Passbolt

Passbolt is an open-source password and secret management platform designed for teams that need secure sharing, governance, and traceability. It is API-centric and uses a public/private key cryptography model so users keep control of their keys while collaborating.

Key Features

• End-to-end encryption based on OpenPGP with user-owned key pairs
• Granular sharing permissions for passwords and other secrets
• Organization features for groups, folders, tags, comments, and descriptions
• Auditing capabilities and cryptographically-backed traceability of access and changes
• Phishing protections such as URL matching and verification indicators
• Account recovery workflows with admin approval and organization policies
• Multiple clients including browser extensions and mobile apps, plus CLI/SDK access via JSON API

Use Cases

• Share infrastructure and service credentials across IT and DevOps teams with controlled permissions
• Centralize business-critical secrets for departments while keeping an audit trail for compliance
• Enable secure credential access for distributed teams, including air-gapped or restricted environments

Limitations and Considerations

• Full functionality typically depends on using official clients (for example, browser extensions) for key management and seamless autofill
• Some advanced capabilities may differ between Community Edition and paid offerings

Passbolt is a strong fit for organizations that need a security-first approach to shared credentials, with interoperable cryptography and an API-driven design. It balances team collaboration with controls like permissioning, auditing, and recovery policies.