secret storage

Keep tokens out of plain text.

FluxGit stores credentials and account tokens in the OS keyring rather than plain text, and shows you the storage status, so the basics of secret hygiene are handled for you.

Request beta access See Trust & Security

The problem: tokens end up in plain text.

Git credentials and forge tokens are easy to leave in plain-text config or scripts. That is a quiet security risk, especially on shared or corporate machines.

Honest beta limit

Credential storage uses the OS keyring, validated in service and tests; installed-build smoke is still in progress, and the OS keyring may be unavailable or fail in some environments, which FluxGit reports.

How FluxGit helps.

keyringbeta

Encrypted by the OS

Tokens live in the platform keyring instead of plain-text files.

statusbeta

Honest about availability

Storage status shows whether the secure backend is present and working.

accountsbeta

Deliberate account setup

Forge accounts and tokens are managed explicitly, not scattered.

Privacy and security posture.

Credentials are stored locally in the OS keyring. FluxGit does not transmit your secrets.

Related features.

Trust & Security explains your local security posture.
AI Cortex keeps provider secrets local-first.
MCP for agents blocks credential access from agents.