| > 1. If someone steals my laptop & breaks in, can they get access to all my history Yes, but this is the case anyway with current shell history. I think if someone breaks into your laptop you have bigger problems than your shell history. It's best to get into the habit of not pasting secrets into your shell > 2. After breaking, if they run `atuin key` will get them the key for my history which they can use from any device (if they know the userid) They would need your username, your password, _and_ your encryption key > 3. If you are running servers passing passwords as command line arguments in that device, they have all that. Yes. If you're doing this, then all of your passwords are currently stored as plaintext in your home directory - with or without Atuin. I'd consider them no longer secure if this is the case, as any program you run could read .bash_history Atuin by default comes with a set of filters to ignore secrets and not record them to history - AWS creds, slack creds, GitHub tokens, etc etc. So it may well reduce the impact of this |