Released ezcrypt v1.3.0 the other day. It's now got authenticated encryption (via #Poly1305) and a stronger ChaCha nonce (via #XChaCha20), so now it has tampering protection and all IVs are at least 128 bits.

https://codeberg.org/ezcrypt/ezcrypt

#rclone can also encrypt (and mount) files on local drives with the #Crypt module. Its main feature, however, is encrypting remote cloud files.
Looking at like as an #encfs or #Cryptomator replacement.

https://rclone.org/crypt/

It can encrypt its config (!) and provides guidance for secure PW generation.

"""
File content encryption is performed using NaCl #SecretBox, based on #XSalsa20 cipher and #Poly1305 for integrity. Names (file- and directory names) are also encrypted by default...
"""

Seems one drawback is (my assumption) that you cannot use "_AES_-NI", which would typically speed up #AES rounds on end user systems.

RFC 8439: ChaCha20 and Poly1305 for IETF Protocols

Ce #RFC normalise les algorithmes de #cryptographie #ChaCha20 et #Poly1305.

https://www.bortzmeyer.org/8439.html