[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"project-4790":3},{"id":4,"name":5,"fullName":6,"owner":7,"repo":5,"description":8,"homepage":9,"htmlUrl":10,"language":11,"languages":10,"totalLinesOfCode":10,"stars":12,"forks":13,"watchers":14,"openIssues":15,"contributorsCount":16,"subscribersCount":16,"size":16,"stars1d":17,"stars7d":18,"stars30d":19,"stars90d":16,"forks30d":16,"starsTrendScore":20,"compositeScore":21,"rankGlobal":10,"rankLanguage":10,"license":22,"archived":23,"fork":23,"defaultBranch":24,"hasWiki":23,"hasPages":23,"topics":25,"createdAt":10,"pushedAt":10,"updatedAt":28,"readmeContent":29,"aiSummary":30,"trendingCount":16,"starSnapshotCount":16,"syncStatus":31,"lastSyncTime":32,"discoverSource":33},4790,"age","FiloSottile\u002Fage","FiloSottile","A simple, modern and secure encryption tool (and Go library) with small explicit keys, no config options, and UNIX-style composability.","https:\u002F\u002Fage-encryption.org",null,"Go",22561,649,152,16,0,5,77,316,41,43.44,"BSD 3-Clause \"New\" or \"Revised\" License",false,"main",[26,27],"age-encryption","built-at-rc","2026-06-12 02:01:03","\u003Cp align=\"center\">\n \u003Cpicture>\n \u003Csource media=\"(prefers-color-scheme: dark)\" srcset=\"https:\u002F\u002Fgithub.com\u002FFiloSottile\u002Fage\u002Fblob\u002Fmain\u002Flogo\u002Flogo_white.svg\">\n \u003Csource media=\"(prefers-color-scheme: light)\" srcset=\"https:\u002F\u002Fgithub.com\u002FFiloSottile\u002Fage\u002Fblob\u002Fmain\u002Flogo\u002Flogo.svg\">\n \u003Cimg alt=\"The age logo, a wireframe of St. Peters dome in Rome, with the text: age, file encryption\" width=\"600\" src=\"https:\u002F\u002Fgithub.com\u002FFiloSottile\u002Fage\u002Fblob\u002Fmain\u002Flogo\u002Flogo.svg\">\n \u003C\u002Fpicture>\n\u003C\u002Fp>\n\n[![Go Reference](https:\u002F\u002Fpkg.go.dev\u002Fbadge\u002Ffilippo.io\u002Fage.svg)](https:\u002F\u002Fpkg.go.dev\u002Ffilippo.io\u002Fage)\n[![man page](\u003Chttps:\u002F\u002Fimg.shields.io\u002Fbadge\u002Fage(1)-man%20page-lightgrey>)](https:\u002F\u002Ffilippo.io\u002Fage\u002Fage.1)\n[![C2SP specification](https:\u002F\u002Fimg.shields.io\u002Fbadge\u002F%C2%A7%23-specification-blueviolet)](https:\u002F\u002Fage-encryption.org\u002Fv1)\n\nage is a simple, modern and secure file encryption tool, format, and Go library.\n\nIt features small explicit keys, post-quantum support, no config options, and UNIX-style composability.\n\n```\n$ age-keygen -o key.txt\nPublic key: age1ql3z7hjy54pw3hyww5ayyfg7zqgvc7w3j2elw8zmrj2kg5sfn9aqmcac8p\n$ tar cvz ~\u002Fdata | age -r age1ql3z7hjy54pw3hyww5ayyfg7zqgvc7w3j2elw8zmrj2kg5sfn9aqmcac8p > data.tar.gz.age\n$ age --decrypt -i key.txt data.tar.gz.age > data.tar.gz\n```\n\n📜 The format specification is at [age-encryption.org\u002Fv1](https:\u002F\u002Fage-encryption.org\u002Fv1). age was designed by [@benjojo](https:\u002F\u002Fgithub.com\u002Fbenjojo) and [@FiloSottile](https:\u002F\u002Fgithub.com\u002FFiloSottile).\n\n🦀 An alternative interoperable Rust implementation is available at [github.com\u002Fstr4d\u002Frage](https:\u002F\u002Fgithub.com\u002Fstr4d\u002Frage).\n\n🌍 [Typage](https:\u002F\u002Fgithub.com\u002FFiloSottile\u002Ftypage) is a TypeScript implementation. It works in the browser, Node.js, Deno, and Bun.\n\n🔑 Hardware PIV tokens such as YubiKeys are supported through the [age-plugin-yubikey](https:\u002F\u002Fgithub.com\u002Fstr4d\u002Fage-plugin-yubikey) plugin.\n\n✨ For more plugins, implementations, tools, and integrations, check out the [awesome age](https:\u002F\u002Fgithub.com\u002FFiloSottile\u002Fawesome-age) list.\n\n💬 The author pronounces it `[aɡe̞]` [with a hard *g*](https:\u002F\u002Ftranslate.google.com\u002F?sl=it&text=aghe), like GIF, and it's always spelled lowercase.\n\n## Installation\n\n\u003Ctable>\n \u003Ctr>\n \u003Ctd>Homebrew (macOS or Linux)\u003C\u002Ftd>\n \u003Ctd>\n \u003Ccode>brew install age\u003C\u002Fcode>\n \u003C\u002Ftd>\n \u003C\u002Ftr>\n \u003Ctr>\n \u003Ctd>MacPorts\u003C\u002Ftd>\n \u003Ctd>\n \u003Ccode>port install age\u003C\u002Fcode>\n \u003C\u002Ftd>\n \u003C\u002Ftr>\n \u003Ctr>\n \u003Ctd>Windows\u003C\u002Ftd>\n \u003Ctd>\n \u003Ccode>winget install --id FiloSottile.age\u003C\u002Fcode>\n \u003C\u002Ftd>\n \u003C\u002Ftr>\n \u003Ctr>\n \u003Ctd>Alpine Linux v3.15+\u003C\u002Ftd>\n \u003Ctd>\n \u003Ccode>apk add age\u003C\u002Fcode>\n \u003C\u002Ftd>\n \u003C\u002Ftr>\n \u003Ctr>\n \u003Ctd>Arch Linux\u003C\u002Ftd>\n \u003Ctd>\n \u003Ccode>pacman -S age\u003C\u002Fcode>\n \u003C\u002Ftd>\n \u003C\u002Ftr>\n \u003Ctr>\n \u003Ctd>Debian 12+ (Bookworm)\u003C\u002Ftd>\n \u003Ctd>\n \u003Ccode>apt install age\u003C\u002Fcode>\n \u003C\u002Ftd>\n \u003C\u002Ftr>\n \u003Ctr>\n \u003Ctd>Debian 11 (Bullseye)\u003C\u002Ftd>\n \u003Ctd>\n \u003Ccode>apt install age\u002Fbullseye-backports\u003C\u002Fcode>\n (\u003Ca href=\"https:\u002F\u002Fbackports.debian.org\u002FInstructions\u002F#index2h2\">enable backports\u003C\u002Fa> for age v1.0.0+)\n \u003C\u002Ftd>\n \u003C\u002Ftr>\n \u003Ctr>\n \u003Ctd>Fedora 33+\u003C\u002Ftd>\n \u003Ctd>\n \u003Ccode>dnf install age\u003C\u002Fcode>\n \u003C\u002Ftd>\n \u003C\u002Ftr>\n \u003Ctr>\n \u003Ctd>Gentoo Linux\u003C\u002Ftd>\n \u003Ctd>\n \u003Ccode>emerge app-crypt\u002Fage\u003C\u002Fcode>\n \u003C\u002Ftd>\n \u003C\u002Ftr>\n \u003Ctr>\n \u003Ctd>Guix System\u003C\u002Ftd>\n \u003Ctd>\n \u003Ccode>guix package -i age\u003C\u002Fcode>\n \u003C\u002Ftd>\n \u003C\u002Ftr>\n \u003Ctr>\n \u003Ctd>NixOS \u002F Nix\u003C\u002Ftd>\n \u003Ctd>\n \u003Ccode>nix-env -i age\u003C\u002Fcode>\n \u003C\u002Ftd>\n \u003C\u002Ftr>\n \u003Ctr>\n \u003Ctd>openSUSE Tumbleweed\u003C\u002Ftd>\n \u003Ctd>\n \u003Ccode>zypper install age\u003C\u002Fcode>\n \u003C\u002Ftd>\n \u003C\u002Ftr>\n \u003Ctr>\n \u003Ctd>Ubuntu 22.04+\u003C\u002Ftd>\n \u003Ctd>\n \u003Ccode>apt install age\u003C\u002Fcode>\n \u003C\u002Ftd>\n \u003C\u002Ftr>\n \u003Ctr>\n \u003Ctd>Void Linux\u003C\u002Ftd>\n \u003Ctd>\n \u003Ccode>xbps-install age\u003C\u002Fcode>\n \u003C\u002Ftd>\n \u003C\u002Ftr>\n \u003Ctr>\n \u003Ctd>FreeBSD\u003C\u002Ftd>\n \u003Ctd>\n \u003Ccode>pkg install age\u003C\u002Fcode> (security\u002Fage)\n \u003C\u002Ftd>\n \u003C\u002Ftr>\n \u003Ctr>\n \u003Ctd>OpenBSD 6.7+\u003C\u002Ftd>\n \u003Ctd>\n \u003Ccode>pkg_add age\u003C\u002Fcode> (security\u002Fage)\n \u003C\u002Ftd>\n \u003C\u002Ftr>\n \u003Ctr>\n \u003Ctd>Chocolatey (Windows)\u003C\u002Ftd>\n \u003Ctd>\n \u003Ccode>choco install age.portable\u003C\u002Fcode>\n \u003C\u002Ftd>\n \u003C\u002Ftr>\n \u003Ctr>\n \u003Ctd>Scoop (Windows)\u003C\u002Ftd>\n \u003Ctd>\n \u003Ccode>scoop bucket add extras && scoop install age\u003C\u002Fcode>\n \u003C\u002Ftd>\n \u003C\u002Ftr>\n\u003C\u002Ftable>\n\nOn Windows, Linux, macOS, and FreeBSD you can use the pre-built binaries.\n\n```\nhttps:\u002F\u002Fdl.filippo.io\u002Fage\u002Flatest?for=linux\u002Famd64\nhttps:\u002F\u002Fdl.filippo.io\u002Fage\u002Fv1.3.1?for=darwin\u002Farm64\n...\n```\n\nIf you download the pre-built binaries, you can check their [Sigsum proofs](.\u002FSIGSUM.md).\n\nIf your system has [a supported version of Go](https:\u002F\u002Fgo.dev\u002Fdl\u002F), you can build from source.\n\n```\ngo install filippo.io\u002Fage\u002Fcmd\u002F...@latest\n```\n\nHelp from new packagers is very welcome.\n\n## Usage\n\nFor the full documentation, read [the age(1) man page](https:\u002F\u002Ffilippo.io\u002Fage\u002Fage.1).\n\n```\nUsage:\n age [--encrypt] (-r RECIPIENT | -R PATH)... [--armor] [-o OUTPUT] [INPUT]\n age [--encrypt] --passphrase [--armor] [-o OUTPUT] [INPUT]\n age --decrypt [-i PATH]... [-o OUTPUT] [INPUT]\n\nOptions:\n -e, --encrypt Encrypt the input to the output. Default if omitted.\n -d, --decrypt Decrypt the input to the output.\n -o, --output OUTPUT Write the result to the file at path OUTPUT.\n -a, --armor Encrypt to a PEM encoded format.\n -p, --passphrase Encrypt with a passphrase.\n -r, --recipient RECIPIENT Encrypt to the specified RECIPIENT. Can be repeated.\n -R, --recipients-file PATH Encrypt to recipients listed at PATH. Can be repeated.\n -i, --identity PATH Use the identity file at PATH. Can be repeated.\n\nINPUT defaults to standard input, and OUTPUT defaults to standard output.\nIf OUTPUT exists, it will be overwritten.\n\nRECIPIENT can be an age public key generated by age-keygen (\"age1...\")\nor an SSH public key (\"ssh-ed25519 AAAA...\", \"ssh-rsa AAAA...\").\n\nRecipient files contain one or more recipients, one per line. Empty lines\nand lines starting with \"#\" are ignored as comments. \"-\" may be used to\nread recipients from standard input.\n\nIdentity files contain one or more secret keys (\"AGE-SECRET-KEY-1...\"),\none per line, or an SSH key. Empty lines and lines starting with \"#\" are\nignored as comments. Passphrase encrypted age files can be used as\nidentity files. Multiple key files can be provided, and any unused ones\nwill be ignored. \"-\" may be used to read identities from standard input.\n\nWhen --encrypt is specified explicitly, -i can also be used to encrypt to an\nidentity file symmetrically, instead or in addition to normal recipients.\n```\n\n### Multiple recipients\n\nFiles can be encrypted to multiple recipients by repeating `-r\u002F--recipient`. Every recipient will be able to decrypt the file.\n\n```\n$ age -o example.jpg.age -r age1ql3z7hjy54pw3hyww5ayyfg7zqgvc7w3j2elw8zmrj2kg5sfn9aqmcac8p \\\n -r age1lggyhqrw2nlhcxprm67z43rta597azn8gknawjehu9d9dl0jq3yqqvfafg example.jpg\n```\n\n#### Recipient files\n\nMultiple recipients can also be listed one per line in one or more files passed with the `-R\u002F--recipients-file` flag.\n\n```\n$ cat recipients.txt\n# Alice\nage1ql3z7hjy54pw3hyww5ayyfg7zqgvc7w3j2elw8zmrj2kg5sfn9aqmcac8p\n# Bob\nage1lggyhqrw2nlhcxprm67z43rta597azn8gknawjehu9d9dl0jq3yqqvfafg\n$ age -R recipients.txt example.jpg > example.jpg.age\n```\n\nIf the argument to `-R` (or `-i`) is `-`, the file is read from standard input.\n\n### Post-quantum keys\n\nTo generate hybrid post-quantum keys, which are secure against future quantum\ncomputer attacks, use the `-pq` flag with `age-keygen`. This may become the\ndefault in the future.\n\nPost-quantum identities start with `AGE-SECRET-KEY-PQ-1...` and recipients with\n`age1pq1...`. The recipients are unfortunately ~2000 characters long.\n\n```\n$ age-keygen -pq -o key.txt\n$ age-keygen -y key.txt > recipient.txt\n$ age -R recipient.txt example.jpg > example.jpg.age\n$ age -d -i key.txt example.jpg.age > example.jpg\n```\n\nSupport for post-quantum keys is built into age v1.3.0 and later. Alternatively,\nthe `age-plugin-pq` binary can be installed and placed in `$PATH` to add support\nto any version and implementation of age that supports plugins. Recipients will\nwork out of the box, while identities will have to be converted to plugin\nidentities with `age-plugin-pq -identity`.\n\n### Passphrases\n\nFiles can be encrypted with a passphrase by using `-p\u002F--passphrase`. By default age will automatically generate a secure passphrase. Passphrase protected files are automatically detected at decrypt time.\n\n```\n$ age -p secrets.txt > secrets.txt.age\nEnter passphrase (leave empty to autogenerate a secure one):\nUsing the autogenerated passphrase \"release-response-step-brand-wrap-ankle-pair-unusual-sword-train\".\n$ age -d secrets.txt.age > secrets.txt\nEnter passphrase:\n```\n\n### Passphrase-protected key files\n\nIf an identity file passed to `-i` is a passphrase encrypted age file, it will be automatically decrypted.\n\n```\n$ age-keygen | age -p > key.age\nPublic key: age1yhm4gctwfmrpz87tdslm550wrx6m79y9f2hdzt0lndjnehwj0ukqrjpyx5\nEnter passphrase (leave empty to autogenerate a secure one):\nUsing the autogenerated passphrase \"hip-roast-boring-snake-mention-east-wasp-honey-input-actress\".\n$ age -r age1yhm4gctwfmrpz87tdslm550wrx6m79y9f2hdzt0lndjnehwj0ukqrjpyx5 secrets.txt > secrets.txt.age\n$ age -d -i key.age secrets.txt.age > secrets.txt\nEnter passphrase for identity file \"key.age\":\n```\n\nPassphrase-protected identity files are not necessary for most use cases, where access to the encrypted identity file implies access to the whole system. However, they can be useful if the identity file is stored remotely.\n\n### SSH keys\n\nAs a convenience feature, age also supports encrypting to `ssh-rsa` and `ssh-ed25519` SSH public keys, and decrypting with the respective private key file. (`ssh-agent` is not supported.)\n\n```\n$ age -R ~\u002F.ssh\u002Fid_ed25519.pub example.jpg > example.jpg.age\n$ age -d -i ~\u002F.ssh\u002Fid_ed25519 example.jpg.age > example.jpg\n```\n\nNote that SSH key support employs more complex cryptography, and embeds a public key tag in the encrypted file, making it possible to track files that are encrypted to a specific public key.\n\n#### Encrypting to a GitHub user\n\nCombining SSH key support and `-R`, you can easily encrypt a file to the SSH keys listed on a GitHub profile.\n\n```\n$ curl https:\u002F\u002Fgithub.com\u002Fbenjojo.keys | age -R - example.jpg > example.jpg.age\n```\n\nKeep in mind that people might not protect SSH keys long-term, since they are revokable when used only for authentication, and that SSH keys held on YubiKeys can't be used to decrypt files.\n\n### Inspecting encrypted files\n\nThe `age-inspect` command can display metadata about an encrypted file without decrypting it, including the recipient types, whether it uses post-quantum encryption, and the payload size.\n\n```\n$ age-inspect secrets.age\nsecrets.age is an age file, version \"age-encryption.org\u002Fv1\".\n\nThis file is encrypted to the following recipient types:\n - \"mlkem768x25519\"\n\nThis file uses post-quantum encryption.\n\nSize breakdown (assuming it decrypts successfully):\n\n Header 1627 bytes\n Encryption overhead 32 bytes\n Payload 42 bytes\n -------------------\n Total 1701 bytes\n\n```\n\nFor scripting, use `--json` to get machine-readable output.\n","age 是一个简单、现代且安全的文件加密工具,同时也是一个 Go 语言库。它具有小巧明确的密钥、支持后量子密码学、无需配置选项,并具备 UNIX 风格的组合性。age 适合需要高效加密和解密文件的场景,尤其是对安全性有高要求的应用环境。其简洁的设计使得用户可以轻松地生成密钥并进行文件加密与解密操作。此外,age 还支持硬件 PIV 令牌(如 YubiKeys),并通过插件扩展功能,适用于多种操作系统和平台。",2,"2026-06-11 03:00:26","top_language"]