Install scrt4
One command. macOS, Linux, and WSL. Hardware-bound by FIDO2.
Install with a single command — same on every OS
curl -fsSL https://install.llmsecrets.com/native | sh
scrt4 setup && scrt4 unlock
Quick start
Register your hardware authenticator (one-time).
scrt4 setup
Unlock a session (default 20 hours).
scrt4 unlock
Import your existing .env file.
scrt4 import path/to/.env
Run commands with placeholder injection — the AI never sees the values.
scrt4 run 'curl -H "Authorization: Bearer $env[API_KEY]" https://api.example.com'
Why You Can Trust This Download
Open source security through transparent verification
community & AI
for verification
Trusted download
- Download the file
- Run the hash command for your OS (below)
- Compare output to the published hash
- If they match โ file is authentic
Use AI to audit our code. Ask questions like "Does this app send data externally?" or "How are secrets encrypted?"
Ask DeepWiki About Our Code โVerify the installer script (before piping to sh)
The same scrt4-native.sh is served from two independent hosts.
If the hashes match each other and the one below, the bytes are genuine — an attacker would have had to compromise both GitHub and our CDN.
Verify your install (SHA256)
The installer verifies these checksums automatically. You can also verify by hand — the current release tag is v0.2.14-community, and the live manifest lives at SHA256SUMS.
System requirements
macOS
macOS 12+ with Touch ID or an external FIDO2 key
Linux
Any modern distro + a FIDO2 key, phone passkey, or WebAuthn-capable browser
WSL2
Windows 10/11 with WSL2; Windows Hello works out of the box
Legacy desktop apps
The original Windows Hello + TOTP desktop apps are in maintenance mode. New installs should use scrt4 above. These builds remain available for existing users.