Anyway we are following the Debian guidelines.
The full copyright for each component and file is specified in the COPYING file in the root of the repository along side with each author.
Just to make sure no one gets the wrong impression: You should store your TOTP keys in a different KDBX file, locked with a different master password, and maybe even used on a different device/PC.
We all know that you shouldn't store your password along with TOTP secrets, or should I make a blog post explaining this?
This comment is really funny and made me laugh.
Anyway we are following the Debian guidelines. The full copyright for each component and file is specified in the COPYING file in the root of the repository along side with each author.