SafeNode
Everyone
info
1+
Downloads
About this app
SafeNode is a credential vault with zero-knowledge encryption. Store API keys, SSH keys, database passwords, OAuth tokens, and more—all encrypted on your device before leaving it.
🔐 ZERO-KNOWLEDGE ENCRYPTION
Your passphrase generates a master key with Argon2id (64MB, 3 iterations) locally. Each credential is encrypted with AES-256-GCM and a unique nonce before upload. The server only stores blobs it cannot decrypt—not even SafeNode accesses your secrets.
🗄️ SECURE VAULT
Store API keys, SSH keys, database connections, SMTP, OAuth, TOTP, and generic credentials. Organize by environment (production, staging, dev), tags, and workspaces.
🤖 AI INTEGRATION VIA MCP
Connect AI agents like Claude Code to the vault in 30 seconds via MCP Server (Streamable HTTP). Available tools:
• vault.list/get — list and retrieve credentials
• proxy.request — HTTP requests with API key injected into the server
• ssh.exec — remote commands via vault SSH keys
• db.query — SQL queries using stored credentials
The agent never sees the credential in plain text — SafeNode injects the secret at runtime.
🌐 SECURE HTTP PROXY
Make API calls (Stripe, AWS, etc.) without exposing keys. SafeNode injects the API key into the header on the server side and forwards the request.
💻 REMOTE SSH EXECUTION
Connect to servers using vault keys. Supports key, password, and jump host. Ideal for deployments and infrastructure maintenance.
🗃️ DATABASE QUERIES
Query PostgreSQL, MySQL, and others directly. The connection string is protected in the vault.
👥 TEAMS
Shared vaults with tag-based access control. Each member uses their own passphrase. Logs record who accessed what.
🔑 TOTP AUTHENTICATOR (2FA)
Integrated 2FA code generator, compatible with Google, GitHub, AWS, and any TOTP service. Secrets are protected by the same vault encryption.
📱 BIOMETRICS
After the first unlock with a passphrase, use fingerprint or facial recognition for subsequent accesses.
📋 AUDIT LOGS
Record of each access and action with IP, timestamp, and user-agent. Retention from 7 to 365 days depending on the plan.
💰 PLANS
• Free: 1 vault, 3 credentials, 1 MCP token
• Pro (R$49/month): 3 vaults, 100 credentials, 5 members
• Team (R$179/month): unlimited + full audit
🛡️ SECURITY
AES-256-GCM · Argon2id · TLS 1.3 · SHA-256 · OWASP headers · LGPD
Your secrets are yours. SafeNode guarantees it with math, not promises.
contact@safenode.dev | safenode.dev/privacy | safenode.dev/terms | safenode.dev/delete
🔐 ZERO-KNOWLEDGE ENCRYPTION
Your passphrase generates a master key with Argon2id (64MB, 3 iterations) locally. Each credential is encrypted with AES-256-GCM and a unique nonce before upload. The server only stores blobs it cannot decrypt—not even SafeNode accesses your secrets.
🗄️ SECURE VAULT
Store API keys, SSH keys, database connections, SMTP, OAuth, TOTP, and generic credentials. Organize by environment (production, staging, dev), tags, and workspaces.
🤖 AI INTEGRATION VIA MCP
Connect AI agents like Claude Code to the vault in 30 seconds via MCP Server (Streamable HTTP). Available tools:
• vault.list/get — list and retrieve credentials
• proxy.request — HTTP requests with API key injected into the server
• ssh.exec — remote commands via vault SSH keys
• db.query — SQL queries using stored credentials
The agent never sees the credential in plain text — SafeNode injects the secret at runtime.
🌐 SECURE HTTP PROXY
Make API calls (Stripe, AWS, etc.) without exposing keys. SafeNode injects the API key into the header on the server side and forwards the request.
💻 REMOTE SSH EXECUTION
Connect to servers using vault keys. Supports key, password, and jump host. Ideal for deployments and infrastructure maintenance.
🗃️ DATABASE QUERIES
Query PostgreSQL, MySQL, and others directly. The connection string is protected in the vault.
👥 TEAMS
Shared vaults with tag-based access control. Each member uses their own passphrase. Logs record who accessed what.
🔑 TOTP AUTHENTICATOR (2FA)
Integrated 2FA code generator, compatible with Google, GitHub, AWS, and any TOTP service. Secrets are protected by the same vault encryption.
📱 BIOMETRICS
After the first unlock with a passphrase, use fingerprint or facial recognition for subsequent accesses.
📋 AUDIT LOGS
Record of each access and action with IP, timestamp, and user-agent. Retention from 7 to 365 days depending on the plan.
💰 PLANS
• Free: 1 vault, 3 credentials, 1 MCP token
• Pro (R$49/month): 3 vaults, 100 credentials, 5 members
• Team (R$179/month): unlimited + full audit
🛡️ SECURITY
AES-256-GCM · Argon2id · TLS 1.3 · SHA-256 · OWASP headers · LGPD
Your secrets are yours. SafeNode guarantees it with math, not promises.
contact@safenode.dev | safenode.dev/privacy | safenode.dev/terms | safenode.dev/delete
Updated on
Safety starts with understanding how developers collect and share your data. Data privacy and security practices may vary based on your use, region, and age. The developer provided this information and may update it over time.
No data shared with third parties
Learn more about how developers declare sharing
This app may collect these data types
Personal info
Data is encrypted in transit
You can request that data be deleted
Committed to follow the Play Families Policy
App support
About the developer
ENIO CARLOS MEZZOMO JUNIOR LTDA
suporte@livenotes.com.br
Av. LACERDA FRANCO 11
APT 85
CAMBUCI
SÃO PAULO - SP
01536-000
Brazil
+55 11 93079-2220
