A secure, developer-friendly credential manager for managing API keys, tokens, and secrets across your projects.
Zap is a modern credential management system designed for developers. It consists of two components:
- Desktop App (Tauri) - Secure GUI for managing your credentials
- CLI (Python) - Inject secrets into your development environment
- 🔐 Secure vault with master password encryption
- 📦 Organize secrets in "boxes" (projects/environments)
- 🎨 Modern, native desktop UI
- 🔄 Import/Export functionality
- 💻 Cross-platform (macOS, Windows, Linux)
Built with: Tauri, React, TypeScript, Rust
- 🚀 Inject secrets as environment variables
- 🔄 Session-based workflow
- 🛡️ AES-GCM encryption
- 📝 Simple, intuitive commands
Built with: Python, Click, Rich
Download from Releases:
-
macOS: Download
.dmgfile- Open the
.dmg - Drag Zap to Applications
- Right-click → Open (first time only - unsigned build)
- Open the
-
Windows: Download
.msiinstaller- Run installer
- Click through "Unknown publisher" warning
Note: Testing builds are unsigned. We'll add code signing before public launch.
# macOS/Linux
pip3 install zapc
# Windows
pip install zapcmacOS users: You may need to add to PATH:
echo 'export PATH="$HOME/Library/Python/3.9/bin:$PATH"' >> ~/.zshrc
source ~/.zshrcVerify installation:
zap --version📖 Detailed guide: CLI Installation Guide
- Open Zap desktop app
- Create a vault with a master password
- Add a "box" (e.g., "my-project")
- Add secrets to the box
- Go to Dev Mode and create a session
# In your project directory
cd my-project/
# Set the session
zap use my-session-name
# Run your app with secrets injected
zap run -- npm startzap/
├── src-tauri/ # Desktop app (Rust + Tauri)
│ ├── src/
│ └── Cargo.toml
├── zap-cli/ # Python CLI
│ ├── zap_cli/
│ └── setup.py
├── src/ # Frontend (React + TypeScript)
└── package.json
-
For Desktop App:
- Node.js 18+
- Rust 1.70+
- Tauri prerequisites (see docs)
-
For CLI:
- Python 3.8+
- pip
# Development
npm run tauri dev
# Production build
npm run tauri buildcd zap-cli
# Create virtual environment
python3 -m venv venv
source venv/bin/activate # On Windows: venv\Scripts\activate
# Install dependencies
pip install -r requirements.txt
# Install in development mode
pip install -e .
# Test
zap --help- ✅ Master password hashed with Argon2
- ✅ Secrets encrypted with AES-GCM (256-bit)
- ✅ Unique session keys per dev session
- ✅ No secrets stored in plaintext
- ✅ Local-only (no cloud, no internet required)
MIT License - see LICENSE file for details
Contributions are welcome! Please feel free to submit a Pull Request.
Made with ❤️ for developers who care about security