Launching today
Quick Access for Pass
Fast vault search, SSH, and CLI integrations for macOS
2 followers
Fast vault search, SSH, and CLI integrations for macOS
2 followers
Instantly search vaults, copy passwords, OTPs, use SSH keys, and run CLI commands with Proton Pass credentials protected by Touch ID. Built on Proton Pass CLI with an encrypted local index for fast search. Fully open source, Apple-notarized, and ready to use.
Hi everyone! 👋
I built Quick Access for Pass after moving my family from 1Password to Proton Pass. While I was happy with the switch overall, I kept missing Quick Access and some of the developer-focused workflows I relied on, such as SSH integration and shell plugins.
The project started as a small tool for me a few months ago, but after seeing similar requests from other Proton Pass users, I decided to polish it and release it publicly on GitHub two months ago.
Today, I'm finally (almost) confident that anyone can use it with the bundled Proton Pass CLI.
A few implementation details that may be interesting:
Built entirely on Proton Pass CLI (uses the one already installed, or the bundled one if none is found).
Fast search powered by an encrypted local SQLite index and usage-based ranking so your most-used items surface first.
Passwords, OTP secrets, notes, custom items, and SSH keys are never stored locally. All secrets are fetched on demand from Proton Pass CLI.
Large Type when you need to dictate or manually enter the password on another device.
Auto-locks after a defined period of inactivity or when the Mac locks and requires Touch ID or account password to unlock.
No HTTP requests, analytics, or telemetry. Even updates must be performed manually.
Fully open source and Apple-notarized. I would not run a closed-source application that has access to my Proton Pass either.
Optional developer-focused features:
SSH agent proxying with Touch ID approval and a remember feature for selected applications. When run from the command line (e.g., `ssh` or `git` commands), it will show the command that requested the SSH key.
Command execution with credentials injected from Proton Pass, with Touch ID approval as well. No more globally authenticated CLI tools (e.g., GitHub CLI) that anyone (like an unsupervised AI agent) can access anytime. See & copy the full command before approving, and pre-approve safe operations with the remember feature.
One of the biggest technical challenges was search performance. My first prototype queried the Proton Pass CLI directly, but that quickly became unusable with larger vaults. The encrypted metadata index made searches feel instant while keeping the Proton Pass CLI as the source of truth for secrets.
This is also my first serious macOS application. I’m primarily a Ruby developer, so building it was a great opportunity to learn Swift, SwiftUI, Touch ID APIs, and SSH agent internals.
I’d love feedback, especially on the security model, developer workflows, and anything that feels missing, if you’ve used 1Password Quick Access before.
Thanks!