gopass

Gopass is a modern password manager designed as a drop-in replacement for the standard UNIX password manager 'pass'. It securely stores credentials using GPG encryption and Git versioning by default, though it supports alternative backends like age encryption and fossil storage. The tool is specifically built for teams working in distributed environments, offering the same user experience across Linux, macOS, BSD, and Windows platforms.

What sets gopass apart is its flexibility and team-oriented features. It can operate completely offline on air-gapped machines or sync across multiple devices and team members through Git repositories. The primary interface is command-line based, making it ideal for CLI enthusiasts, CI/CD systems, and automation workflows. However, it also offers browser integration for users who prefer GUI interactions.

Gopass is perfect for development teams, system administrators, and security-conscious individuals who need a reliable, auditable password management solution. Its Git-based approach means password stores are fully versioned, making it easy to track changes and collaborate with team members while maintaining strong encryption standards.

Installation

# via Homebrew
brew install gopass

# via APT (Debian/Ubuntu)
curl https://packages.gopass.pw/repos/gopass/gopass-archive-keyring.gpg | sudo tee /usr/share/keyrings/gopass-archive-keyring.gpg >/dev/null && cat << EOF | sudo tee /etc/apt/sources.list.d/gopass.sources
Types: deb
URIs: https://packages.gopass.pw/repos/gopass
Suites: stable
Architectures: all amd64 arm64 armhf
Components: main
Signed-By: /usr/share/keyrings/gopass-archive-keyring.gpg
EOF
sudo apt update && sudo apt install gopass gopass-archive-keyring

# via Go Install
go install github.com/gopasspw/gopass@latest