Encrypt API Keys with Platform Keyring

[Kirti-Rathi]

Currently, API keys are stored in plain text in the config file (promptshell_config.conf), which poses a security risk—especially if the file is accidentally exposed or synced to the cloud.

---

Proposed Solution:

• Use the keyring Python library to securely store API keys in the platform's native keychain.
• Migration: Detect existing plaintext API keys, prompt user to migrate to secure storage and remove API keys from config after successful migration
• Error Handling: Handle systems where keyring is unsupported, and show meaningful warnings when secure storage fails

---

Acceptance Criteria:

• API keys are no longer stored in config file
• Keys are saved using system-native keyrings
• Migrate existing API keys securely
• setup_wizard() uses secure storage
• Works across Windows, macOS, and Linux
• Updated README
• Unit tests that validate keyring read/write behavior in tests/ folder

[arkagme]

Hey @Kirti-Rathi could you please assign me this issue ?

[Kirti-Rathi]

Assigned!

[GauravKarakoti]

Can i work on this?

[Kirti-Rathi]

Assigned to @GauravKarakoti

[arkagme]

Hey @Kirti-Rathi I am currently working on it. Sorry for no updates on my side , I will update a PR soon

[arkagme]

@Kirti-Rathi it's better if you could have pinged me once before re-assigning.

[Kirti-Rathi]

Hey @arkagme, I assumed you'd be aware that a PR is expected within a week from the date of assignment, since it's mentioned in mentors server. Having no sign of communication or visible progress from your end, I had to keep things moving and hence the reassignment.

Appreciate your understanding!

[arkagme]

Well as I said , sorry for the delay , I got caught up in something personal . Since I am already done with the PR is it possible to reassign to me and I will update you in 2 days max

[Kirti-Rathi]

I completely understand that personal things can come up, and I hope everything’s okay on your end. However, since the issue was already reassigned and a PR has been submitted by them, it wouldn’t be fair to them to switch it back at this point. I hope you understand.