A modern, native macOS pinentry program for GnuPG with Touch ID support and Keychain integration.
- Native macOS UI - Built with SwiftUI for a seamless macOS experience
- Touch ID Integration - Use biometrics to verify identity before retrieving saved passphrases
- Keychain Storage - Securely store passphrases in macOS Keychain
- GPG Protocol Compliant - Full support for the Assuan pinentry protocol
brew tap kingwkb/tap
brew install pinentry-swiftConfigure GPG to use pinentry-swift by editing ~/.gnupg/gpg-agent.conf:
pinentry-program /opt/homebrew/bin/pinentry-swift
Restart the GPG agent:
gpgconf --kill gpg-agentOnce configured, pinentry-swift will automatically handle all GPG passphrase requests.
When prompted for a passphrase:
- Check "Save in Keychain (Touch ID)" to store the passphrase
- On subsequent uses, authenticate with Touch ID to retrieve the saved passphrase
- Passphrases are stored securely in macOS Keychain
- macOS 12.0 (Monterey) or later
- GnuPG 2.x
- No network access - All operations are local
- Keychain protection - Passphrases stored in macOS Keychain
- Open source - Fully auditable code