Security

Security and privacy for a local-first developer toolkit

MyDevTools is built around a simple principle: your work stays local. Everything runs offline on your device, and sensitive data is encrypted in a local vault.

What runs locally

Formatter, parser, converter, and generator workflows are designed to run directly on your device whenever the tool does not need a network service.

  • JSON formatting, Base64 encoding, UUID generation, and similar operations avoid server round-trips.
  • Tools that connect to external services, such as API or database clients, necessarily send requests to the targets you choose.
  • The help docs explain tool-specific data behavior for sensitive workflows.

Encrypted sync

Sensitive persisted data such as vault-style records is encrypted on your device before sync.

  • The server stores ciphertext and metadata required for sync, not readable vault plaintext.
  • Your master password is not transmitted for vault unlock flows.
  • Encryption keys derive from your master password, which the server never receives.

Honest limits

Security depends on your device, the deployment, and the external services you choose to connect.

  • Do not paste highly sensitive production secrets into tools you do not control.
  • Sensitive vault data is encrypted client-side before it syncs to our cloud.
  • Review our security model and data handling before team-wide adoption.