My Key Store (MKS) is a dedicated VS Code extension designed to eliminate the risk of managing API keys, access tokens, and secrets in plaintext files. It functions as a secure, personal encrypted vault embedded directly within your editor's sidebar, helping you manage sensitive credentials, certificates, and configuration profiles without leaving your development environment.

Built with a Local-First philosophy, MKS ensures your sensitive data never leaves your device in an unencrypted state. For developers working across multiple machines, it offers optional end-to-end encrypted synchronization via your personal Google Drive.

✨ Core Features

🔒 Bank-Grade Security

• AES-256-GCM Encryption: All data at rest is encrypted using industry-standard algorithms.
• Zero-Knowledge Architecture: Your master encryption key is stored securely in your operating system's keychain via the VS Code SecretStorage API.
• End-to-End Encryption: Cloud synchronization only transfers encrypted ciphertext. Even if your Google Drive is compromised, your secrets remain unreadable without the master key.

🏠 Local-First & Offline Ready

• No Internet Required: Your vault lives on your local disk. You can access, add, or modify keys even when working offline.
• No Third-Party Servers: MKS does not use proprietary backend services. Data flows only between your local machine and your personal Google Drive account.

☁️ Private Cloud Synchronization

• Google Drive Integration: Seamlessly backup and sync your vault between work and personal computers.
• Private Storage: You maintain full control. Data is stored in the hidden App Data folder of your personal Google Drive.
• Conflict Resolution: Automatically detects and resolves sync conflicts using a "Last-Write-Wins" strategy.

📂 Efficient Management

• Hierarchical Grouping: Organize keys into infinitely nested folders.
• Structured Data: Individual entries support multiple custom fields including passwords, emails, and TOTP.
• Built-in TOTP: Generate Two-Factor Authentication codes directly in VS Code with real-time dynamic animations.
• Drag-and-Drop: Easily reorganize your vault structure with intuitive drag-and-drop operations.
• Smart File Import: Automatically parse complex files like JSON (e.g., Google Service Account keys).

⌨️ Developer Workflow

• Modern UI: Features a sleek Glassmorphism design with fluid animations and instant feedback.
• Native Integration: Built using the @vscode/webview-ui-toolkit for a seamless look and feel within the editor.
• One-Click Copy: Instantly copy any field to your clipboard.
• Quick Insert: Inject primary values directly into your active code editor at the cursor position.
• Default Masking: Sensitive values are hidden by default (••••••) to prevent accidental exposure during screen sharing.

🚀 Getting Started

Installation

1. Open the VS Code Extensions view (Ctrl+Shift+X).
2. Search for "My Key Store".
3. Click Install.

Quick Start

1. Click the MKS Icon in the Activity Bar (usually on the left side).
2. Initialize Vault: Follow the prompt to create a new local vault. This generates a secure master key stored in your system's keychain.
3. Add Your First Secret:
   • Click the + (Add) button in the title bar.
   • Select Secret, File, or Group.
   • Enter a name (e.g., "OpenAI API Key") and the corresponding value.
   • Press Enter to save.

Cloud Sync Setup

1. Click the Sign In button in the MKS sidebar or settings.
2. Authenticate with your Google account.
3. Once connected, you can manually Upload or Download your vault.
4. Enable Auto-Sync in the settings for a hands-off synchronization experience.

🛡️ Security Architecture

MKS is built with a security-first mindset. Here is how we protect your data:

• Encryption Algorithm: We utilize AES-256-GCM and generate a unique random IV (Initialization Vector) for every write operation. This ensures that the same data produces different ciphertext every time, preventing replay attacks.
• Key Management: The master encryption key is cryptographically generated on your device and stored in the VS Code Native SecretStorage API, which maps to the Windows Credential Manager, macOS Keychain, or Linux Secret Service (Gnome Keyring/KWallet).
• Memory Safety: Sensitive data is only kept in memory when strictly necessary and is cleared when the window is reloaded or closed.
• Sync Security: During synchronization, we upload an encrypted binary vault file. We also sync the master key (wrapped in an additional layer of encryption) to your Google Drive App Data folder to facilitate easy recovery on new devices.

⚙️ Extension Settings

You can customize MKS behavior via the VS Code Settings or by clicking the gear icon in the MKS sidebar:

• mks.autoReadClipboard: If enabled, MKS will check your clipboard when opening the "Add Secret" form. If the content appears to be a key, it will auto-populate the value field. (Default: false)
• mks.autoCloudSync: If enabled, changes to your vault will be automatically uploaded to Google Drive after a short delay. (Default: false)

Disclaimer: This extension is provided "as is" without warranty of any kind. While we follow industry-standard security practices, you are responsible for your own data security and backup management.