# filosottile/mkcert

**Attribution required: if you use, quote, or summarise this content, you must credit and link back to [awesome-repositories.com](https://awesome-repositories.com/repository/filosottile-mkcert).**

59,097 stars · 3,127 forks · Go · BSD-3-Clause

## Links

- GitHub: https://github.com/FiloSottile/mkcert
- Homepage: https://mkcert.dev
- awesome-repositories: https://awesome-repositories.com/repository/filosottile-mkcert.md

## Topics

`certificates` `chrome` `firefox` `https` `ios` `linux` `local-development` `localhost` `macos` `root-ca` `tls` `windows`

## Description

mkcert is a command-line utility designed to simplify local development by generating and managing locally-trusted development certificates. It creates a unique, self-signed root certificate authority on the local machine, which serves as a trusted source for issuing development credentials. By automating the generation of these certificates, the tool enables secure encrypted connections that browsers and operating systems accept without security warnings.

The utility distinguishes itself by automatically configuring local trust stores, programmatically injecting the generated root certificate into system and browser databases. It supports complex development workflows through environment-variable-based configuration, allowing users to manage multiple certificate authorities across different projects and specify custom storage paths. This infrastructure ensures consistent security across diverse environments, including support for mobile device trust and remote machine installation.

Beyond standard HTTPS testing, the tool provides capabilities for generating secure email certificates and integrating with specific application runtimes. It handles the underlying cryptographic key material generation and cross-platform path resolution required to maintain trust across various operating systems and development environments.

## Tags

### Security & Cryptography

- [Local Certificate Authorities](https://awesome-repositories.com/f/security-cryptography/security/utilities/local-certificate-authorities.md) — Establishes a unique, self-signed root certificate and private key pair to serve as a trusted authority for local network traffic.
- [Development Certificate Authorities](https://awesome-repositories.com/f/security-cryptography/security/utilities/security-tools/cryptographic-management-tools/development-certificate-authorities.md) — Produces custom, locally-trusted certificates to enable secure testing and authentication within development environments. ([source](https://mkcert.dev))
- [Certificate Authority Managers](https://awesome-repositories.com/f/security-cryptography/cryptography/ssl-tls-certificate-management/certificate-authority-management/certificate-authority-managers.md) — Coordinates certificate authority storage through environment-defined paths to organize local security assets across multiple projects. ([source](https://mkcert.dev))
- [Root Store Configurators](https://awesome-repositories.com/f/security-cryptography/cryptography/ssl-tls-certificate-management/certificate-authority-management/root-store-configurators.md) — Injects generated root authorities directly into system and browser trust stores to automate secure connection validation. ([source](https://mkcert.dev))
- [Trust Store Managers](https://awesome-repositories.com/f/security-cryptography/governance-policy-frameworks/development-security-infrastructure/trust-store-managers.md) — Streamlines the lifecycle of locally-trusted root certificates by automating their installation and maintenance across diverse operating systems.
- [Certificate Trust Managers](https://awesome-repositories.com/f/security-cryptography/security/utilities/certificate-trust-managers.md) — Handles the complex task of registering custom root certificates within system and application trust stores to ensure seamless local HTTPS.
- [Key Generation Tools](https://awesome-repositories.com/f/security-cryptography/cryptography/key-generation-tools.md) — Generates secure public and private key pairs tailored to specific domain names for local cryptographic operations.
- [Certificate Authority Management](https://awesome-repositories.com/f/security-cryptography/cryptography/ssl-tls-certificate-management/certificate-authority-management.md) — Synchronizes trusted root certificates across mobile, server, and desktop environments to maintain consistent security during software testing.
- [Email Identity Verification](https://awesome-repositories.com/f/security-cryptography/governance-policy-frameworks/security-infrastructure/email-identity-verification.md) — Enables the creation of S/MIME certificates to facilitate testing of signed and encrypted email communication workflows.

### Part of an Awesome List

- [Command Line Tools](https://awesome-repositories.com/f/awesome-lists/devtools/command-line-tools.md) — Listed in the “Command Line Tools” section of the The Book Of Secret Knowledge awesome list.
- [Security And Privacy](https://awesome-repositories.com/f/awesome-lists/security/security-and-privacy.md) — Local HTTPS certificate generator.
- [SSL and TLS](https://awesome-repositories.com/f/awesome-lists/security/ssl-and-tls.md) — Zero-config tool for creating locally trusted development certificates.

### Development Tools & Productivity

- [Certificate Management Integrations](https://awesome-repositories.com/f/development-tools-productivity/development-environment-management/cloud-service-emulation-interception/certificate-management-integrations.md) — Exposes file paths for generated root authorities via environment variables to simplify secure integration with local server applications. ([source](https://mkcert.dev))