Add HermitStash — post-quantum encrypted file uploads#253
Open
dotCooCoo wants to merge 3 commits intoportainer:masterfrom
Open
Add HermitStash — post-quantum encrypted file uploads#253dotCooCoo wants to merge 3 commits intoportainer:masterfrom
dotCooCoo wants to merge 3 commits intoportainer:masterfrom
Conversation
- Pin image tag to :1 (rolling latest in 1.x major) instead of :latest - Add PUID/PGID/UMASK/TZ env vars - Note recommends cap_drop=ALL + minimal cap_add, no-new-privileges, init=true (set under Portainer Advanced container settings during deployment)
- Refresh description to mention WebAuthn passkeys, TOTP 2FA (HMAC-SHA-512), shareable links, and S3 backend support — the original one-line summary understated the feature surface. - Note: add stop_grace_period=1m to the recommended runtime flags so the SQLite shutdown path can flush + reseal data/db.key.enc before the container stops. - Note: call out that /app/data/vault.key must be backed up after first run — losing it makes every encrypted record unrecoverable.
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
1 participant
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
New template: HermitStash
Post-quantum encrypted, self-hosted file upload server.
Image:
ghcr.io/dotcoocoo/hermitstash:latestProject: https://github.com/dotCooCoo/hermitstash
License: AGPL-3.0-or-later
Template includes
/app/dataand/app/uploadsTRUST_PROXYandRP_ORIGINenvironment variables--shm-size=256mrequirementFeatures