISQLAlchemy

◉Database

PostgreSQLpgvector

◈Encryption

Argon2idAES-256-GCM

◆AI

Claude APIOpenAI Embeddings

◧Frontend

ReactViteTailwind

△Infra

DockerRailway

Development

Roadmap

FoundationWk 1–2Done

Encrypted vault, JWT auth, CLI client, Railway deploy

AI BrainWk 3–4Done

Semantic search, Claude intent parsing, auto-tagging

Chat UI + ExtensionWk 5–7Done

React frontend, Chrome extension, auto-fill

Multi-User & SyncWk 8–10Planned

Shared collections, ACLs, audit logging

Smart FeaturesWk 11–13Planned

Password health, breach monitoring, rotation workflows

AI-NativeCredential Manager