Hacker News new | past | comments | ask | show | jobs | submit login
Show HN: Ward – a file vault written in bash (github.com/oeo)
20 points by genesishash 9 months ago | hide | past | favorite | 11 comments
just wanted to share ward, a tool i hacked together to encrypt and manage sensitive files in a vault folder. it's written in bash and meant to be cloned and then stored using git or version control.

you don't have to store it that way, it's just why i created it.

what ward does:

encrypts the files in ./vault/ into a single .gpg file, checks to see if your files have been tampered with, generates totp codes if you need them to recover critical accounts.

how to use it:

clone the repo, toss your files into the vault directory, and run yarn encrypt. now commit your new [private] repository or save it somewhere.

that's it. repo link: https://github.com/oeo/ward

feedback welcome, or just let me know if you find it useful.




What's up with the commit-messages? https://github.com/oeo/ward/commit/73811e03a45ba77bc87e277ca...


i have an incredibly obnoxious commit alias that just sha's the unix epoch and uses it as a commit message.


Why? If it’s “incredibly obnoxious”, why do you use it?


Thanks for creating this. However, I was a bit puzzled when I found a packages.json and then saw that all the heavy lifting is done from bash. I don't understand the need for having to install Yarn for just running a bunch of bash scripts. IMHO, after seeing the size and the amount of logic within the scripts, I think you could have made it more ergonomic by just building a bash script that takes parameters and that's it.


This all lowercase trend is getting out of hand. What are people even doing? Do you write everything normally then use a script to lowercase every letter? Uppercase letters have a purpose, they provide clarity. Please respect your readers.

Like it or not, presentation sends a signal. Why would someone trust a security project where the author hasn’t even bothered to write instructions properly or make legible commit messages?


Hᴇʟʟᴏ. Iᴛ sᴜʀᴇ ᴅᴏᴇs sᴇɴᴅ ᴀ sɪɢɴᴀʟ.


What’s the point of this comment? What does it accomplish other than being inscrutable to people on screen readers?


Thank you for this simple but useful tool! It works. I will be happy to use it e.g. with USB sticks, where I sometimes transfer sensitive data and so far I have only used dm-crypt.

Btw, if somebody's Ubuntu/Debian doesn't want to find "oath-toolkit", install "oathtool".


glad you found it useful


Have you looked into pass? https://www.passwordstore.org/

I think it's a bit more elegant and keeps it 100% "bash" without needing the JavaScript.


Why do I need yarn (package manager for JavaScript) for invoking bash scripts?




Consider applying for YC's Fall 2025 batch! Applications are open till Aug 4

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: