created a selfhostable password generator, massive pass


live version


things that make is special

  1. selfhostable (see docker container in README)
  2. enforces + displays the script integrity SHA which allows anyone to verify that script being served is the same script as committed to the github repo (note: this requires a production npm install to ensure that only the exact npm packages are installed). think of it as something of a reproducible build


  • strong passwords are good
  • simplified site is easier to audit its resources (ie no ad networks)
  • selfhostable so that one can run it themselves
  • OSS so that the code can be reviewed