What it is

TraceNone is a privacy-first secret sharing platform designed for securely sharing sensitive information like passwords, API keys, and credentials without the risk of data breaches.

Key features:

Zero-Knowledge Encryption: Uses AES-256-GCM encryption with a dual-key system (client unlock key + server encryption key)
Self-Destructing Secrets: Auto-delete after a configurable time period (e.g., 24 hours)
View Limits: Set maximum number of views before the secret is automatically destroyed
No Accounts Required: Generate and share secrets without creating an account
No Tracking: Privacy-focused design with no user tracking

The stack

Why Next.js + TypeScript

The platform needed to be fast, secure, and maintainable. Next.js provides server-side rendering for better security and performance, while TypeScript ensures type safety for encryption keys, timestamps, and view counts—critical for a security-focused application.

Why Postgres

Secrets need to be stored securely with proper encryption at rest, and the system must handle high availability requirements. Postgres provides ACID guarantees for secret metadata, while Vercel ensures the platform can scale and maintain uptime for critical security operations.

Screenshots

TraceNone logo

What's coming next

Implement client-side encryption key generation earlier to ensure true zero-knowledge architecture
Add more granular access controls (IP whitelisting, password-protected secrets)
Consider implementing a secret preview feature that doesn't fully decrypt until the user confirms
API implementation
Slack & Discord bots for enterprise, flow friendly secrets