Releases: TocConsulting/cryptex
Cryptex 1.2.1
Cryptex 1.2.1
A follow-up to 1.2.0 that fixes another startup crash. Closes #1.
Fix: the CLI no longer requires boto3/hvac/keyring to start
The integrations module imported boto3 (AWS), hvac (Vault) and keyring
(OS keychain) at startup, and the CLI loads that module for every command. So
a broken or missing copy of any of those packages crashed the entire tool,
even for plain password generation that never uses them. Reported in #1, where
a boto.vendored.six.moves error from an old boto/botocore install made every
command fail.
These imports are now lazy: they only load when you actually use --save-aws,
--save-vault or --save-keychain. Everything else runs without them, and if
an integration package is broken, only that one feature reports an error
instead of taking down the CLI.
Upgrade
pip install --upgrade cryptex-cliCryptex 1.2.0
Cryptex 1.2.0
This release fixes a critical installation bug and cleans up the CLI.
Critical fix: installs now work out of the box
Earlier versions imported pyzbar at startup, which requires the native
zbar library that pip cannot install. On a clean machine without zbar,
every command crashed with ImportError: Unable to find zbar shared library.
Cryptex now uses zxing-cpp, which bundles its native code inside the wheel, so:
pip install cryptex-clijust works on macOS, Linux, and Windows, with no brew install or apt install
step. QR-image and TOTP-from-image decoding are unchanged for users.
Breaking change: file output is now -o/--output
To save passwords to a file, use the explicit flag:
# before
cryptex secrets.txt
# now
cryptex -o secrets.txtThe old bare-positional form silently created a file from any stray word
(for example, cryptex generate wrote a file named generate). The explicit
flag removes that footgun.
Dropped end-of-life Python
Python 3.8 (EOL October 2024) and 3.9 (EOL October 2025) are no longer supported.
Supported runtimes: 3.10, 3.11, 3.12, 3.13.
Upgrade
pip install --upgrade cryptex-cliv1.1.0
v1.1.0 - TOTP Code Reader & QR Image Decoding
Cryptex can now act as a CLI authenticator — compute 6-digit TOTP codes from a base32 secret or a QR code image.
New Feature
--totp-code option accepts a base32 secret string or QR code image path
RFC 6238 compliant TOTP computation using Python stdlib
Smart detection: existing file path → QR image decode, otherwise → base32 secret
Current code, time remaining (color-coded), and next code display
Quiet mode (-q) outputs just the 6-digit code for scripting
Works with --copy and --save-keychain integrations
New Dependencies
pyzbar (QR code image decoding)
Pillow (image processing)
Code Cleanup
All in-function imports moved to top-level
Removed try/except HAS_* import guards — all dependencies are required
Quick Start
cryptex --totp-code "JBSWY3DPEHPK3PXP" # From base32 secret
cryptex --totp-code ./qr-code.png # From QR code image
cryptex --totp-code "JBSWY3DPEHPK3PXP" -q # Just the code
cryptex --totp-code "JBSWY3DPEHPK3PXP" --copy # Copy to clipboard
Cryptex v1.0.0 - Enterprise Password Generator
v1.0.0 - Initial Release
Cryptex is an enterprise-grade CLI tool for generating cryptographically secure passwords, API keys, and TOTP secrets.
Features
Password Generation
- Strong, pronounceable, alphabetic, numeric, and custom character sets
- Configurable length (8-256 characters)
- Minimum character requirements (uppercase, lowercase, digits, special)
- Similar character exclusion for readability
Compliance Templates
- NIST 800-63B (US federal systems)
- PCI-DSS (payment card industry)
- OWASP (web application security)
- High-security, user-friendly, database-safe, WiFi presets
API Key Generation
- UUID, hex, base64, URL-safe formats
TOTP/2FA Support
- Generate secrets for Google Authenticator, Authy, and other TOTP apps
- QR code display in terminal
Enterprise Integrations
- AWS Secrets Manager
- HashiCorp Vault
- OS Keychain (macOS, Linux, Windows)
Output Options
- Plain text, JSON, CSV, environment variables
- Key-value pair generation for .env files
- Clipboard copy support
- QR code generation
Installation
pip install cryptex
Quick Start
cryptex # Generate secure password
cryptex -l 24 --template owasp # OWASP compliant, 24 chars
cryptex --kv "DB_PASS,API_KEY" -f env > .env