Phase 3 Complete

AI-Native
Credential Manager

The vault is commodity.
The intelligence layer is the product.

β€Ίβ–Ž

Interactive Demo

Talk to your vault

No folders. No search bars. Just ask for what you need. Click through the tabs below to see it in action.

πŸ”‘

Click Send to start the conversation

what's the netflix password?

System Design

How it works

Architecture

Clients
Chat Web UI
CLI Client
Chrome Extension
β–Ό
API Gateway β€” FastAPI
/auth
/vault
/search
/chat
β–Ό
Intelligence
Claude β€” Intent Parsing
OpenAI β€” Embeddings
β–Ό
Data
PostgreSQL + pgvector
Encrypted Blobs
Audit Log

Zero-Knowledge Security

Master Password + Salt
Argon2id KDF
Encryption Key
Client-only Β· never sent
Auth Hash
Server-stored Β· one-way
●AES-256-GCMβ€” Authenticated encryption for all fields
●Client-Side Onlyβ€” Server stores only encrypted blobs
●JWT + Refreshβ€” Short-lived tokens, rotated refresh
●TLS 1.3β€” All API traffic encrypted in transit

Stack

Built with

βš™Backend
PythonFastAPISQLAlchemy
β—‰Database
PostgreSQLpgvector
β—ˆEncryption
Argon2idAES-256-GCM
β—†AI
Claude APIOpenAI Embeddings
β—§Frontend
ReactViteTailwind
β–³Infra
DockerRailway

Development

Roadmap

FoundationWk 1–2Done

Encrypted vault, JWT auth, CLI client, Railway deploy

AI BrainWk 3–4Done

Semantic search, Claude intent parsing, auto-tagging

Chat UI + ExtensionWk 5–7Done

React frontend, Chrome extension, auto-fill

Multi-User & SyncWk 8–10Planned

Shared collections, ACLs, audit logging

Smart FeaturesWk 11–13Planned

Password health, breach monitoring, rotation workflows

πŸ”‘Keymaster

AI-Native Credential Manager Β· MIT License