One-time secrets that delete themselves.
Share environment variables and API keys with a self-destructing link — end-to-end encrypted, burned after reading, gone forever.
Free for solo developers · macOS 13 or later
A self-destructing link in three steps
Encrypt on your Mac
Pick the variables you want to share inside the JustEnvs app. They're encrypted locally with AES-GCM before a single byte leaves your machine.
Send the one-time link
You get a single URL. The decryption key rides in the #fragment — the part of a link browsers never send to any server. We only ever store ciphertext.
It destroys itself
Burn after reading, a view limit, or an expiry timer — whichever hits first deletes the share permanently. There is nothing to un-delete.
Encrypted env sharing the server can't peek at
Most “secret sharing” tools ask you to paste your secrets into a web page — OneTimeSecret included. JustEnvs never sees plaintext: encryption happens on your Mac, decryption in the recipient's browser. Read the full security model.
Zero-knowledge by design
The server stores ciphertext it cannot open. The key never leaves the link's #fragment, so we couldn't read your secrets if we wanted to.
Decrypts in the browser
Recipients open the link anywhere — decryption happens client-side with WebCrypto. Nothing to install on their end.
Created only in the app
Shares can only be created from the JustEnvs Mac app, never from a web form. Your plaintext stays on hardware you control.
Anonymous & rate-limited
No account needed to open a share. Creation and viewing are rate-limited, and links use 256-bit unguessable tokens.
Burn after reading, on your terms
Burn after reading
One view and the secret is gone forever.
views: 1View limits
Allow exactly 1 or 5 views. Then it's gone.
views: 1 | 5Expiry timer
Links live 1 hour, 1 day, or 7 days. Then they don't.
ttl: 1h | 1d | 7dRoom for real configs
Share a whole .env, not just one password.
payload: ≤ 64KB