A zero-knowledge, end-to-end encrypted secret sharing platform that enables secure transmission of sensitive information.
- 🔒 End-to-end encryption using AES-256-GCM
- 🤫 Zero-knowledge architecture - server never sees unencrypted data or decryption keys
- 🔥 Burn after reading
- ⏰ Automatic expiration (Time-To-Live)
- 🔑 Password protection
- 📁 File sharing support w/ drag and drop
- 🌐 IP/CIDR allow-listing
- 🔢 Read count limits
- 📱 QR code generation
- Encryption key is generated on the client
- Password is optionally provided
- Encryption key and password are used to encrypt the secret
- Encryption key and password are hashed and stored along with the encrypted secret for verification on retrieval - the raw key and password are never stored or transmitted on/to the server
- The unique URL containing the decryption key is generated on the client
- Share the URL with your recipient and separately the password if specified
- When accessed, only when the decryption key and password match via server-side verification of the hashes, the encrypted secret is shared and decrypted in the recipient's browser
- Optionally, the secret is automatically destroyed after being read in an atomic read & delete operation guaranteeing only one person can access the secret
- If retrieval doesn't happen within the TTL, the secret is automatically destroyed
- Client-side encryption/decryption only
- Cryptographically secure and unique encryption key per secret
- Optional password protection (layered encryption)
- Password is not embedded in the URL and is ideally shared/transmitted separately from the URL
- IP-based access restrictions
- Limit access to specific IP addresses or CIDR ranges
- Configurable read count limits
- Set maximum number of times a secret can be accessed
- Alternative to burn-after-reading for controlled sharing
- No server-side logging of sensitive data
- Automatic data expiration
- TLS transport encryption
- CORS protection and rate limiting
- Strict Content Security Policy (CSP) to prevent XSS attacks and unauthorized resource loading
- Rate limits to mitigate brute-force attacks
- React SPA
- shadcn/ui
- Node.js with Fastify
- Redis
- Web Crypto API
- OpenTelemetry
- Clone the repository
- Install dependencies:
yarn install
- Set up environment variables (see
.env.example) - Start the development server:
yarn run dev
- The toast notification library (sonner) requires specific style-src hashes in the CSP configuration
- These hashes are defined in
nginx/nginx.conf - Updates to sonner may require updating these hashes
- Reference: sonner#449
- Ensure Redis is running locally when developing the server
- The web client expects the API to be available at
http://localhost:4321by default - CSP headers in development may differ from production configuration
- Always test encryption/decryption flows thoroughly when making changes
- Ensure no sensitive data is logged or exposed in error messages
- Maintain strict CSP headers to prevent XSS vulnerabilities
- Keep dependencies updated for security patches
Contributions are welcome! Please feel free to submit an Issue or Pull Request on GitHub.