EnvDrop: Zero-Knowledge Secret Sharing – Securely share secrets without exposing plaintext

Summary: EnvDrop enables secure sharing of secrets like API keys and env files through end-to-end encryption performed entirely in the browser. It generates one-time links that self-destruct after being viewed, ensuring the server never accesses plaintext data.

What it does

Users paste a secret or upload a .env file, which is encrypted client-side with AES-256-GCM before transmission. The service provides a one-time link containing encryption keys in the URL fragment, never sent to the server.

Who it's for

Ideal for developers and teams needing to share sensitive credentials without risking exposure in chat logs or emails.

Why it matters

It prevents secrets from being stored in plaintext on servers or communication platforms, reducing the risk of unauthorized access.