search

roddhjav / pass-update

A pass extension that provides an easy flow for updating passwords.
https://www.passwordstore.org
GNU General Public License v3.0
289 stars 22 forks source link
pass pass-extension password password-manager password-store

readme

pass update

A pass extension that provides an easy flow for updating passwords.

Description

pass update extends the pass utility with an update command providing an easy flow for updating passwords. It supports path, directory and wildcard update. Moreover, you can select how to update your passwords by automatically generating new passwords or manually setting your own.

pass update assumes that the first line of the password file is the password and so only ever updates the first line unless the --multiline option is specified.

By default, pass update prints the old password and waits for the user before generating a new one. This behaviour can be changed using the provided options.

Usage

pass update 2.2.1 - A pass extension that provides an easy flow for updating passwords.

Usage:
    pass update [-h] [-n] [-l <s>] [-c | -p] [-p | -m]
                [-e <r>] [-i <r>] [-E] [-f] pass-names...
         Provide an interactive solution to update a set of passwords.
         pass-names can refer either to password store path(s) or to
         directory.

         It prints the old password and waits for the user before generating
         a new one. This behaviour can be changed using the provided options.

         Only the first line of a password file is updated unless the
         --multiline option is specified.

     Options:
         -c, --clip        Write the password to the clipboard.
         -n, --no-symbols  Do not use any non-alphanumeric characters.
         -l, --length <s>  Provide a password length.
         -a, --auto-length Match the previous password's length.
         -p, --provide     Let the user specify a password by hand.
         -m, --multiline   Update a multiline password.
         -i, --include <r> Only update the passwords that match a regex.
         -e, --exclude <r> Do not update the passwords that macth a regex.
         -E, --edit        Edit the password using the default editor.
         -f, --force       Force update.
         -V, --version     Show version information.
         -h, --help        Print this help message and exit.

More information may be found in the pass-update(1) man page.

See man pass-update for more information.

Examples

Update Social/twitter.com

pass update Social/twitter.com
Changing password for Social/twitter.com
[}p&62"#"x'aF/_ix}6X3a)zq
Are you ready to generate a new password? [y/N] y
The generated password for Social/twitter.com is:
~*>afZsB+G\,c#+g$-,{OqJ{w

Update all the Emails

pass update Email
Changing password for Email/donenfeld.com
b9b"k(u#m7|ST-400B5gM%[Kq
Are you ready to generate a new password? [y/N] y
The generated password for Email/donenfeld.com is:
m6~!b5U`OhloT~R,4-OCa:h$Q
Changing password for Email/zx2c4.com
HWl7u\Aqdk]AY$y!='@>]8"@`
Are you ready to generate a new password? [y/N] y
The generated password for Email/zx2c4.com is:
@uLYW_X9a",?wDQN=hp/^Z!$J

Set password length

pass update -l 50 France/bank
Changing password for France/bank
9b'I;]b)>06xug!3.ME1*E+M3
login: zx2c4
Are you ready to generate a new password? [y/N] y
The generated password for France/bank is:
|3=&{ko:#I|A,P4*=[|hk^/V4jIcRN.uBBd-~RB0_L<sS[%k%-

Provide a password by hand

pass update -p Business/site.com
Changing password for Business/site.com
Zk=u]HqjUAKPZ$gM_,LuZV8J2
login: zx2c4
Are you ready to provide a new password? [y/N] y
Enter the new password for Business/site.com:
Retype the new password for Business/site.com:

Do not update PIN code

pass update --exclude '^[0-9]+$' /

Update only PIN code

pass update --include '^[0-9]+$' /

Installation

Requirements

ArchLinux

pass-update is available in the Arch User Repository.

yay -S pass-update  # or your preferred AUR install method

Debian/Ubuntu

pass-update is available my own debian repository with the package name pass-extension-update. Both the repository and the package are signed with my GPG key: 06A26D531D56C42D66805049C5469996F0DF68EC.

wget -qO - https://pkg.pujol.io/debian/gpgkey | gpg --dearmor | sudo tee /usr/share/keyrings/pujol.io.gpg >/dev/null
echo 'deb [arch=amd64 signed-by=/usr/share/keyrings/pujol.io.gpg] https://pkg.pujol.io/debian/repo all main' | sudo tee /etc/apt/sources.list.d/pkg.pujol.io.list
sudo apt-get update
sudo apt-get install pass-extension-update

NixOS

nix-env -iA nixos.passExtensions.pass-update

OSX

pass-update is available with Homebrew using a third-party repository

brew tap simplydanny/pass-extensions
brew install pass-update

From git

git clone https://github.com/roddhjav/pass-update/
cd pass-update
sudo make install  # For OSX: make install PREFIX=/usr/local

Stable version

wget https://github.com/roddhjav/pass-update/releases/download/v2.2.1/pass-update-2.2.1.tar.gz
tar xzf pass-update-2.2.1.tar.gz
cd pass-update-2.2.1
sudo make install  # For OSX: make install PREFIX=/usr/local

Releases and commits are signed using 06A26D531D56C42D66805049C5469996F0DF68EC. You should check the key's fingerprint and verify the signature:

wget https://github.com/roddhjav/pass-update/releases/download/v2.2.1/pass-update-2.2.1.tar.gz.asc
gpg --recv-keys 06A26D531D56C42D66805049C5469996F0DF68EC
gpg --verify pass-update-2.2.1.tar.gz.sig

Contribution

Feedback, contributors, pull requests are all very welcome.