Currently, passwords saved using psmgr are stored in plaintext in the SQLite database. This represents a significant security risk, as anyone with access to the database can read the passwords directly.
Recommendation :
- Implement encryption or hashing of passwords before storing them.
- Consider using a library like cryptography (e.g., Fernet) for symmetric encryption with a securely managed master key.
- Update the README with relevant changes and provide a migration strategy.
Currently, passwords saved using psmgr are stored in plaintext in the SQLite database. This represents a significant security risk, as anyone with access to the database can read the passwords directly.
Recommendation :