Built to be trusted —
and honest about the limits.
OpenFirst runs entirely on your device and hands your loved ones a single file they open offline. Here's what that protects, what it deliberately doesn't, and how to check every claim yourself. The full threat model lives in SECURITY.md.
No server
The app is static files. Nothing you type is uploaded — there is nowhere to upload it to.
A map, not a vault
The plan records where secrets live — never the secrets. The app refuses to store a raw one.
Outlives the company
Open, documented formats — plain JSON, Markdown, one HTML file — readable in 20 years without us.
Verifiable
Open source, and the whole app builds to one auditable file.