Show HN: Desktop‑2FA – offline open‑source TOTP authenticator for desktop

I’ve been building a fully offline, local‑first TOTP authenticator for desktop (Windows/macOS/Linux). No cloud, no sync, no telemetry, no external dependencies. Everything stays on the machine.

Why I built it: Most 2FA apps are mobile‑only, closed‑source, or rely on cloud sync. I wanted something transparent, auditable, and desktop‑native — especially for people who work on multiple machines or air‑gapped environments.

Key features:

Local‑only storage (AES‑GCM + Argon2)

Encrypted vault with no external services

Cross‑platform desktop app

Import/export with encrypted backups

Open‑source, MIT licensed

Designed to be simple, predictable, and auditable

What’s new: The project was recently accepted into the Kilo OSS Sponsorship Program, which gives me access to better tooling for code reviews and security analysis. This should help accelerate development and improve code quality.

Links: GitHub: https://github.com/wrogistefan/desktop-2fa Website: https://desktop-2fa.org

I’d love feedback on:

security model

threat assumptions

UX for onboarding

code structure and maintainability

missing features that would make it more useful

Happy to answer any questions.