How SecretLinks Works
SecretLinks is a secure way to share sensitive information. Here is the technical security model:
- Client-Side Encryption: Your data is encrypted in your browser using AES-GCM
256-bit encryption. The plain-text data never leaves your device.
- No Database / Serverless: This application is a single static HTML file hosted
on GitHub Pages. There is no backend server and no database. We literally cannot see or store
your secrets.
- The Link is the Key: The encrypted data is encoded entirely into the URL hash
(the part after the #).
Because the data is in the URL hash, it is never sent to any server in standard HTTP requests. The
decryption key is derived from the password you prompt, and never stored. The link never expires.
Source code is available here
Hosted by GitHub Pages with a custom domain.