It makes passwords, yo
CoffeeScript HTML CSS Ruby
Fetching latest commit…
Cannot retrieve the latest commit at this time.
Failed to load latest commit information.
app Typos Oct 1, 2016
vendor/javascripts Include dropbox datastores api in app Nov 4, 2014
.bowerrc Fresh with grunt Mar 29, 2014
.gitignore Update s3 credentials ignore Sep 4, 2014
.ruby-gemset Add ruby gemset and version Sep 4, 2014
.ruby-version Bump ruby version Apr 30, 2016
Gemfile Fresh with grunt Mar 29, 2014
Gemfile.lock Update Nov 10, 2014
package.json Add start script Jul 9, 2016


A password generator backed by vault and grown from Hatchpass.


Cassidy generates passwords based on a service (eg, Combine this with a passphrase and a key (think salt) and you have very strong, unique passwords. No two are alike, even if you use the same service and password as someone else.

How it works

Your history and the data to recreate a service password is stored in localStorage. Passwords themselves are never stored or transmitted.

Dropbox syncing of services (using the Datastore API) is also available (https only). Your passphrase IS stored in localStorage using Triple DES and your Key as the salt.

Cassidy does not protect against physical access to your machine.


  • Add X-Frame-Options to prevent iframing
  • Remove subsequent renders from Generator view to prevent keyboard jump
  • Implement service salt
  • Research KDF more. Perhaps don't store phrase

Development setup

  • bundle install
  • npm install
  • bower install


MIT (c) 2014 Nic Aitch