macOS
brew install cotplocal Homebrew formula metadata
brew
TOTP/HOTP authenticator app with import functionality. Version 1.9.10 via Homebrew; verified 2026-05-03.
install
brew install cotplocal Homebrew formula metadata
sudo apk add cotpAlpine Linux edge package indexes · cotp · source: dl-cdn.alpinelinux.org
sudo apt install cotpDebian stable package indexes · cotp · source: deb.debian.org
nix profile install nixpkgs#cotpnixpkgs package indexes · pkgs/by-name/co/cotp/package.nix · source: api.github.com
sudo pacman -S cotpArch Linux sync databases · cotp · source: geo.mirror.pkgbuild.com
overview
TOTP/HOTP authenticator app with import functionality
history
cotp is a command-line TOTP/HOTP authenticator aimed at users who want two-factor codes in a terminal-accessible, encrypted local database. Its niche is the intersection of password-manager-like local storage and Unix-style CLI workflows.
The replydev/cotp repository was created in December 2020 and published its first GitHub release later that month. The README says the author created cotp to have minimalist, secure, desktop-accessible software for managing two-factor authentication codes.
The project has remained a smaller security utility rather than a large platform. Its README notes distribution in Linux distro repositories and gives Homebrew, Cargo, and manual source installation paths, which is typical for Rust command-line tools that serve both desktop and shell users.
cotp initializes an encrypted database on first run, displays OTP codes in an interactive dashboard, can add TOTP and HOTP entries, lists records as JSON, imports encrypted Aegis backups, exports its database, and can copy selected codes to the clipboard.
For package nerds, cotp is notable because it packages sensitive local credential material without depending on a cloud account. The distribution concern is less about daemons or services and more about preserving a stable CLI, encryption format, clipboard integration, and migration/import behavior.
security posture
narrow executable package without higher-risk signals.
green risk · low confidence · appliance
Before unattended agent use, check whether the tool reads plaintext credentials, writes remote state, publishes artifacts, or shells out to plugins.
local files
These source-backed paths show where this package keeps local settings or durable credentials. Automic Vault can use them as review targets for secret scanning, migration, and command approval.
Credential-bearing paths to review before unattended agent runs.
~/.cotp/db.cotpexecutables
| Command | Kind | Exposure | Note |
|---|---|---|---|
cotp | cli | global executable |
freshness
These signals separate page generation age, package-manager activity, and upstream release comparison. Version lag is warned only when an evidence URL and comparable versions are present.
https://github.com/replydev/cotp
install metadata
| Package key | brew:cotp |
|---|---|
| Version | 1.9.10 |
| Package manager | Homebrew |
| Package manager page | https://formulae.brew.sh/formula/cotp |
| Homepage | https://github.com/replydev/cotp |
| Repository | https://github.com/replydev/cotp |
| Upstream docs | https://github.com/replydev/cotp#readme |
| License | GPL-3.0-only |
| Source archive | https://github.com/replydev/cotp/archive/refs/tags/v1.9.10.tar.gz |
| Last updated | 2026-05-03T12:28:26Z |
| Pulse | updated |
| Build dependencies | rust |
| Bottle | available (on arm64_linux, arm64_sequoia, arm64_sonoma, arm64_tahoe, sonoma, x86_64_linux) |
| Homebrew post-install | not defined |
| Service | none declared |
registry facts
| Source Database | Homebrew formula API |
|---|---|
| Tap | homebrew/core |
| Full Name | cotp |
| Version Scheme | 0 |
| Revision | 0 |
| Head Version | HEAD |
| Bottle Stable Root URL | https://ghcr.io/v2/homebrew/core |
| Deprecated | no |
| Disabled | no |
| Keg Only | no |
| URL Keys |
|
source database matches
Matches are pulled from external package-manager indexes and kept separate from local Automic Vault package links.
cotp 1.9.2-1+b3
Trustworthy, encrypted, command-line TOTP/HOTP authenticator app with import functionality.
https://github.com/replydev/cotp
sudo apt install cotpcotp
nix profile install nixpkgs#cotpcotp 1.9.7-r0
Trustworthy, encrypted, command-line TOTP/HOTP authenticator app with import functionality
https://github.com/replydev/cotp
sudo apk add cotpcotp 1.9.10-1
Trustworthy, encrypted, command-line TOTP/HOTP authenticator app with import functionality
https://github.com/replydev/cotp
sudo pacman -S cotpsource trail
This page is generated by av-web from the private package SQLite artifact built by scripts/generate-pkg-sqlite.py.
View the package source record on GitHub.