age

made by Benjojo, filippo, submitted by filippo
A simple, modern and secure encryption tool with small explicit keys, no config options, and UNIX-style composability.

mkcert: a simple zero-config tool to make locally trusted development certificates

made by filippo, submitted by Mai
mkcert automatically creates and installs a local CA in the system root store, and generates locally-trusted certificates. Configuring servers to use the certificates is up to you.

Age specification, a simple file encryption tool & format

made by filippo, Benjojo, submitted by davidbalbert
Age is a replacement for GPG's file encryption features that will be easier to use without making mistakes.

Efficient Private Contact Search

made by gtank, filippo, submitted by wesleyac
An explanation of some of the difficulties in private information retrieval, along with an interesting scheme to make using bloom filters more tenable.

A Go implementation of Poly1305 that makes sense

made by filippo, submitted by porterjamesj
Filippo does great work trying to demystify cryptography and improve implementations of cryptographic algorithms, and this is a nice example.