A lightweight secret storage vault with CLI and Python API. Stores secrets in encrypted files with master password secured via OS keychain (keyring).

Navigation

Verified details

These details have been verified by PyPI
Project links
GitHub Statistics
Maintainers
Avatar for jd-35656 from gravatar.com jd-35656

Unverified details

These details have not been verified by PyPI
Meta
  • License Expression: MIT
    SPDX License Expression
  • Author: Jitesh Sahani (JD)
  • Tags cli , credentials , keychain , keyring , password-manager , secret-management , secrets , security , storage , vault
  • Requires: Python >=3.10
  • Provides-Extra: docs , tests , types
Classifiers
Report project as malware

Project description

lbx - Lock Box

A lightweight secret storage vault with CLI and Python API. Stores secrets in encrypted files with master password secured via OS keychain.

Features

  • Secure Encryption: AES-256 encryption with master password protection
  • Cross-Platform: Works on Windows, macOS, and Linux
  • Dual Interface: Both CLI and Python API available
  • Keychain Integration: Master password stored securely in OS keychain
  • Simple Workflow: Intuitive commands for daily use
  • Minimal Dependencies: Lightweight and secure

Installation

pipx install lbx

For additional installation methods, see the Installation Guide.

Quick Start

CLI Usage

# Create a new vault
lbx vault init

# Add a secret
lbx secret add github token --value ghp_xxxxxx

# Retrieve a secret
lbx secret get github token

# Update a secret
printf "new-value" | lbx secret update github token

# List services and secrets
lbx service list
lbx secret list
lbx secret list --service github

# Rename or move secrets
lbx secret rename github token api_key
lbx secret move github api_key gitlab

# Lock or delete the vault
lbx vault lock
lbx vault delete

Python API

from lbx import Lbx

vault = Lbx()

vault.add_secret("github", "token", "value")
entry = vault.get_secret("github", "token")
print(entry.value)

vault.list_services()
vault.list_secrets()

For complete examples and tutorials, see the Quick Start Guide.

Use Cases

  • Development Teams: Store API keys, database credentials, and service tokens securely
  • DevOps & CI/CD: Manage secrets in deployment pipelines and infrastructure automation
  • Personal Projects: Keep sensitive configuration data encrypted and organized
  • Security-Conscious Users: Replace plain-text config files with encrypted secret storage

Documentation

Complete documentation is available at: https://jd-35656.github.io/lbx/latest/

Requirements

  • Python 3.10 or higher
  • Windows, macOS, or Linux
  • OS keychain support (automatic)

Contributing

Contributions are welcome! Please read the Contributing Guide for details on our development process, coding standards, and how to submit pull requests.

License

MIT License - see LICENSE file for details.

Support

© 2025 Jitesh Sahani (JD)
📧 jitesh.sahani@outlook.com

"Your secrets are safe, your mind at peace."
🐺 Crafted by a dreamer, for dreamers 🐺

Project details

Verified details

These details have been verified by PyPI
Project links
GitHub Statistics
Maintainers
Avatar for jd-35656 from gravatar.com jd-35656

Unverified details

These details have not been verified by PyPI
Meta
  • License Expression: MIT
    SPDX License Expression
  • Author: Jitesh Sahani (JD)
  • Tags cli , credentials , keychain , keyring , password-manager , secret-management , secrets , security , storage , vault
  • Requires: Python >=3.10
  • Provides-Extra: docs , tests , types
Classifiers

Release history Release notifications | RSS feed

This version

1.2.0

1.1.0

1.0.1

1.0.0

Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Source Distribution

lbx-1.2.0.tar.gz (61.9 kB view details)

Uploaded Source

Built Distribution

If you're not sure about the file name format, learn more about wheel file names.

lbx-1.2.0-py3-none-any.whl (26.2 kB view details)

Uploaded Python 3

File details

Details for the file lbx-1.2.0.tar.gz.

File metadata

  • Download URL: lbx-1.2.0.tar.gz
  • Upload date:
  • Size: 61.9 kB
  • Tags: Source
  • Uploaded using Trusted Publishing? Yes
  • Uploaded via: twine/6.1.0 CPython/3.13.7

File hashes

Hashes for lbx-1.2.0.tar.gz
Algorithm Hash digest
SHA256 c68e62e9af17196a90eb8a1cd23e6f5937a7dcafd82ba1bb9f92c0ef98868085
MD5 3778b868d641164ac50e584e601b017d
BLAKE2b-256 4e20746bfe9d8785bb16e08187ba834bb32c6e4de4d98d3baacabcf48e4f36de

See more details on using hashes here.

Provenance

The following attestation bundles were made for lbx-1.2.0.tar.gz:

Publisher: release.yml on jd-35656/lbx

Attestations: Values shown here reflect the state when the release was signed and may no longer be current.

File details

Details for the file lbx-1.2.0-py3-none-any.whl.

File metadata

  • Download URL: lbx-1.2.0-py3-none-any.whl
  • Upload date:
  • Size: 26.2 kB
  • Tags: Python 3
  • Uploaded using Trusted Publishing? Yes
  • Uploaded via: twine/6.1.0 CPython/3.13.7

File hashes

Hashes for lbx-1.2.0-py3-none-any.whl
Algorithm Hash digest
SHA256 4ed45bb65f0eec677a2cffd1c3ac7884659e57167aa80b8326d278791bb72bed
MD5 e0eedd69003d7af536b94b595f92b5e4
BLAKE2b-256 f68dd18dfa811a335ef3d00b868fdc404a8a66076a2574e58c0c06b2d15a5b86

See more details on using hashes here.

Provenance

The following attestation bundles were made for lbx-1.2.0-py3-none-any.whl:

Publisher: release.yml on jd-35656/lbx

Attestations: Values shown here reflect the state when the release was signed and may no longer be current.

Supported by

AWS Cloud computing and Security Sponsor Datadog Monitoring Depot Continuous Integration Fastly CDN Google Download Analytics Pingdom Monitoring Sentry Error logging StatusPage Status page