Native Vaultwarden workflows for macOS

Vault UI

A native macOS client for Vaultwarden.

A SwiftUI vault client for Vaultwarden that brings passwords, passkeys, TOTP, AutoFill, CLI secrets and SSH keys into native macOS workflows.

Vault UI native macOS vault browser

Inside the application

See it in action.

See the native vault browser, macOS AutoFill flow and CLI secret workflow that connect Vaultwarden to daily development work.

Vault UI application window

A native vault browser

Browse Vaultwarden items in a SwiftUI app that follows macOS sidebar and detail-view conventions.

Vault UI native AutoFill suggestion

System AutoFill integration

Credential suggestions appear in native macOS AutoFill surfaces instead of requiring a separate browser-style workflow.

Vault UI CLI secret workflow

Secrets for local development

The CLI resolves vaultui:// references and SSH keys through local authentication, which keeps agent-era workflows away from standing plaintext secrets.

Why it exists

Good security should protect the workflow, not punish it.

Bitwarden and Vaultwarden are excellent foundations for self-hosted password management. The official Mac client, however, brings the usual Electron trade-offs and felt far enough behind Apple Passwords in day-to-day usability that I found myself drifting back to Apple's built-in tool.

Vault UI is my native macOS answer to that problem. It targets Vaultwarden, keeps encrypted local data, integrates with system AutoFill, supports TOTP and passkey workflows, and adds developer-facing secret access without leaving long-lived plaintext secrets lying around.

What it does

Passwords, secrets and SSH keys in native workflows.

Vault UI brings a Vaultwarden vault into macOS surfaces that feel closer to the system: AutoFill, local authentication, CLI secrets and SSH agent access.

01

Browse logins, notes, cards, identities, SSH keys, Wi-Fi entries, passkeys and Sends in a native SwiftUI interface

02

Sync with Vaultwarden while storing encrypted vault data locally for offline-first use

03

Use native macOS AutoFill surfaces for Safari and system credential fields

04

Generate TOTP codes, work with passkeys and keep local authentication in the unlock path

05

Resolve vaultui:// references from env files through the CLI without committing plaintext secrets

06

Expose vault-backed SSH keys through a local SSH agent socket for development workflows

Open source, ready to explore

Use Vaultwarden through a native macOS client.

Read the README and get started

Under the hood

Built with

SwiftSwiftUISwiftDataCryptoKitmacOS

Vault UI is built as a Swift package with separate modules for the app UI, services, sync, API access, cryptography, SSH agent support and CLI commands.

The app uses Bitwarden-compatible cryptographic primitives, encrypted local persistence and macOS Keychain-backed local authentication. It is open source, but it is not a formally audited password manager.

Build approach
AI-Engineered

I directed the product, native platform integration, security boundaries and local-agent workflows while agents implemented most of the application. The work stays technical and architecture-led, but does not require me to hand-write every implementation detail.

AI tools and models

Claude Opus 4.8 and Gemini 3.1 Pro

Availability
Native macOS · source available · no prebuilt binary currently provided because building the app requires an Apple Developer account
License
MIT