The vnsh Chrome Extension is built on a host-blind architecture. We cannot access, read, or decrypt your data.
All data is encrypted locally in your browser using AES-256-CBC via the Web Crypto API before any transmission. The decryption key is embedded in the URL fragment (#...) and is never sent to our servers.
The vnsh.dev server receives only encrypted binary blobs and metadata (blob size, upload timestamp, expiration time). The server is host-blind — it has no access to your data’s content.
Encrypted blobs are stored temporarily on vnsh.dev servers with a default retention of 24 hours. After expiration, data is permanently deleted and mathematically irretrievable.
The extension uses chrome.storage.local for saved snippets and share history. This data never leaves your device.
We do not collect personal information, usage analytics, telemetry, or browsing history. We use no third-party tracking, analytics, or advertising services.
| Permission | Purpose |
|---|---|
| contextMenus | Right-click share and debug bundle actions |
| activeTab | Capture screenshot and selected text from current tab |
| notifications | Show confirmation after sharing |
| storage | Local snippet and history storage (device only) |
| scripting | Inject error collector for debug bundles |
| offscreen | Clipboard fallback on restricted pages |
Full source code: github.com/raullenchai/vnsh
For privacy questions: github.com/raullenchai/vnsh/issues
MIT License. Server-Side Blindness, Client-Side Sovereignty.