Send passwords and secrets securely — encrypted, self-destructing links.

Share secrets that disappear.

End-to-end encrypted. Zero knowledge.

🔒 End-to-end encrypted — your key never leaves your browser

Independently verified

Security HeadersA+Mozilla ObservatoryA+SSL LabsA+

Bug BountyActive

Don't trust us — verify it yourself in 5 minutes →

Built independently by Maxim Novak

What is Vaulted?

Free, anonymous secret sharing with client-side AES-256-GCM encryption. Your key never leaves your browser — we never see your plaintext. Set view limits and expiration, share the link, and it self-destructs.

Encryption: AES-256-GCM
Architecture: Zero-knowledge
View limits: 1–10 or unlimited
Max expiry: 30 days

Prefer the terminal?

npx vaulted-cli "my-api-key"

Same encryption, same links — from your command line. Learn more about the CLI

Free security tools

Client-side tools that never send data to a server. View all tools

Password Generator JWT Decoder .env Validator Token Generator

Use in CI/CD?

- uses: vaulted-fyi/share-secret@v1
  with:
    secret: ${{ secrets.API_KEY }}

Share encrypted secrets in GitHub Actions workflows. Learn more about the GitHub Action

Common use cases

Share Passwords Share API Keys Share .env Files Share SSH Keys Share AWS Credentials Share DB Credentials

View all use cases

Compare to other tools

vs OneTimeSecret vs Privnote vs Bitwarden Send vs Password Pusher vs 1Password vs Yopass

All comparisons

From the blog

Verify Vaulted Yourself: A 5-Minute Audit With Your Browser How to Share Secrets Securely with AI Agents Server-Side vs. Client-Side Encryption: Which Model Should You Trust?

View all posts