this post was submitted on 25 Nov 2025
60 points (94.1% liked)

Proton

8193 readers
1 users here now

Empowering you to choose a better internet where privacy is the default. Protect yourself online with Proton Mail, Proton VPN, Proton Calendar, Proton Drive. Proton Pass and SimpleLogin.

Proton Mail is the world's largest secure email provider. Swiss, end-to-end encrypted, private, and free.

Proton VPN is the world’s only open-source, publicly audited, unlimited and free VPN. Swiss-based, no-ads, and no-logs.

Proton Calendar is the world's first end-to-end encrypted calendar that allows you to keep your life private.

Proton Drive is a free end-to-end encrypted cloud storage that allows you to securely backup and share your files. It's open source, publicly audited, and Swiss-based.

Proton Pass Proton Pass is a free and open-source password manager which brings a higher level of security with rigorous end-to-end encryption of all data (including usernames, URLs, notes, and more) and email alias support.

SimpleLogin lets you send and receive emails anonymously via easily-generated unique email aliases.

founded 2 years ago
MODERATORS
ProtonPrivacy@lemmy.world
alex_herrero@lemmy.world
Nelizea@lemmy.world
60
Proton Pass: Get more done with fast, secure access directly in the terminal. (infosec.pub)
submitted 3 weeks ago by Nelizea@lemmy.world to c/protonprivacy@lemmy.world
13 comments fedilink hide all child comments
 

from the team:

Hey everyone,

For all of those technical users who love scripting and automating tasks and need direct access to Proton Pass from the terminal, we’ve just released CLI support.

This is built as a fast, secure, and automation-friendly way to access and manage Proton Pass items directly from the terminal.

The feature is available in beta for paid Proton Visionary users, with broader general availability coming soon (Pass Plus, Family, Unlimited, Professional, B2B bundles).

It will:

  • Enable scripting, both for personal scripts and for user management in enterprise setups
  • Provide secure credential access directly in the terminal
  • Allow users to create, read, update, and delete vaults and items
  • Let users view, retrieve, create, update, and delete passwords, secure notes, credit cards, identities, WiFi entries, custom items, and stored SSH-key items
  • Support vault member management
  • Work in CI/CD, servers, containers, and headless environments via app-password authentication
  • Enable simple scripted workflows and task automation

Stay in the flow and stay secure with Proton Pass CLI.

Read more: https://proton.me/blog/proton-pass-cli

top 13 comments
sorted by: hot top controversial new old
[–] Soapbox@lemmy.zip 24 points 3 weeks ago (2 children)

So we get this before a proton drive client for Linux.......

[–] Hansae@lemmy.dbzer0.com 15 points 3 weeks ago (1 children)

Or the VPN client being anywhere near passable.... ffs proton

[–] 9488fcea02a9@sh.itjust.works 1 points 3 weeks ago (1 children)

Why VPN client for linux? Wireguard configs can be made in browser gui and easy to deploy

[–] Hansae@lemmy.dbzer0.com 2 points 3 weeks ago

A: I am lazy B: I am extremely lazy

[–] Nelizea@lemmy.world 3 points 3 weeks ago

Entirely different teams.

[–] fraksken 19 points 3 weeks ago (1 children)

Nothing as secure as piping a url to a script into bash. /s

[–] 9488fcea02a9@sh.itjust.works 5 points 3 weeks ago (1 children)

90% of the time, that's a valid concern, but you can always read the script first.

And also, if proton wanted to fuck you over, a malicious bash script isnt even a top 10 easy vector. Why trust them with encrypted email if you are suspicious of an install script?

[–] fraksken 2 points 3 weeks ago

90% of the time, that's a valid concern, but you can always read the script first.

It would be a best practice to read any script you want to run on your system. Although the installation instructions tell you to just pipe it into bash.

And also, if proton wanted to fuck you over, a malicious bash script isnt even a top 10 easy vector. Why trust them with encrypted email if you are suspicious of an install script?

My concern is not so much proton fucking you over. There are pleny of attack surfaces between you and the server you're downloading it from.

Installing software on your system usually lets you check a gpg signature or a hash if you're downloading a binary. This method provides no such thing.

A company concerned with security and encryption should know better.

[–] ashleythorne@lemmy.world 6 points 3 weeks ago

Thanks for your work! I have a question though. I just installed it and signed in and it authenticated via a browser link. That works for SSHing from a desktop, but the page mentions it being good "In environments where the graphical UI cannot be used". Is it planned to allow for entering a password and 2FA code when where there truly is no GUI available?

[–] baronvonj@lemmy.world 5 points 3 weeks ago

Configurable domain matching please.

[–] troed@fedia.io 5 points 3 weeks ago

Visionary customer here. This will get used absolutely immediately. Awesome features!

[–] puppinstuff@lemmy.ca 5 points 3 weeks ago* (last edited 3 weeks ago)

Getting quick access to autofill 1Password items in Alfred via the 1P CLI was one of the last feature parity nice-to-haves remaining to fully switch to Proton Pass. Great to see progress here.

[–] adubya@feddit.online 4 points 3 weeks ago

I just use Rust Bitwarden(rbw) its works pretty well & I can host my on thing.