Backend: PocketBase. It’s a single binary that handles Auth, Database, and File storage.
Frontend: 100% Vanilla JavaScript. I wanted to keep the bundle size tiny
How the Encryption Works
Key Derivation: I use PBKDF2 to derive a master key from the user's password.
Encryption: Notes are encrypted in the browser using AES-GCM 256-bit.
Zero-Knowledge: The PocketBase backend never sees the password or the decrypted notes. Everything is stored as an encrypted blob.
Features:
Dual Editor Mode: Fast Plain Text or a "Super Editor" built on Tiptap.
Deep Search: The app decrypts notes locally in batches to allow for full-text search across the encrypted vault.
Version History: Automatic snapshots for every note.
Encrypted Export: can export your entire database as a secure html file.
I’d love to get your thoughts on the UI or the security implementation.
Top comments (0)