It's a neat idea and I respect your work.
However isn't this in general a bad idea and not really a password manager?
#PfP: "Most passwords never stored but generated when needed"
I'm no #mathematician but _generating_ or in this case aka _storing_ passwords like this is inherently insecure?
@sillystring In the end: yes, generating passwords will always have this additional attack vector, as opposed to merely storing them. However, with a proper derivation algorithm and a master password that isn't "password1" the risk here will be very low, particularly if compared to the other risks password managers are exposed to. Yet the gain when you need to recover your data is massive and outweighs the risk by far.
A Mastodon instance for info/cyber security-minded people.