Enclosed
Minimalistic web app for sending private, encrypted notes and files with zero-knowledge server.
Smart Download
Visit Project Homepage
No installer available yet — head to the source repository
Send end-to-end encrypted notes and files that self-destruct after reading.
Core Features
- End-to-end encryption (AES-GCM + PBKDF2)
- Zero-knowledge server – content never leaves unencrypted
- Configurable password, TTL, and self-destruct
- File attachments support
- Self-hostable via Docker
What It Can't Do
- •The public instance is maintained by the author; for sensitive data, self-host. 2. The encryption key is in the URL hash fragment – avoid sharing the full URL with untrusted parties. 3. When self-hosting, configure persistent storage or data will be lost on container restart.
Use Cases
- Securely share passwords, API keys, or confidential messages
- Send one-time readable documents or files
- Deploy an internal private note service for your team
Detailed Introduction
Enclosed is a minimalistic web application that lets you send notes and files with end-to-end encryption. All content is encrypted on the client side using AES-GCM with a 256-bit key derived via PBKDF2, so the server never sees your data. You can set passwords, expiration times (TTL), and make notes self-destruct after reading. It supports file attachments, optional authentication, dark mode, multiple languages, and a CLI for terminal users. You can use the hosted instance at enclosed.cc or self-host with Docker. The project is open source under Apache 2.0.
Troubleshooting & FAQ (2)
TroubleshootingHow to fix 'denied' error when pulling Docker image from ghcr.io/corentin-th/enclosed?
The image name at ghcr.io is 'corentinth' without the dash. Use image: ghcr.io/corentinth/enclosed instead of ghcr.io/corentin-th/enclosed. This typo is fixed in the documentation.
TroubleshootingHow to deploy Enclosed on Cloudflare Pages?
Fork the repository. In Cloudflare Pages dashboard, create a new project linked to your fork, then set the root directory to 'packages/deploy-cloudflare'. Use build command 'pnpm build' and output directory 'dist'. To fix the KV error, update your KV key in 'wrangler.toml'.
Tags
Getting Started
Download installer
Click the button above to download the installer for your system
Install the software
Double-click the downloaded installer and follow the prompts
Run with Docker: docker run -d --name enclosed --restart unless-stopped -p 8787:8787 corentinth/enclosed
Open http://localhost:8787 in browser and start creating encrypted notes
Or use the public instance at https://enclosed.cc – no installation needed
- Run with Docker: docker run -d --name enclosed --restart unless-stopped -p 8787:8787 corentinth/enclosed
- Open http://localhost:8787 in browser and start creating encrypted notes
- Or use the public instance at https://enclosed.cc – no installation needed
Checksum not available
This project has not published a SHA-256 checksum on its GitHub Release page
SHA256 Checksum
No checksum available
Download directly from GitHub Releases and verify file integrity yourself
All SHA-256 checksums on this platform are extracted from the project's official GitHub Release page, without any modification. You can independently verify them on the GitHub Releases page.
Open Source Transparency
View GitHub SourceUninstall Info
Run docker stop enclosed && docker rm enclosed. For persistent data removal, delete the volume directory.
No Extra Dependencies
Ready to use after download. No additional runtime required.
Having issues? Check the FAQ below
2 FAQs
Similar Projects
ArchiveBox
Open-source self-hosted web archiving tool that saves snapshots of URLs in multiple redundant formats (HTML, PDF, WARC, screenshots, etc.) with a web UI, CLI, and API.
Immich
High performance self-hosted photo and video management solution with automatic backup, AI search, facial recognition, and multi-user support.
Vaultwarden
A lightweight, self-hosted Bitwarden server alternative written in Rust, compatible with official clients.