PandaShare

PandaShare is a privacy-first file sharing platform built around a zero-knowledge architecture — the server never sees plaintext file content. Files are encrypted entirely on the client using AES-256-GCM before upload, and decrypted after download using a room key that is never transmitted to the server.

Users create temporary rooms and share files with others in the same room in real time. Each room has an expiry, after which all associated objects are purged from AWS S3. The frontend is built with Next.js and TypeScript, and the backend is a Node.js + Express API. File objects are stored on AWS S3 with pre-signed URLs to avoid routing binary data through the application server.

Key design decisions include separating the encryption key from the room ID (the key lives only in the URL fragment, never sent to the server), chunked upload for large files, and a minimal UI that communicates trust through transparency.