> Passwords are always encrypted using a scrypt key derived from the input passphrase<p>If this is correct then I'm not sure if it's best approach. My understanding is that in for example keepass there is a separate random key that is used to encrypt the data, and then this key is encrypted using whatever method user uses.
I'm always interested in seeing new open source password management solutions. Unfortunately being limited to user/pass/location is a deal-breaker for me. The only decent tool I've found that provides additional fields is KeePassX.