Download GitCellar Desktop

Your code, encrypted. Your keys, local.

Create your account and manage your encrypted repositories with the GitCellar Desktop app. Your encryption keys never leave your machine.

Version 0.1.0-beta Released 2026-01-01

Windows

Available now

Windows 10 or 11 (64-bit) · ~200 MB disk · no admin rights required

Download for Windows Signature (.sig)
Filename
GitCellar-Setup-0.1.0-beta.exe
SHA-256
0000000000000000000000000000000000000000000000000000000000000000

macOS

Coming soon

Universal binary planned. Join Discord for release notifications.

Linux

Coming soon

AppImage planned (Ubuntu, Fedora, Arch). Join Discord for release notifications.

View all releases on GitHub ↗

System requirements

  • Windows 10 or 11 (64-bit)
  • ~200 MB free disk space
  • No admin privileges required — installs to %LOCALAPPDATA%\Programs\GitCellar
  • Internet connection (for account creation, then optional)

How to install

  1. Download the installer

    Click the Windows download button above. The signed installer is a ~200 MB .exe.

  2. Run GitCellar-Setup.exe

    Windows SmartScreen may show a "Windows protected your PC" warning on first run because we are pre-launch and do not yet have an EV code-signing certificate. Click "More info" → "Run anyway" to continue. No admin rights are required — GitCellar installs to your user profile (%LOCALAPPDATA%).

  3. Complete the first-run wizard

    The Desktop app guides you through: email → verification code → username → encryption key generation → 24-word recovery phrase → confirmation. If you already have an account, choose "Restore from recovery phrase" on the welcome screen — the same installer handles new and returning users.

Why is the Desktop app required?

GitCellar uses cryptographic keys instead of passwords. Your keys stay on your device — we never see them. The Desktop app is where your keys live, where encryption happens, and where your account is created. This is the same architecture as 1Password or Signal Desktop: the device is the trust anchor.

Local Key Generation

Your encryption keys are generated on your machine and never transmitted. The public key is what identifies you; the private key never leaves the device.

Zero-Knowledge Encryption

Your code is encrypted before it leaves your machine. GitCellar cannot read your repositories — the same architecture as 1Password or Signal Desktop.

Passwordless Authentication

Sign in with a cryptographic signature, not a password. There are no credentials to phish, leak, or reuse across sites.

Read the security whitepaper →