🔒

End-to-End Encryption

AES-256-GCM streaming encryption with HKDF-SHA256 key derivation. The server never has access to plaintext data.

🧠

Zero Knowledge

The encryption key lives only in the URL fragment (#) and never leaves the browser. The server is intentionally blind.

👤

No Accounts Required

No registration, no login, no tracking. Upload a file, get a link, share it. That's it.

🔑

Password Protection

Protect uploads with a password using Argon2id (WASM) or PBKDF2-SHA256 as fallback. GPU-resistant key derivation.

📁

Multi-File & Folder Uploads

Upload multiple files or entire folders. Files are zipped client-side with fflate before encryption - the server sees only one encrypted blob.

⏱️

Automatic Expiry

Uploads expire automatically after a configurable time or download count. No data lingers on the server.

📊

Upload Dashboard

Track your uploads locally via IndexedDB. View download counts, expiry countdowns, and re-copy share links - no account needed.

🛠️

Admin CLI

Manage uploads, view statistics, trigger cleanup, and inspect configuration from the command line inside the container.

🐳

Docker Ready

Multi-arch images (AMD64/ARM64), built-in health checks, graceful shutdown, and configurable PUID/PGID.

🌍

Multi-Language

Built-in internationalization with automatic browser language detection and English fallback.

🛡️

Privacy by Design

No telemetry, no analytics, no external service dependencies. Upload quotas use HMAC-hashed IPs with daily key rotation.

📜

Open Source (AGPLv3)

Fully open source. Hosted instances must release their source code, protecting users from closed-source forks.

Quick Start

Get SkySend running in seconds with Docker:

Docker RunDocker Compose

bash

docker run -d --name skysend -p 3000:3000 \
  -e BASE_URL=http://localhost:3000 \
  -v "$(pwd)/data:/data" \
  -v "$(pwd)/uploads:/uploads" \
  skyfay/skysend:latest

yaml

services:
  skysend:
    image: skyfay/skysend:latest
    container_name: skysend
    restart: always
    ports:
      - "3000:3000"
    volumes:
      - ./data:/data
      - ./uploads:/uploads
    environment:
      - BASE_URL=http://localhost:3000

💬 Community & Support

💬 Discord: Join our community at https://dc.skyfay.ch

📝 Documentation: Full guides and API reference at docs.skysend.ch

🐛 Issues: Report bugs or request features on GitHub Issues

📧 Support: General questions and support via support@skysend.ch

🔒 Security: Report vulnerabilities responsibly via security@skysend.ch (please do not open public issues for security reports)

🤖 AI Development Transparency

Architecture & Concept

The system architecture, cryptographic design, strict technology stack selection, and feature specifications for SkySend were entirely conceptualized and directed by a human System Engineer to solve real-world privacy challenges in file sharing.

Implementation

The application code was generated by AI coding agents following detailed architectural specifications and coding guidelines. All features were manually tested for correctness, stability, and real-world reliability. Automated unit tests (Vitest) and static security audits complement the manual QA process.

Open for Review

SkySend is thoroughly tested and used in production, but a formal manual security audit by an external developer has not yet been completed. The entire cryptographic design is publicly documented to facilitate independent review. If you are a software developer or cybersecurity professional, your expertise is highly welcome! We invite the open-source community to review the code, submit PRs, and help us elevate SkySend to a fully verified standard.

Security Disclosure: If you discover a security vulnerability, please do not open a public GitHub issue. Instead, report it responsibly via email to security@skysend.ch.

SkySendEncrypted File Sharing