Merge pull request #203 from smeinecke/feat/image-paste

feat: add image paste support
fix test
2026-06-10 11:16:48 +00:00 · 2026-06-07 14:20:28 +02:00 · 2026-06-07 14:12:02 +02:00 · 2026-06-07 13:53:38 +02:00 · 2026-06-07 12:54:32 +02:00 · 2026-06-07 12:53:46 +02:00
115 changed files with 7320 additions and 4876 deletions
@@ -10,10 +10,10 @@ jobs:
  cli:
    runs-on: ubuntu-latest
    steps:
-      - uses: actions/checkout@v3
+      - uses: actions/checkout@v4
-      - uses: pnpm/action-setup@v2
+      - uses: pnpm/action-setup@v6
-      - uses: actions/setup-node@v3
+      - uses: actions/setup-node@v4
        with:
          cache: 'pnpm'
          node-version-file: '.nvmrc'
@@ -31,14 +31,14 @@ jobs:
  docker:
    runs-on: ubuntu-latest
    steps:
-      - uses: actions/checkout@v3
+      - uses: actions/checkout@v4
-      - uses: docker/setup-qemu-action@v2
+      - uses: docker/setup-qemu-action@v4
-      - uses: docker/setup-buildx-action@v2
+      - uses: docker/setup-buildx-action@v4
        with:
          install: true
      - name: Docker Labels
        id: meta
-        uses: docker/metadata-action@v4
+        uses: docker/metadata-action@v6
        with:
          images: cupcakearmy/cryptgeon
          tags: |
@@ -46,12 +46,12 @@ jobs:
            type=semver,pattern={{major}}.{{minor}}
            type=semver,pattern={{major}}
      - name: Login to DockerHub
-        uses: docker/login-action@v2
+        uses: docker/login-action@v4
        with:
          username: ${{ secrets.DOCKERHUB_USERNAME }}
          password: ${{ secrets.DOCKERHUB_TOKEN }}
      - name: Build and push
-        uses: docker/build-push-action@v4
+        uses: docker/build-push-action@v7
        with:
          platforms: linux/amd64,linux/arm64
          push: true
@@ -13,27 +13,30 @@ jobs:
      - uses: actions/checkout@v4
      # Node
-      - uses: pnpm/action-setup@v3
+      - uses: pnpm/action-setup@v6
      - uses: actions/setup-node@v4
        with:
          cache: 'pnpm'
          node-version-file: '.nvmrc'
      # Docker
-      - uses: docker/setup-qemu-action@v3
+      - uses: docker/setup-qemu-action@v4
-      - uses: docker/setup-buildx-action@v3
+      - uses: docker/setup-buildx-action@v4
        with:
          install: true
      - name: Prepare
        run: |
-          pnpm install --frozen-lockfile
+          pnpm install
          pnpm exec playwright install --with-deps
          pnpm run test:prepare
      - name: Run your tests
        run: pnpm test
-      - uses: actions/upload-artifact@v3
+
      - uses: actions/upload-artifact@v4
        if: ${{ !cancelled() }}
        with:
-          name: test-results
+          name: playwright-report
-          path: test-results
+          path: test-results/
          retention-days: 7
@@ -8,3 +8,4 @@ target
 # Testing
 test-results
 tmp
@@ -1 +1 @@
-v20.11.1
+v24
@@ -0,0 +1,47 @@
 # Contributing
 ## Requirements
 - [mise](https://mise.jdx.dev) — manages pnpm, rust, node (see `mise.toml`)
 - docker or [colima](https://github.com/abiosoft/colima) (for redis)
 ## Setup
 ```bash
 mise install
 pnpm install
 ```
 ## Development
 ```bash
 pnpm run dev
 ```
 Make sure docker/colima is running. This starts redis, the rust backend, the web client, and the CLI. The app is at [localhost:3000](http://localhost:3000).
 ## Tests
 End-to-end tests with Playwright.
 ```sh
 pnpm run test:prepare
 pnpm run test:local
 ```
 ## Release
 1. Update version across packages:
   ```sh
   ./version.mjs <semver>
   ```
 2. Create and push the tag:
   ```sh
   git tag v<semver>
   git push --tags
   ```
 The CI workflow publishes the CLI to npm and the Docker image to Docker Hub automatically.
@@ -1,5 +1,5 @@
 # FRONTEND
-FROM node:20-alpine as client 
+FROM node:24-alpine AS client
 ENV PNPM_HOME="/pnpm"
 ENV PATH="$PNPM_HOME:$PATH"
 RUN corepack enable
@@ -11,17 +11,17 @@ RUN pnpm run build
 # BACKEND
-FROM rust:1.76-alpine as backend
+FROM rust:1.95-alpine AS backend
 WORKDIR /tmp
 RUN apk add --no-cache libc-dev openssl-dev alpine-sdk
 COPY ./packages/backend ./
-RUN cargo build --release
+RUN RUSTFLAGS="-Ctarget-feature=-crt-static" cargo build --release
 # RUNNER
-FROM alpine:3.19
+FROM alpine:3
 WORKDIR /app
-RUN apk add --no-cache curl 
+RUN apk add --no-cache curl libgcc
 COPY --from=backend /tmp/target/release/cryptgeon .
 COPY --from=client /tmp/packages/frontend/build ./frontend
 ENV FRONTEND_PATH="./frontend"
@@ -12,6 +12,7 @@
 <br/><br/>
 <a href="https://www.producthunt.com/posts/cryptgeon?utm_source=badge-featured&utm_medium=badge&utm_souce=badge-cryptgeon" target="_blank"><img src="https://api.producthunt.com/widgets/embed-image/v1/featured.svg?post_id=295189&theme=light" alt="Cryptgeon - Securely share self-destructing notes | Product Hunt" height="50" /></a>
 <a href=""><img src="./.github/lokalise.png" height="50">
 <a title="Install cryptgeon Raycast Extension" href="https://www.raycast.com/cupcakearmy/cryptgeon"><img src="https://www.raycast.com/cupcakearmy/cryptgeon/install_button@2x.png?v=1.1" height="64" alt="" style="height: 64px;"></a>
 <br/><br/>
 EN | [简体中文](README_zh-CN.md) | [ES](README_ES.md)
@@ -39,6 +40,12 @@ npx cryptgeon send text "This is a secret note"
 For more documentation about the CLI see the [readme](./packages/cli/README.md).
 ### Raycast Extension
 There is an [official Raycast extension](https://www.raycast.com/cupcakearmy/cryptgeon).
 <a title="Install cryptgeon Raycast Extension" href="https://www.raycast.com/cupcakearmy/cryptgeon"><img src="https://www.raycast.com/cupcakearmy/cryptgeon/install_button@2x.png?v=1.1" height="64" alt="" style="height: 64px;"></a>
 ## Features
 - send text or files
@@ -56,6 +63,8 @@ client side with the <code>key</code> and then sent to the server. data is store
 never persisted to disk. the server never sees the encryption key and cannot decrypt the contents
 of the notes even if it tried to.
 > View counts are guaranteed with one running instance of cryptgeon. Multiple instances connected to the same Redis instance can run into race conditions, where a note might be retrieved more than the view count allows.
 ## Screenshot
 ![screenshot](./design/Screens.png)
@@ -70,14 +79,16 @@ of the notes even if it tried to.
 | `MAX_EXPIRATION`        | `360`            | Maximal expiration in minutes.                                                                                                                                                                                |
 | `ALLOW_ADVANCED`        | `true`           | Allow custom configuration. If set to `false` all notes will be one view only.                                                                                                                                |
 | `ALLOW_FILES`           | `true`           | Allow uploading files. If set to `false`, users will only be allowed to create text notes.                                                                                                                    |
 | `THEME_NEW_NOTE_NOTICE` | `true`           | Show the message about how notes are stored in the memory and may be evicted after creating a new note. Defaults to `true`.                                                                                   |
 | `ID_LENGTH`             | `32`             | Set the size of the note `id` in bytes. By default this is `32` bytes. This is useful for reducing link size. _This setting does not affect encryption strength_.                                             |
 | `VERBOSITY`             | `warn`           | Verbosity level for the backend. [Possible values](https://docs.rs/env_logger/latest/env_logger/#enabling-logging) are: `error`, `warn`, `info`, `debug`, `trace`                                             |
 | `THEME_IMAGE`           | `""`             | Custom image for replacing the logo. Must be publicly reachable                                                                                                                                               |
 | `THEME_TEXT`            | `""`             | Custom text for replacing the description below the logo                                                                                                                                                      |
 | `THEME_PAGE_TITLE`      | `""`             | Custom text the page title                                                                                                                                                                                    |
 | `THEME_FAVICON`         | `""`             | Custom url for the favicon. Must be publicly reachable                                                                                                                                                        |
-
+| `THEME_NEW_NOTE_NOTICE` | `true`           | Show the message about how notes are stored in the memory and may be evicted after creating a new note. Defaults to `true`.                                                                                   |
 | `THEME_HOME_LINK`       | `true`           | Show the `/home` link in the footer. Defaults to `true`.                                                                                                                                                    |
 | `IMPRINT_URL`           | `""`             | Custom url for an Imprint hosted somewhere else. Must be publicly reachable. Takes precedence above `IMPRINT_HTML`.                                                                                           |
 | `IMPRINT_HTML`          | `""`             | Alternative to `IMPRINT_URL`, this can be used to specify the HTML code to show on `/imprint`. Only `IMPRINT_HTML` or `IMPRINT_URL` should be specified, not both.                                            |
 ## Deployment
 > ℹ️ `https` is required otherwise browsers will not support the cryptographic functions.
@@ -96,9 +107,14 @@ version: '3.8'
 services:
  redis:
    image: redis:7-alpine
    # This is required to stay in RAM only.
    command: redis-server --save "" --appendonly no
    # Set a size limit. See link below on how to customise.
-    # https://redis.io/docs/manual/eviction/
+    # https://redis.io/docs/latest/operate/rs/databases/memory-performance/eviction-policy/
-    # command: redis-server --maxmemory 1gb --maxmemory-policy allkeys-lru
+    # --maxmemory 1gb --maxmemory-policy allkeys-lrulpine
    # This prevents the creation of an anonymous volume.
    tmpfs:
      - /data
  app:
    image: cupcakearmy/cryptgeon:latest
@@ -141,53 +157,15 @@ There is a [guide](https://mariushosting.com/how-to-install-cryptgeon-on-your-sy
 - English by [DB Tech](https://www.youtube.com/watch?v=S0jx7wpOfNM) [Previous Video](https://www.youtube.com/watch?v=JhpIatD06vE)
 - German by [ApfelCast](https://www.youtube.com/watch?v=84ZMbE9AkHg)
-## Development
+### Written Guides
-**Requirements**
+- French by [zarevskaya](https://belginux.com/installer-cryptgeon-avec-docker/)
 - Italian by [@nicfab](https://notes.nicfab.eu/it/posts/cryptgeon/)
 - English by [@nicfab](https://notes.nicfab.eu/en/posts/cryptgeon/)
- `pnpm`: `>=6`
+## Contributing
 - `node`: `>=18`
 - `rust`: edition `2021`
-**Install**
+See [CONTRIBUTING.md](./CONTRIBUTING.md).
 ```bash
 pnpm install
 # Also you need cargo watch if you don't already have it installed.
 # https://lib.rs/crates/cargo-watch
 cargo install cargo-watch
 ```
 **Run**
 Make sure you have docker running.
 ```bash
 pnpm run dev
 ```
 Running `pnpm run dev` in the root folder will start the following things:
 - redis docker container
 - rust backend
 - client
 - cli
 You can see the app under [localhost:1234](http://localhost:1234).
 > There is a Postman collection with some example requests [available in the repo](./Cryptgeon.postman_collection.json)
 ### Tests
 Tests are end to end tests written with Playwright.
 ```sh
 pnpm run test:prepare
 # Use the test or test:local script. The local version only runs in one browser for quicker development.
 pnpm run test:local
 ```
 ## Security
@@ -43,7 +43,7 @@ Puedes revisar la documentación sobre el CLI en este [readme](./packages/cli/RE
 - enviar texto o archivos
 - el servidor no puede desencriptar el contenido debido a que la encriptación se hace del lado del cliente
- restriccion de vistas o de tiempo
+- restricción de vistas o de tiempo
 - en memoria, sin persistencia
 - compatibilidad obligatoria con el modo oscuro
@@ -59,41 +59,47 @@ se usa para guardar y recuperar la nota. Después la nota es encriptada con la <
 ## Variables de entorno
-| Variable           | Default          | Descripción                                                                                                                                                                                                   |
+| Variable           | Default          | Descripción                                                                                                                                                                                                         |
-| ------------------ | ---------------- | ------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------- |
+| ------------------ | ---------------- | ------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------- |
-| `REDIS`            | `redis://redis/` | Redis URL a la que conectarse. [Según el formato](https://docs.rs/redis/latest/redis/#connection-parameters)                                                                                                     |
+| `REDIS`            | `redis://redis/` | Redis URL a la que conectarse. [Según el formato](https://docs.rs/redis/latest/redis/#connection-parameters)                                                                                                        |
 | `SIZE_LIMIT`       | `1 KiB`          | Tamaño máximo. Valores aceptados según la [unidad byte](https://docs.rs/byte-unit/). <br> `512 MiB` es el máximo permitido. <br> El frontend mostrará ese número, incluyendo el ~35% de sobrecarga de codificación. |
-| `MAX_VIEWS`        | `100`            | Número máximo de vistas.                                                                                                                                                                                      |
+| `MAX_VIEWS`        | `100`            | Número máximo de vistas.                                                                                                                                                                                            |
-| `MAX_EXPIRATION`   | `360`            | Tiempo máximo de expiración en minutos.                                                                                                                                                                                |
+| `MAX_EXPIRATION`   | `360`            | Tiempo máximo de expiración en minutos.                                                                                                                                                                             |
-| `ALLOW_ADVANCED`   | `true`           | Permitir configuración personalizada. Si se establece en `false` todas las notas serán de una sola vista.                                                                                                                                |
+| `ALLOW_ADVANCED`   | `true`           | Permitir configuración personalizada. Si se establece en `false` todas las notas serán de una sola vista.                                                                                                           |
-| `ID_LENGTH`        | `32`             | Establece el tamaño en bytes de la `id` de la nota. Por defecto es de `32` bytes. Esto es util para reducir el tamaño del link. _Esta configuración no afecta el nivel de encriptación_.                                             |
+| `ID_LENGTH`        | `32`             | Establece el tamaño en bytes de la `id` de la nota. Por defecto es de `32` bytes. Esto es útil para reducir el tamaño del link. _Esta configuración no afecta el nivel de encriptación_.                            |
-| `VERBOSITY`        | `warn`           | Nivel de verbosidad del backend. [Posibles valores](https://docs.rs/env_logger/latest/env_logger/#enabling-logging): `error`, `warn`, `info`, `debug`, `trace`                                             |
+| `VERBOSITY`        | `warn`           | Nivel de verbosidad del backend. [Posibles valores](https://docs.rs/env_logger/latest/env_logger/#enabling-logging): `error`, `warn`, `info`, `debug`, `trace`                                                      |
-| `THEME_IMAGE`      | `""`             | Imagen personalizada para reemplazar el logo. Debe ser accesible públicamente.                                                                                                                                               |
+| `THEME_IMAGE`      | `""`             | Imagen personalizada para reemplazar el logo. Debe ser accesible públicamente.                                                                                                                                      |
-| `THEME_TEXT`       | `""`             | Texto personalizado para reemplazar la descripción bajo el logo.                                                                                                                                                      |
+| `THEME_TEXT`       | `""`             | Texto personalizado para reemplazar la descripción bajo el logo.                                                                                                                                                    |
-| `THEME_PAGE_TITLE` | `""`             | Texto personalizado para el título                                                                                                                                                                                    |
+| `THEME_PAGE_TITLE` | `""`             | Texto personalizado para el título                                                                                                                                                                                  |
-| `THEME_FAVICON`    | `""`             | Url personalizada para el favicon. Debe ser accesible públicamente.                                                                                                                                                        |
+| `THEME_FAVICON`    | `""`             | Url personalizada para el favicon. Debe ser accesible públicamente.                                                                                                                                                 |
 | `THEME_HOME_LINK`  | `true`           | Mostrar el enlace `/home` en el pie de página. El valor predeterminado es `true`.                                                                                                                               |
 ## Despliegue
-> ℹ️ Se requiere `https` de lo contrario el navegador no soportará las funciones de encriptacón.
+> ℹ️ Se requiere `https` de lo contrario el navegador no soportará las funciones de encriptación.
 > ℹ️ Hay un endpoint para verificar el estado, lo encontramos en `/api/health/`. Regresa un código 200 o 503.
 ### Docker
-Docker es la manera más fácil. Aquí encontramos [la imágen oficial](https://hub.docker.com/r/cupcakearmy/cryptgeon).
+Docker es la manera más fácil. Aquí encontramos [la imagen oficial](https://hub.docker.com/r/cupcakearmy/cryptgeon).
 ```yaml
 # docker-compose.yml
-version: '3.8'
+version: "3.8"
 services:
  redis:
    image: redis:7-alpine
    # This is required to stay in RAM only.
    command: redis-server --save "" --appendonly no
    # Set a size limit. See link below on how to customise.
-    # https://redis.io/docs/manual/eviction/
+    # https://redis.io/docs/latest/operate/rs/databases/memory-performance/eviction-policy/
-    # command: redis-server --maxmemory 1gb --maxmemory-policy allkeys-lru
+    # --maxmemory 1gb --maxmemory-policy allkeys-lrulpine
    # This prevents the creation of an anonymous volume.
    tmpfs:
      - /data
  app:
    image: cupcakearmy/cryptgeon:latest
@@ -136,57 +142,13 @@ Hay una [guía](https://mariushosting.com/how-to-install-cryptgeon-on-your-synol
 - En inglés, por [DB Tech](https://www.youtube.com/watch?v=S0jx7wpOfNM) [Previous Video](https://www.youtube.com/watch?v=JhpIatD06vE)
 - En alemán, por [ApfelCast](https://www.youtube.com/watch?v=84ZMbE9AkHg)
-## Desarrollo
+## Contribuir
-**Requisitos**
+Ver [CONTRIBUTING.md](./CONTRIBUTING.md).
 - `pnpm`: `>=6`
 - `node`: `>=18`
 - `rust`: edition `2021`
 **Instalación**
 ```bash
 pnpm install
 # También necesitas cargo-watch, si no lo tienes instalado.
 # https://lib.rs/crates/cargo-watch
 cargo install cargo-watch
 ```
 **Ejecutar**
 Asegurate de que docker se esté ejecutando.
 ```bash
 pnpm run dev
 ```
 Ejecutando `pnpm run dev` en la carpeta raíz iniciará lo siguiente:
 - redis docker container
 - rust backend
 - client
 - cli
 Puedes ver la app en [localhost:1234](http://localhost:1234).
 > Existe una colección de Postman con algunas peticiones de ejemplo [disponible en el repo](./Cryptgeon.postman_collection.json)
 ### Tests
 Los tests son end-to-end tests escritos con Playwright.
 ```sh
 pnpm run test:prepare
 # Usa el script test o test:local. La versión local solo corre en el navegador para acelerar el desarrollo.
 pnpm run test:local
 ```
 ## Seguridad
-Por favor dirigite a la sección de seguridad [aquí](./SECURITY.md).
+Por favor dirígete a la sección de seguridad [aquí](./SECURITY.md).
 ---
@@ -47,15 +47,16 @@ _加密鸽_ 是一个受 [_PrivNote_](https://privnote.com)项目启发的安全
 ## 环境变量
-| 变量名称          | 默认值           | 描述                                                                              |
+| 变量名称         | 默认值           | 描述                                                                              |
-| ----------------- | ---------------- | --------------------------------------------------------------------------------- |
+| ---------------- | ---------------- | --------------------------------------------------------------------------------- |
-| `REDIS`           | `redis://redis/` | Redis 连接 URL。                                                                  |
+| `REDIS`          | `redis://redis/` | Redis 连接 URL。                                                                  |
-| `SIZE_LIMIT`      | `1 KiB`          | 最大请求体(body)限制。有关支持的数值请查看 [字节单位](https://docs.rs/byte-unit/) |
+| `SIZE_LIMIT`     | `1 KiB`          | 最大请求体(body)限制。有关支持的数值请查看 [字节单位](https://docs.rs/byte-unit/) |
-| `MAX_VIEWS`       | `100`            | 密信最多查看次数限制                                                              |
+| `MAX_VIEWS`      | `100`            | 密信最多查看次数限制                                                              |
-| ` MAX_EXPIRATION` | `360`            | 密信最长过期时间限制(分钟)                                                        |
+| `MAX_EXPIRATION` | `360`            | 密信最长过期时间限制(分钟)                                                        |
-| `ALLOW_ADVANCED`  | `true`           | 是否允许自定义设置，该项如果设为`false`，则不会显示自定义设置模块                 |
+| `ALLOW_ADVANCED` | `true`           | 是否允许自定义设置，该项如果设为`false`，则不会显示自定义设置模块                 |
-| `THEME_IMAGE`     | `""`             | 自定义 Logo 图片，你在这里填写的的图片链接必须是可以公开访问的。                  |
+| `THEME_IMAGE`    | `""`             | 自定义 Logo 图片，你在这里填写的的图片链接必须是可以公开访问的。                  |
-| `THEME_TEXT`      | `""`             | 自定义在 Logo 下方的文本。                                                        |
+| `THEME_TEXT`     | `""`             | 自定义在 Logo 下方的文本。                                                        |
 | `THEME_HOME_LINK` | `true`           | 是否在页脚显示 `/home` 链接。默认为 `true`。                                      |
 ## 部署
@@ -69,11 +70,19 @@ Docker 是最简单的部署方式。这里是[官方镜像的地址](https://hu
 ```yaml
 # docker-compose.yml
-version: '3.8'
+version: "3.8"
 services:
  redis:
    image: redis:7-alpine
    # This is required to stay in RAM only.
    command: redis-server --save "" --appendonly no
    # Set a size limit. See link below on how to customise.
    # https://redis.io/docs/latest/operate/rs/databases/memory-performance/eviction-policy/
    # --maxmemory 1gb --maxmemory-policy allkeys-lrulpine
    # This prevents the creation of an anonymous volume.
    tmpfs:
      - /data
  app:
    image: cupcakearmy/cryptgeon:latest
@@ -99,7 +108,7 @@ services:
 - 域名 `example.org`
 ```yaml
-version: '3.8'
+version: "3.8"
 networks:
  proxy:
@@ -108,7 +117,14 @@ networks:
 services:
  redis:
    image: redis:7-alpine
-    restart: unless-stopped
+    # This is required to stay in RAM only.
    command: redis-server --save "" --appendonly no
    # Set a size limit. See link below on how to customise.
    # https://redis.io/docs/latest/operate/rs/databases/memory-performance/eviction-policy/
    # --maxmemory 1gb --maxmemory-policy allkeys-lrulpine
    # This prevents the creation of an anonymous volume.
    tmpfs:
      - /data
  app:
    image: cupcakearmy/cryptgeon:latest
@@ -125,54 +141,9 @@ services:
      - traefik.http.routers.cryptgeon.tls.certresolver=le
 ```
-## 开发
+## 贡献
-**环境要求**
+参见 [CONTRIBUTING.md](./CONTRIBUTING.md)。
 - `pnpm`: `>=6`
 - `node`: `>=14`
 - `rust`: edition `2021`
 **安装**
 ```bash
 pnpm install
 pnpm --prefix frontend install
 # 你还需要安装CargoWatch.
 # https://lib.rs/crates/cargo-watch
 cargo install cargo-watch
 ```
 **运行**
 确保你的 Docker 正在运行
 ```bash
 pnpm run dev
 ```
 在根目录执行 `pnpm run dev` 会开启下列服务:
 - 一个 redis docker 容器
 - 无热重载的 rust 后端
 - 可热重载的客户端
 你可以通过 1234 端口进入该应用，即 [localhost:1234](http://localhost:1234).
 ## 测试
 这些测试是用 Playwright 实现的一些端到端测试用例。
 ```sh
 pnpm run test:prepare
 docker compose up redis -d
 pnpm run test:server
 # 在另一个终端中：
 # 使用test或者test:local script。为了更快的开发，本地版本只会在一个浏览器中运行。
 pnpm run test:local
 ```
 ###### Attributions
@@ -11,9 +11,6 @@
    },
    {
      "path": "packages/cli"
    },
    {
      "path": "packages/shared"
    }
  ],
  "settings": {
@@ -1,22 +1,28 @@
 # DEV Compose file.
 # For a production file see: README.md
 version: '3.8'
 services:
  redis:
-    image: redis:7-alpine
+    image: valkey/valkey:7-alpine
    # This is required to stay in RAM only.
    command: valkey-server --save "" --appendonly no
    # Set a size limit. See link below on how to customise.
    # https://valkey.io/docs/latest/operate/rs/databases/memory-performance/eviction-policy/
    # --maxmemory 1gb --maxmemory-policy allkeys-lrulpine
    # This prevents the creation of an anonymous volume.
    tmpfs:
      - /data
    ports:
      - 6379:6379
  app:
    build: .
-    env_file: .dev.env
+    env_file: .env.dev
    depends_on:
      - redis
    restart: unless-stopped
    ports:
-      - 1234:8000
+      - 3000:8000
    healthcheck:
      test: ['CMD', 'curl', '--fail', 'http://127.0.0.1:8000/api/live/']
@@ -1,11 +1,14 @@
 version: '3.8'
 services:
  redis:
-    image: redis:7-alpine
+    image: valkey/valkey:7-alpine
    # This is required to stay in RAM only.
    command: valkey-server --save "" --appendonly no
    # Set a size limit. See link below on how to customise.
-    # https://redis.io/docs/manual/eviction/
+    # https://valkey.io/docs/latest/operate/rs/databases/memory-performance/eviction-policy/
-    # command: redis-server --maxmemory 1gb --maxmemory-policy allkeys-lru
+    # --maxmemory 1gb --maxmemory-policy allkeys-lrulpine
    # This prevents the creation of an anonymous volume.
    tmpfs:
      - /data
  app:
    image: cupcakearmy/cryptgeon:latest
@@ -2,7 +2,15 @@ version: '3.8'
 services:
  redis:
-    image: redis:7-alpine
+    image: valkey/valkey:7-alpine
    # This is required to stay in RAM only.
    command: valkey-server --save "" --appendonly no
    # Set a size limit. See link below on how to customise.
    # https://valkey.io/docs/latest/operate/rs/databases/memory-performance/eviction-policy/
    # --maxmemory 1gb --maxmemory-policy allkeys-lrulpine
    # This prevents the creation of an anonymous volume.
    tmpfs:
      - /data
  app:
    image: cupcakearmy/cryptgeon:latest
@@ -108,8 +108,15 @@ networks:
 services:
  redis:
-    image: redis:7-alpine
+    image: valkey/valkey:7-alpine
-    restart: unless-stopped
+    # This is required to stay in RAM only.
    command: valkey-server --save "" --appendonly no
    # Set a size limit. See link below on how to customise.
    # https://valkey.io/docs/latest/operate/rs/databases/memory-performance/eviction-policy/
    # --maxmemory 1gb --maxmemory-policy allkeys-lrulpine
    # This prevents the creation of an anonymous volume.
    tmpfs:
      - /data
  app:
    image: cupcakearmy/cryptgeon:latest
@@ -2,7 +2,7 @@
 Assumptions:
- Traefik 2 installed.
+- Traefik 2/3 installed.
 - External proxy docker network `proxy`.
 - A certificate resolver `le`.
 - A https entrypoint `secure`.
@@ -17,8 +17,15 @@ networks:
 services:
  redis:
-    image: redis:7-alpine
+    image: valkey/valkey:7-alpine
-    restart: unless-stopped
+    # This is required to stay in RAM only.
    command: valkey-server --save "" --appendonly no
    # Set a size limit. See link below on how to customise.
    # https://valkey.io/docs/latest/operate/rs/databases/memory-performance/eviction-policy/
    # --maxmemory 1gb --maxmemory-policy allkeys-lrulpine
    # This prevents the creation of an anonymous volume.
    tmpfs:
      - /data
  app:
    image: cupcakearmy/cryptgeon:latest
@@ -34,3 +41,51 @@ services:
      - traefik.http.routers.cryptgeon.entrypoints=secure
      - traefik.http.routers.cryptgeon.tls.certresolver=le
 ```
 ## With basic auth
 Some times it's useful to hide the service behind auth. This is easily achieved with traefik middleware. Many reverse proxies support similar features, so while traefik is used in this example, other reverse proxies can do the same.
 ```yaml
 services:
  traefik:
    image: traefik:v3.0
    command:
      - "--api.insecure=true"
      - "--providers.docker=true"
      - "--providers.docker.exposedbydefault=false"
      - "--entrypoints.web.address=:80"
    ports:
      - "80:80"
    volumes:
      - "/var/run/docker.sock:/var/run/docker.sock:ro"
  redis:
    image: valkey/valkey:7-alpine
    # This is required to stay in RAM only.
    command: valkey-server --save "" --appendonly no
    # Set a size limit. See link below on how to customise.
    # https://valkey.io/docs/latest/operate/rs/databases/memory-performance/eviction-policy/
    # --maxmemory 1gb --maxmemory-policy allkeys-lrulpine
    # This prevents the creation of an anonymous volume.
    tmpfs:
      - /data
  cryptgeon:
    image: cupcakearmy/cryptgeon
    depends_on:
      - redis
    labels:
      - "traefik.enable=true"
      - "traefik.http.routers.cryptgeon.rule=Host(`cryptgeon.localhost`)"
      - "traefik.http.routers.cryptgeon.entrypoints=web"
      - "traefik.http.routers.cryptgeon.middlewares=cryptgeon-auth"
      - "traefik.http.middlewares.cryptgeon-auth.basicauth.users=user:$$2y$$05$$juUw0zgc5ebvJ00MFPVVLujF6P.rcEMbGZ99Jfq6ZWEa1dgetacEq"
 ```
 ```bash
 docker compose up -d
 ```
 1. Open http://cryptgeon.localhost
 2. Log in with `user` and `secret`
@@ -0,0 +1,11 @@
 [tools]
 pnpm = "11.5.0"
 rust = "1.95"
 watchexec = "latest"
 # Node loaded below from .nvmrc
 [settings]
 idiomatic_version_file_enable_tools = ["node"]
 [env]
 SIZE_LIMIT = "100mb"
@@ -1,21 +1,22 @@
 {
  "scripts": {
-    "dev:docker": "docker-compose -f docker-compose.dev.yaml up redis",
+    "dev:docker": "docker compose -f docker-compose.dev.yaml up redis",
    "dev:packages": "pnpm --parallel run dev",
    "dev": "run-p dev:*",
    "docker:up": "docker compose -f docker-compose.dev.yaml up",
    "docker:build": "docker compose -f docker-compose.dev.yaml build",
-    "test": "playwright test --project chrome firefox safari",
+    "test": "playwright test --project=chrome --project=firefox --project=safari",
-    "test:local": "playwright test --project chrome",
+    "test:local": "playwright test --project=chrome",
    "test:server": "run-s docker:up",
-    "test:prepare": "run-p build docker:build",
+    "test:dl-browsers": "playwright install",
    "test:prepare": "run-p test:dl-browsers build docker:build",
    "build": "pnpm run --recursive --filter=!@cryptgeon/backend build"
  },
  "devDependencies": {
-    "@playwright/test": "^1.42.1",
+    "@playwright/test": "^1.60.0",
-    "@types/node": "^20.11.28",
+    "@types/node": "^24.12.4",
    "npm-run-all": "^4.1.5",
    "shelljs": "^0.8.5"
  },
-  "packageManager": "pnpm@8.15.4"
+  "packageManager": "pnpm@11.5.0"
 }
@@ -1,25 +1,27 @@
 [package]
 name = "cryptgeon"
-version = "2.6.0"
+version = "2.9.2"
 authors = ["cupcakearmy <hi@nicco.io>"]
-edition = "2021"
+edition = "2024"
-rust-version = "1.76"
+rust-version = "1.95"
 [[bin]]
 name = "cryptgeon"
 path = "src/main.rs"
 [dependencies]
-actix-web = "4"
+# Core
-actix-files = "0.6"
+axum = "0.8"
-serde = { version = "1.0", features = ["derive"] }
+serde = { version = "1", features = ["derive"] }
 tokio = { version = "1", features = ["full"] }
 tower = "0.5"
 tower-http = { version = "0.6", features = ["full"] }
 redis = { version = "1", features = ["tls-native-tls"] }
 # Utility
 serde_json = "1"
 lazy_static = "1"
-ring = "0.16"
+ring = "0.17"
 bs62 = "0.1"
 byte-unit = "4"
 dotenv = "0.15"
 mime = "0.3"
 env_logger = "0.9"
 log = "0.4"
 redis = "0.23"
@@ -2,9 +2,9 @@
  "private": true,
  "name": "@cryptgeon/backend",
  "scripts": {
-    "dev": "cargo watch -x 'run --bin cryptgeon'",
+    "dev": "watchexec -r -e rs cargo run",
    "build": "cargo build --release",
-    "test:server": "SIZE_LIMIT=10MiB LISTEN_ADDR=0.0.0.0:1234 cargo run",
+    "test:server": "SIZE_LIMIT=10MiB LISTEN_ADDR=0.0.0.0:3000 cargo run",
    "test:prepare": "cargo build"
  }
 }
@@ -1,14 +0,0 @@
 use actix_web::web;
 use crate::health;
 use crate::note;
 use crate::status;
 pub fn init(cfg: &mut web::ServiceConfig) {
    cfg.service(
        web::scope("/api")
            .service(note::init())
            .service(status::init())
            .service(health::init()),
    );
 }
@@ -1,17 +0,0 @@
 use actix_files::{Files, NamedFile};
 use actix_web::{web, Result};
 use crate::config;
 pub fn init(cfg: &mut web::ServiceConfig) {
    cfg.service(
        Files::new("/", config::FRONTEND_PATH.to_string())
            .index_file("index.html")
            .use_etag(true),
    );
 }
 pub async fn index() -> Result<NamedFile> {
    let index = format!("{}{}", config::FRONTEND_PATH.to_string(), "/index.html");
    Ok(NamedFile::open(index)?)
 }
@@ -38,8 +38,12 @@ pub static ref ALLOW_FILES: bool = std::env::var("ALLOW_FILES")
  .unwrap_or("true".to_string())
  .parse()
  .unwrap();
-pub static ref THEME_NEW_NOTE_NOTICE: bool = std::env::var("THEME_NEW_NOTE_NOTICE")
+pub static ref IMPRINT_URL: String = std::env::var("IMPRINT_URL")
-  .unwrap_or("true".to_string())
+  .unwrap_or("".to_string())
  .parse()
  .unwrap();
 pub static ref IMPRINT_HTML: String = std::env::var("IMPRINT_HTML")
  .unwrap_or("".to_string())
  .parse()
  .unwrap();
 }
@@ -62,4 +66,12 @@ lazy_static! {
        .unwrap_or("".to_string())
        .parse()
        .unwrap();
    pub static ref THEME_NEW_NOTE_NOTICE: bool = std::env::var("THEME_NEW_NOTE_NOTICE")
        .unwrap_or("true".to_string())
        .parse()
        .unwrap();
    pub static ref THEME_HOME_LINK: bool = std::env::var("THEME_HOME_LINK")
        .unwrap_or("true".to_string())
        .parse()
        .unwrap();
 }
@@ -0,0 +1,16 @@
 use axum::{body::Body, extract::Request, http::HeaderValue, middleware::Next, response::Response};
 const CUSTOM_HEADER_NAME: &str = "Content-Security-Policy";
 const CUSTOM_HEADER_VALUE: &str = "default-src 'self'; script-src 'report-sample' 'self'; style-src 'report-sample' 'self'; object-src 'none'; base-uri 'self'; connect-src 'self' data:; font-src 'self'; frame-src 'self'; img-src 'self'; manifest-src 'self'; media-src 'self'; worker-src 'none';";
 lazy_static! {
    static ref HEADER_VALUE: HeaderValue = HeaderValue::from_static(CUSTOM_HEADER_VALUE);
 }
 pub async fn add_csp_header(request: Request<Body>, next: Next) -> Response {
    let mut response = next.run(request).await;
    response
        .headers_mut()
        .append(CUSTOM_HEADER_NAME, HEADER_VALUE.clone());
    response
 }
@@ -1,3 +1,10 @@
-mod routes;
+use crate::store;
 use axum::http::StatusCode;
-pub use routes::*;
+pub async fn report_health() -> (StatusCode,) {
    if store::can_reach_redis() {
        return (StatusCode::OK,);
    } else {
        return (StatusCode::SERVICE_UNAVAILABLE,);
    }
 }
@@ -1,16 +0,0 @@
 use actix_web::{get, web, HttpResponse, Responder, Scope};
 use crate::store;
 #[get("/")]
 async fn get_live() -> impl Responder {
    if store::can_reach_redis() {
        return HttpResponse::Ok();
    } else {
        return HttpResponse::ServiceUnavailable();
    }
 }
 pub fn init() -> Scope {
    web::scope("/live").service(get_live)
 }
@@ -0,0 +1,10 @@
 use std::collections::HashMap;
 use std::sync::Arc;
 use tokio::sync::Mutex;
 #[derive(Clone)]
 pub struct SharedState {
    pub locks: LockMap,
 }
 pub type LockMap = Arc<Mutex<HashMap<String, Arc<Mutex<()>>>>>;
@@ -1,44 +1,80 @@
-use actix_web::{
+use std::{collections::HashMap, sync::Arc};
-    middleware::{self, Logger},
+
-    web::{self},
+use axum::{
-    App, HttpServer,
+    Router, ServiceExt,
    extract::{DefaultBodyLimit, Request},
    routing::{delete, get, post},
 };
 use dotenv::dotenv;
-use log::error;
+use lock::SharedState;
 use tokio::sync::Mutex;
 use tower::Layer;
 use tower_http::{
    compression::CompressionLayer,
    normalize_path::NormalizePathLayer,
    services::{ServeDir, ServeFile},
 };
 #[macro_use]
 extern crate lazy_static;
 mod api;
 mod client;
 mod config;
 mod csp;
 mod health;
 mod lock;
 mod note;
 mod size;
 mod status;
 mod store;
-#[actix_web::main]
+#[tokio::main]
-async fn main() -> std::io::Result<()> {
+async fn main() {
    dotenv().ok();
-    env_logger::init_from_env(env_logger::Env::new().default_filter_or(config::VERBOSITY.as_str()));
+
    let shared_state = SharedState {
        locks: Arc::new(Mutex::new(HashMap::new())),
    };
    if !store::can_reach_redis() {
-        error!("cannot reach redis");
+        println!("cannot reach redis");
-        panic!("canont reach redis");
+        panic!("cannot reach redis");
    }
-    return HttpServer::new(|| {
+    let notes_routes = Router::new()
-        App::new()
+        .route("/", post(note::create))
-            .wrap(Logger::new("\"%r\" %s %b %T"))
+        .route("/{id}", delete(note::delete))
-            .wrap(middleware::Compress::default())
+        .route("/{id}", get(note::preview));
-            .wrap(middleware::DefaultHeaders::default())
+    let health_routes = Router::new().route("/live", get(health::report_health));
-            .configure(size::init)
+    let status_routes = Router::new().route("/status", get(status::get_status));
-            .configure(api::init)
+    let api_routes = Router::new()
-            .configure(client::init)
+        .nest("/notes", notes_routes)
-            .default_service(web::to(client::index))
+        .merge(health_routes)
-    })
+        .merge(status_routes);
-    .bind(config::LISTEN_ADDR.to_string())?
+
-    .run()
+    let index = format!("{}{}", config::FRONTEND_PATH.to_string(), "/index.html");
-    .await;
+    let serve_dir =
        ServeDir::new(config::FRONTEND_PATH.to_string()).not_found_service(ServeFile::new(index));
    let app = Router::new()
        .nest("/api", api_routes)
        .fallback_service(serve_dir)
        // Disabled for now, as svelte inlines scripts
        // .layer(middleware::from_fn(csp::add_csp_header))
        .layer(DefaultBodyLimit::max(*config::LIMIT))
        .layer(
            CompressionLayer::new()
                .br(true)
                .deflate(true)
                .gzip(true)
                .zstd(true),
        )
        .with_state(shared_state);
    let app = NormalizePathLayer::trim_trailing_slash().layer(app);
    let listener = tokio::net::TcpListener::bind(config::LISTEN_ADDR.to_string())
        .await
        .unwrap();
    println!("listening on {}", listener.local_addr().unwrap());
    axum::serve(listener, ServiceExt::<Request>::into_make_service(app))
        .await
        .unwrap();
 }
@@ -12,12 +12,12 @@ pub struct Note {
    pub expiration: Option<u32>,
 }
-#[derive(Serialize, Deserialize, Clone)]
+#[derive(Serialize)]
 pub struct NoteInfo {
    pub meta: String,
 }
-#[derive(Serialize, Deserialize, Clone)]
+#[derive(Serialize)]
 pub struct NotePublic {
    pub meta: String,
    pub contents: String,
@@ -1,10 +1,18 @@
-use actix_web::{delete, get, post, web, HttpResponse, Responder, Scope};
+use axum::{
    extract::Path,
    http::StatusCode,
    response::{IntoResponse, Response},
    Json,
 };
 use serde::{Deserialize, Serialize};
-use std::time::SystemTime;
+use std::{sync::Arc, time::SystemTime};
 use tokio::sync::Mutex;
-use crate::config;
+use crate::note::{generate_id, Note, NoteInfo};
 use crate::note::{generate_id, Note, NoteInfo, NotePublic};
 use crate::store;
 use crate::{config, lock::SharedState};
 use super::NotePublic;
 pub fn now() -> u32 {
    SystemTime::now()
@@ -13,20 +21,18 @@ pub fn now() -> u32 {
        .as_secs() as u32
 }
-#[derive(Serialize, Deserialize)]
+#[derive(Deserialize)]
-struct NotePath {
+pub struct OneNoteParams {
    id: String,
 }
-#[get("/{id}")]
+pub async fn preview(Path(OneNoteParams { id }): Path<OneNoteParams>) -> Response {
-async fn one(path: web::Path<NotePath>) -> impl Responder {
+    let note = store::get(&id);
    let p = path.into_inner();
    let note = store::get(&p.id);
    match note {
-        Ok(Some(n)) => HttpResponse::Ok().json(NoteInfo { meta: n.meta }),
+        Ok(Some(n)) => (StatusCode::OK, Json(NoteInfo { meta: n.meta })).into_response(),
-        Ok(None) => HttpResponse::NotFound().finish(),
+        Ok(None) => (StatusCode::NOT_FOUND).into_response(),
-        Err(e) => HttpResponse::InternalServerError().body(e.to_string()),
+        Err(e) => (StatusCode::INTERNAL_SERVER_ERROR, e.to_string()).into_response(),
    }
 }
@@ -35,13 +41,16 @@ struct CreateResponse {
    id: String,
 }
-#[post("/")]
+pub async fn create(Json(mut n): Json<Note>) -> Response {
-async fn create(note: web::Json<Note>) -> impl Responder {
+    // let mut n = note.into_inner();
    let mut n = note.into_inner();
    let id = generate_id();
-    let bad_req = HttpResponse::BadRequest().finish();
+    // let bad_req = HttpResponse::BadRequest().finish();
    if n.views == None && n.expiration == None {
-        return bad_req;
+        return (
            StatusCode::BAD_REQUEST,
            "At least views or expiration must be set",
        )
            .into_response();
    }
    if !*config::ALLOW_ADVANCED {
        n.views = Some(1);
@@ -50,7 +59,7 @@ async fn create(note: web::Json<Note>) -> impl Responder {
    match n.views {
        Some(v) => {
            if v > *config::MAX_VIEWS || v < 1 {
-                return bad_req;
+                return (StatusCode::BAD_REQUEST, "Invalid views").into_response();
            }
            n.expiration = None; // views overrides expiration
        }
@@ -58,8 +67,8 @@ async fn create(note: web::Json<Note>) -> impl Responder {
    }
    match n.expiration {
        Some(e) => {
-            if e > *config::MAX_EXPIRATION {
+            if e > *config::MAX_EXPIRATION || e < 1 {
-                return bad_req;
+                return (StatusCode::BAD_REQUEST, "Invalid expiration").into_response();
            }
            let expiration = now() + (e * 60);
            n.expiration = Some(expiration);
@@ -67,38 +76,49 @@ async fn create(note: web::Json<Note>) -> impl Responder {
        _ => {}
    }
    match store::set(&id.clone(), &n.clone()) {
-        Ok(_) => return HttpResponse::Ok().json(CreateResponse { id: id }),
+        Ok(_) => (StatusCode::OK, Json(CreateResponse { id })).into_response(),
-        Err(e) => return HttpResponse::InternalServerError().body(e.to_string()),
+        Err(e) => (StatusCode::INTERNAL_SERVER_ERROR, e.to_string()).into_response(),
    }
 }
-#[delete("/{id}")]
+pub async fn delete(
-async fn delete(path: web::Path<NotePath>) -> impl Responder {
+    Path(OneNoteParams { id }): Path<OneNoteParams>,
-    let p = path.into_inner();
+    state: axum::extract::State<SharedState>,
-    let note = store::get(&p.id);
+) -> Response {
    let mut locks_map = state.locks.lock().await;
    let lock = locks_map
        .entry(id.clone())
        .or_insert_with(|| Arc::new(Mutex::new(())))
        .clone();
    drop(locks_map);
    let _guard = lock.lock().await;
    let note = store::get(&id);
    match note {
-        Err(e) => HttpResponse::InternalServerError().body(e.to_string()),
+        Err(e) => (StatusCode::INTERNAL_SERVER_ERROR, e.to_string()).into_response(),
-        Ok(None) => return HttpResponse::NotFound().finish(),
+        Ok(None) => (StatusCode::NOT_FOUND).into_response(),
        Ok(Some(note)) => {
            let mut changed = note.clone();
            if changed.views == None && changed.expiration == None {
-                return HttpResponse::BadRequest().finish();
+                return (StatusCode::BAD_REQUEST).into_response();
            }
            match changed.views {
                Some(v) => {
                    changed.views = Some(v - 1);
-                    let id = p.id.clone();
+                    let id = id.clone();
                    if v <= 1 {
                        match store::del(&id) {
                            Err(e) => {
-                                return HttpResponse::InternalServerError().body(e.to_string())
+                                return (StatusCode::INTERNAL_SERVER_ERROR, e.to_string())
                                    .into_response();
                            }
                            _ => {}
                        }
                    } else {
                        match store::set(&id, &changed.clone()) {
                            Err(e) => {
-                                return HttpResponse::InternalServerError().body(e.to_string())
+                                return (StatusCode::INTERNAL_SERVER_ERROR, e.to_string())
                                    .into_response();
                            }
                            _ => {}
                        }
@@ -111,33 +131,26 @@ async fn delete(path: web::Path<NotePath>) -> impl Responder {
            match changed.expiration {
                Some(e) => {
                    if e < n {
-                        match store::del(&p.id.clone()) {
+                        match store::del(&id.clone()) {
-                            Ok(_) => return HttpResponse::BadRequest().finish(),
+                            Ok(_) => return (StatusCode::BAD_REQUEST).into_response(),
                            Err(e) => {
-                                return HttpResponse::InternalServerError().body(e.to_string())
+                                return (StatusCode::INTERNAL_SERVER_ERROR, e.to_string())
                                    .into_response()
                            }
                        }
                    }
                }
                _ => {}
            }
-            return HttpResponse::Ok().json(NotePublic {
+
-                contents: changed.contents,
+            return (
-                meta: changed.meta,
+                StatusCode::OK,
-            });
+                Json(NotePublic {
                    contents: changed.contents,
                    meta: changed.meta,
                }),
            )
                .into_response();
        }
    }
 }
 #[derive(Serialize, Deserialize)]
 struct Status {
    version: String,
    max_size: usize,
 }
 pub fn init() -> Scope {
    web::scope("/notes")
        .service(one)
        .service(create)
        .service(delete)
 }
@@ -1,12 +0,0 @@
 use crate::config;
 use actix_web::web;
 use mime;
 pub fn init(cfg: &mut web::ServiceConfig) {
    let json = web::JsonConfig::default().limit(*config::LIMIT);
    let plain = web::PayloadConfig::default()
        .limit(*config::LIMIT)
        .mimetype(mime::STAR_STAR);
    // cfg.app_data(plain);
    cfg.app_data(json).app_data(plain);
 }
@@ -1,5 +1,45 @@
-mod model;
+use crate::config;
-mod routes;
+use axum::{http::StatusCode, Json};
 use serde::Serialize;
-pub use model::*;
+#[derive(Serialize)]
-pub use routes::*;
+pub struct Status {
    // General
    pub version: String,
    // Config
    pub max_size: u32,
    pub max_views: u32,
    pub max_expiration: u32,
    pub allow_advanced: bool,
    pub allow_files: bool,
    pub imprint_url: String,
    pub imprint_html: String,
    // Theme
    pub theme_image: String,
    pub theme_text: String,
    pub theme_page_title: String,
    pub theme_favicon: String,
    pub theme_new_note_notice: bool,
    pub theme_home_link: bool,
 }
 pub async fn get_status() -> (StatusCode, Json<Status>) {
    let status = Status {
        version: config::VERSION.to_string(),
        max_size: *config::LIMIT as u32,
        max_views: *config::MAX_VIEWS,
        max_expiration: *config::MAX_EXPIRATION,
        allow_advanced: *config::ALLOW_ADVANCED,
        allow_files: *config::ALLOW_FILES,
        imprint_url: config::IMPRINT_URL.to_string(),
        imprint_html: config::IMPRINT_HTML.to_string(),
        theme_new_note_notice: *config::THEME_NEW_NOTE_NOTICE,
        theme_home_link: *config::THEME_HOME_LINK,
        theme_image: config::THEME_IMAGE.to_string(),
        theme_text: config::THEME_TEXT.to_string(),
        theme_page_title: config::THEME_PAGE_TITLE.to_string(),
        theme_favicon: config::THEME_FAVICON.to_string(),
    };
    (StatusCode::OK, Json(status))
 }
@@ -1,19 +0,0 @@
 use serde::{Deserialize, Serialize};
 #[derive(Serialize, Deserialize)]
 pub struct Status {
    // General
    pub version: String,
    // Config
    pub max_size: u32,
    pub max_views: u32,
    pub max_expiration: u32,
    pub allow_advanced: bool,
    pub allow_files: bool,
    pub theme_new_note_notice: bool,
    // Theme
    pub theme_image: String,
    pub theme_text: String,
    pub theme_page_title: String,
    pub theme_favicon: String,
 }
@@ -1,25 +0,0 @@
 use actix_web::{get, web, HttpResponse, Responder, Scope};
 use crate::config;
 use crate::status::Status;
 #[get("/")]
 async fn get_status() -> impl Responder {
    return HttpResponse::Ok().json(Status {
        version: config::VERSION.to_string(),
        max_size: *config::LIMIT as u32,
        max_views: *config::MAX_VIEWS,
        max_expiration: *config::MAX_EXPIRATION,
        allow_advanced: *config::ALLOW_ADVANCED,
        allow_files: *config::ALLOW_FILES,
        theme_new_note_notice: *config::THEME_NEW_NOTE_NOTICE,
        theme_image: config::THEME_IMAGE.to_string(),
        theme_text: config::THEME_TEXT.to_string(),
        theme_page_title: config::THEME_PAGE_TITLE.to_string(),
        theme_favicon: config::THEME_FAVICON.to_string(),
    });
 }
 pub fn init() -> Scope {
    web::scope("/status").service(get_status)
 }
@@ -31,13 +31,13 @@ pub fn set(id: &String, note: &Note) -> Result<(), &'static str> {
    let serialized = serde_json::to_string(&note.clone()).unwrap();
    let mut conn = get_connection()?;
-    conn.set(id, serialized)
+    conn.set::<_, _, ()>(id, serialized)
        .map_err(|_| "Unable to set note in redis")?;
    match note.expiration {
        Some(e) => {
            let seconds = e - now();
-            conn.expire(id, seconds as usize)
+            conn.expire::<_, ()>(id, seconds as i64)
-                .map_err(|_| "Unable to set expiration on notion")?
+                .map_err(|_| "Unable to set expiration on note")?
        }
        None => {}
    };
@@ -58,6 +58,6 @@ pub fn get(id: &String) -> Result<Option<Note>, &'static str> {
 pub fn del(id: &String) -> Result<(), &'static str> {
    let mut conn = get_connection()?;
-    conn.del(id).map_err(|_| "Unable to delete note in redis")?;
+    conn.del::<_, ()>(id).map_err(|_| "Unable to delete note in redis")?;
    Ok(())
 }
@@ -0,0 +1,15 @@
 import { build } from 'tsup'
 import pkg from './package.json' with { type: 'json' }
 const watch = process.argv.slice(2)[0] === '--watch'
 await build({
  entry: ['src/index.ts', 'src/cli.ts', 'src/shared/shared.ts'],
  dts: true,
  minify: true,
  format: ['esm', 'cjs'],
  target: 'es2020',
  clean: true,
  define: { VERSION: `"${pkg.version}"` },
  watch,
 })
@@ -1,6 +1,6 @@
 {
  "name": "cryptgeon",
-  "version": "2.6.0",
+  "version": "2.9.2",
  "homepage": "https://github.com/cupcakearmy/cryptgeon",
  "repository": {
    "type": "git",
@@ -9,7 +9,11 @@
  },
  "type": "module",
  "exports": {
-    ".": "./dist/index.mjs"
+    ".": "./dist/index.js",
    "./shared": {
      "import": "./dist/shared/shared.js",
      "types": "./dist/shared/shared.d.ts"
    }
  },
  "types": "./dist/index.d.ts",
  "bin": {
@@ -20,23 +24,22 @@
  ],
  "scripts": {
    "bin": "run-s build package",
-    "build": "rm -rf dist && tsc && ./scripts/build.js",
+    "build": "tsc && node build.js",
-    "dev": "./scripts/build.js --watch",
+    "dev": "node build.js --watch",
    "prepublishOnly": "run-s build"
  },
  "devDependencies": {
-    "@commander-js/extra-typings": "^12.0.1",
+    "@commander-js/extra-typings": "^12.1.0",
-    "@cryptgeon/shared": "workspace:*",
+    "@types/inquirer": "^9.0.9",
-    "@types/inquirer": "^9.0.7",
+    "@types/mime": "^4.0.0",
-    "@types/mime": "^3.0.4",
+    "@types/node": "^20.19.41",
-    "@types/node": "^20.11.24",
+    "commander": "^12.1.0",
-    "commander": "^12.0.0",
+    "inquirer": "^9.3.8",
-    "esbuild": "^0.20.1",
+    "mime": "^4.1.0",
-    "inquirer": "^9.2.15",
+    "occulto": "^2.0.6",
    "mime": "^4.0.1",
    "occulto": "^2.0.3",
    "pretty-bytes": "^6.1.1",
-    "typescript": "^5.3.3"
+    "tsup": "^8.5.1",
    "typescript": "^5.9.3"
  },
  "engines": {
    "node": ">=18"
@@ -1,34 +0,0 @@
 #!/usr/bin/env node
 import { build, context } from 'esbuild'
 import pkg from '../package.json' assert { type: 'json' }
 const common = {
  bundle: true,
  minify: true,
  platform: 'node',
  define: { VERSION: `"${pkg.version}"` },
 }
 const cliOptions = {
  ...common,
  entryPoints: ['./src/cli.ts'],
  format: 'cjs',
  outfile: './dist/cli.cjs',
 }
 const indexOptions = {
  ...common,
  entryPoints: ['./src/index.ts'],
  outfile: './dist/index.mjs',
  format: 'esm',
 }
 const watch = process.argv.slice(2)[0] === '--watch'
 if (watch) {
  const ctx = await context(cliOptions)
  ctx.watch()
 } else {
  await build(cliOptions)
  await build(indexOptions)
 }
@@ -1,14 +1,15 @@
 import { Adapters, get, info, setBase } from '@cryptgeon/shared'
 import inquirer from 'inquirer'
 import { access, constants, writeFile } from 'node:fs/promises'
 import { basename, resolve } from 'node:path'
 import { AES, Hex } from 'occulto'
 import pretty from 'pretty-bytes'
 import { Adapters } from '../shared/adapters.js'
 import { API } from '../shared/api.js'
 export async function download(url: URL, all: boolean, suggestedPassword?: string) {
-  setBase(url.origin)
+  API.setOptions({ server: url.origin })
  const id = url.pathname.split('/')[2]
-  const preview = await info(id).catch(() => {
+  const preview = await API.info(id).catch(() => {
    throw new Error('Note does not exist or is expired')
  })
@@ -33,7 +34,7 @@ export async function download(url: URL, all: boolean, suggestedPassword?: strin
  }
  const key = derivation ? (await AES.derive(password, derivation))[0] : Hex.decode(password)
-  const note = await get(id)
+  const note = await API.get(id)
  const couldNotDecrypt = new Error('Could not decrypt note. Probably an invalid password')
  switch (note.meta.type) {
@@ -1,9 +1,10 @@
 import { readFile, stat } from 'node:fs/promises'
 import { basename } from 'node:path'
 import { Adapters, BASE, create, FileDTO, Note, NoteMeta } from '@cryptgeon/shared'
 import mime from 'mime'
 import { AES, Hex } from 'occulto'
 import { Adapters } from '../shared/adapters.js'
 import { API, FileDTO, Note, NoteMeta } from '../shared/api.js'
 export type UploadOptions = Pick<Note, 'views' | 'expiration'> & { password?: string }
@@ -38,8 +39,8 @@ export async function upload(input: string | string[], options: UploadOptions):
  // Create the actual note and upload it.
  const note: Note = { ...noteOptions, contents, meta: { type, derivation: derived?.[1] } }
-  const result = await create(note)
+  const result = await API.create(note)
-  let url = `${BASE}/note/${result.id}`
+  let url = `${API.getOptions().server}/note/${result.id}`
  if (!derived) url += `#${Hex.encode(key)}`
  return url
 }
@@ -1,14 +1,14 @@
 #!/usr/bin/env node
 import { Argument, Option, program } from '@commander-js/extra-typings'
 import { setBase, status } from '@cryptgeon/shared'
 import prettyBytes from 'pretty-bytes'
-import { download } from './download.js'
+import { download } from './actions/download.js'
-import { parseFile, parseNumber } from './parsers.js'
+import { upload } from './actions/upload.js'
-import { getStdin } from './stdin.js'
+import { API } from './shared/api.js'
-import { upload } from './upload.js'
+import { parseFile, parseNumber } from './utils/parsers.js'
-import { checkConstrains, exit } from './utils.js'
+import { getStdin } from './utils/stdin.js'
 import { checkConstrains, exit } from './utils/utils.js'
 const defaultServer = process.env['CRYPTGEON_SERVER'] || 'https://cryptgeon.org'
 const server = new Option('-s --server <url>', 'the cryptgeon server to use').default(defaultServer)
@@ -33,8 +33,8 @@ program
  .description('show information about the server')
  .addOption(server)
  .action(async (options) => {
-    setBase(options.server)
+    API.setOptions({ server: options.server })
-    const response = await status()
+    const response = await API.status()
    const formatted = {
      ...response,
      max_size: prettyBytes(response.max_size),
@@ -54,7 +54,7 @@ send
  .addOption(minutes)
  .addOption(password)
  .action(async (files, options) => {
-    setBase(options.server!)
+    API.setOptions({ server: options.server })
    await checkConstrains(options)
    options.password ||= await getStdin()
    try {
@@ -72,7 +72,7 @@ send
  .addOption(minutes)
  .addOption(password)
  .action(async (text, options) => {
-    setBase(options.server!)
+    API.setOptions({ server: options.server })
    await checkConstrains(options)
    options.password ||= await getStdin()
    try {
@@ -1,4 +1,4 @@
-export * from '@cryptgeon/shared'
+export * from './actions/download.js'
-export * from './download.js'
+export * from './actions/upload.js'
-export * from './upload.js'
+export * from './shared/adapters.js'
-export * from './utils.js'
+export * from './shared/api.js'
@@ -23,6 +23,10 @@ export type EncryptedFileDTO = Omit<FileDTO, 'contents'> & {
  contents: string
 }
 type ClientOptions = {
  server: string
 }
 type CallOptions = {
  url: string
  method: string
@@ -31,14 +35,21 @@ type CallOptions = {
 export class PayloadToLargeError extends Error {}
-export let BASE = ''
+export let client: ClientOptions = {
-
+  server: '',
 export function setBase(url: string) {
  BASE = url
 }
-export async function call(options: CallOptions) {
+function setOptions(options: Partial<ClientOptions>) {
-  const response = await fetch(BASE + '/api/' + options.url, {
+  client = { ...client, ...options }
 }
 function getOptions(): ClientOptions {
  return client
 }
 async function call(options: CallOptions) {
  const url = client.server + '/api/' + options.url
  const response = await fetch(url, {
    method: options.method,
    body: options.body === undefined ? undefined : JSON.stringify(options.body),
    mode: 'cors',
@@ -54,7 +65,7 @@ export async function call(options: CallOptions) {
  return response.json()
 }
-export async function create(note: Note) {
+async function create(note: Note) {
  const { meta, ...rest } = note
  const body: NoteCreate = {
    ...rest,
@@ -68,7 +79,7 @@ export async function create(note: Note) {
  return data as { id: string }
 }
-export async function get(id: string): Promise<NotePublic> {
+async function get(id: string): Promise<NotePublic> {
  const data = await call({
    url: `notes/${id}`,
    method: 'delete',
@@ -82,7 +93,7 @@ export async function get(id: string): Promise<NotePublic> {
  return note
 }
-export async function info(id: string): Promise<NoteInfo> {
+async function info(id: string): Promise<NoteInfo> {
  const data = await call({
    url: `notes/${id}`,
    method: 'get',
@@ -101,16 +112,30 @@ export type Status = {
  max_views: number
  max_expiration: number
  allow_advanced: boolean
  allow_files: boolean
  imprint_url: string
  imprint_html: string
  theme_image: string
  theme_text: string
  theme_favicon: string
  theme_page_title: string
  theme_new_note_notice: boolean
  theme_home_link: boolean
 }
-export async function status() {
+async function status() {
  const data = await call({
    url: 'status/',
    method: 'get',
  })
  return data as Status
 }
 export const API = {
  setOptions,
  getOptions,
  create,
  get,
  info,
  status,
 }
@@ -21,7 +21,7 @@ export function parseURL(value: string, _: URL): URL {
 }
 export function parseNumber(value: string, _: number): number {
-  const n = parseInt(value, 10)
+  const n = Number.parseInt(value, 10)
-  if (isNaN(n)) throw new InvalidOptionArgumentError('invalid number')
+  if (Number.isNaN(n)) throw new InvalidOptionArgumentError('invalid number')
  return n
 }
@@ -18,6 +18,7 @@ export function getStdin(timeout: number = 10): Promise<string> {
      resolve('')
    }, timeout)
    process.stdin.on('error', reject)
    process.stdin.on('data', dataHandler)
    process.stdin.on('end', endHandler)
  })
@@ -1,5 +1,5 @@
 import { status } from '@cryptgeon/shared'
 import { exit as exitNode } from 'node:process'
 import { API } from '../shared/api.js'
 export function exit(message: string) {
  console.error(message)
@@ -11,7 +11,7 @@ export async function checkConstrains(constrains: { views?: number; minutes?: nu
  if (views && minutes) exit('cannot set view and minutes constrains simultaneously')
  if (!views && !minutes) constrains.views = 1
-  const response = await status()
+  const response = await API.status()
  if (views && views > response.max_views)
    exit(`Only a maximum of ${response.max_views} views allowed. ${views} given.`)
  if (minutes && minutes > response.max_expiration)
@@ -2,7 +2,7 @@
  "compilerOptions": {
    "target": "es2022",
    "module": "es2022",
-    "moduleResolution": "node",
+    "moduleResolution": "Bundler",
    "declaration": true,
    "emitDeclarationOnly": true,
    "strict": true,
@@ -1,8 +1,17 @@
-├─ MIT: 13
+├─ MIT: 324
-├─ ISC: 2
+├─ ISC: 84
-├─ BSD-3-Clause: 1
+├─ Apache-2.0: 21
-├─ (MPL-2.0 OR Apache-2.0): 1
+├─ BlueOak-1.0.0: 14
-├─ BSD-2-Clause: 1
+├─ BSD-3-Clause: 6
 ├─ BSD-2-Clause: 4
 ├─ OFL-1.1: 1
 ├─ Python-2.0: 1
 ├─ CC-BY-4.0: 1
 ├─ UNKNOWN: 1
 ├─ MPL-2.0: 1
 ├─ CC-BY-3.0: 1
 ├─ CC0-1.0: 1
 ├─ (MIT AND CC-BY-3.0): 1
 ├─ 0BSD: 1
-└─ Apache-2.0: 1
+└─ (MIT OR CC0-1.0): 1
@@ -0,0 +1,61 @@
 {
 	"common": {
 		"note": "poznámka",
 		"file": "soubor",
 		"advanced": "pokročilé",
 		"create": "vytvořit",
 		"loading": "načítání",
 		"mode": "režim",
 		"views": "{n, plural, =0 {zobrazení} =1 {1 zobrazení} other {# zobrazení}}",
 		"minutes": "{n, plural, =0 {minut} =1 {1 minuta} other {# minutách}}",
 		"max": "max",
 		"share_link": "sdílet odkaz",
 		"copy_clipboard": "zkopírovat do schránky",
 		"copied_to_clipboard": "zkopírováno do schránky",
 		"encrypting": "šifrování",
 		"decrypting": "dešifrování",
 		"uploading": "nahrávání",
 		"downloading": "stahování",
 		"qr_code": "QR kód",
 		"password": "heslo"
 	},
 	"home": {
 		"intro": "Jednoduše posílejte <i>plně šifrované</i> a zabezpečené poznámky nebo soubory jediným kliknutím. Stačí vytvořit poznámku a sdílet odkaz.",
 		"explanation": "Poznámka vyprší a bude zničena po {n}.",
 		"new_note": "Nová poznámka",
 		"new_note_notice": "<b>Dostupnost:</b><br />Poznámka není zaručeně uchována, protože je uložena pouze v paměti RAM. Pokud se paměť zaplní, nejstarší poznámky budou automaticky smazány.<br />(Obvykle to nebývá problém, ale je dobré o tom vědět.)",
 		"errors": {
 			"note_to_big": "Poznámku nelze vytvořit. Je příliš velká.",
 			"note_error": "Poznámku nelze vytvořit. Zkuste to prosím znovu.",
 			"max": "Max: {n}",
 			"empty_content": "Poznámka je prázdná."
 		},
 		"messages": {
 			"note_created": "Poznámka byla vytvořena."
 		},
 		"advanced": {
 			"explanation": "Ve výchozím nastavení se pro každou poznámku generuje bezpečné heslo. Pokud chcete, můžete si nastavit vlastní heslo, které nebude součástí odkazu.",
 			"custom_password": "Vlastní heslo"
 		},
 		"pasting": "Vkládání...",
 		"pasted_files": "Vložené soubory",
 		"remove": "Odstranit"
 	},
 	"show": {
 		"errors": {
 			"not_found": "Poznámka nebyla nalezena nebo již byla smazána.",
 			"decryption_failed": "Špatné heslo. Nelze dešifrovat. Odkaz je pravděpodobně poškozen. Poznámka byla zničena.",
 			"unsupported_type": "Nepodporovaný typ poznámky."
 		},
 		"explanation": "Klikněte níže pro zobrazení a následné smazání poznámky, pokud bylo dosaženo limitu zobrazení.",
 		"show_note": "Zobrazit poznámku",
 		"warning_will_not_see_again": "Tuto poznámku již <b>nebudete</b> moci znovu zobrazit.",
 		"download_all": "Stáhnout vše",
 		"links_found": "Odkazy nalezené v poznámce:"
 	},
 	"file_upload": {
 		"selected_files": "Vybrané soubory",
 		"no_files_selected": "Žádné soubory nevybrány",
 		"clear": "Vymazat"
 	}
 }
@@ -36,7 +36,10 @@
 		"advanced": {
 			"explanation": "Standardmäßig wird für jede Notiz ein generiertes, sicheres Passwort verwendet. Alternativ können Sie ein eigenes Kennwort festlegen, welches nicht im Link enthalten ist.",
 			"custom_password": "Benutzerdefiniertes Passwort"
-		}
+		},
 		"pasting": "Einfügen...",
 		"pasted_files": "Eingefügte Dateien",
 		"remove": "Entfernen"
 	},
 	"show": {
 		"errors": {
@@ -25,7 +25,7 @@
 		"new_note": "new note",
 		"new_note_notice": "<b>availability:</b><br />the note is not guaranteed to be stored as everything is kept in ram, if it fills up the oldest notes will be removed.<br />(you probably will be fine, just be warned.)",
 		"errors": {
-			"note_to_big": "could not create note. note is to big",
+			"note_to_big": "could not create note. note is too big",
 			"note_error": "could not create note. please try again.",
 			"max": "max: {n}",
 			"empty_content": "note is empty."
@@ -36,7 +36,10 @@
 		"advanced": {
 			"explanation": "By default, a securely generated password is used for each note. You can however also choose your own password, which is not included in the link.",
 			"custom_password": "custom password"
-		}
+		},
 		"pasting": "Pasting...",
 		"pasted_files": "Pasted Files",
 		"remove": "Remove"
 	},
 	"show": {
 		"errors": {
@@ -44,7 +47,7 @@
 			"decryption_failed": "wrong password. could not decipher. probably a broken link. note was destroyed.",
 			"unsupported_type": "unsupported note type."
 		},
-		"explanation": "click below to show and delete the note if the counter has reached it's limit",
+		"explanation": "click below to show and delete the note if the counter has reached its limit",
 		"show_note": "show note",
 		"warning_will_not_see_again": "you will <b>not</b> get the chance to see the note again.",
 		"download_all": "download all",
@@ -36,7 +36,10 @@
 		"advanced": {
 			"explanation": "Por defecto, se utiliza una contraseña generada de forma segura para cada nota. No obstante, también puede elegir su propia contraseña, la cual no se incluye en el enlace.",
 			"custom_password": "contraseña personalizada"
-		}
+		},
 		"pasting": "Pegando...",
 		"pasted_files": "Archivos pegados",
 		"remove": "Eliminar"
 	},
 	"show": {
 		"errors": {
@@ -23,7 +23,7 @@
 		"intro": "Envoyez facilement des notes ou des fichiers <i>entièrement chiffrés</i> et sécurisés en un seul clic. Il suffit de créer une note et de partager le lien.",
 		"explanation": "la note expirera et sera détruite après {type}.",
 		"new_note": "nouvelle note",
-		"new_note_notice": "<b>disponibilité :</b><br />la note n'est pas garantie d'être stockée car tout est conservé dans la mémoire vive; si elle se remplit, les notes les plus anciennes seront supprimées.<br />(tout ira probablement bien, soyez juste averti.)",
+		"new_note_notice": "<b>disponibilité :</b><br />il n'est pas garanti que la note reste stockée car tout est conservé dans la mémoire vive; si elle se remplit, les notes les plus anciennes seront supprimées.<br />(tout ira probablement bien, soyez juste averti.)",
 		"errors": {
 			"note_to_big": "Impossible de créer une note. La note est trop grande.",
 			"note_error": "n'a pas pu créer de note. Veuillez réessayer.",
@@ -36,7 +36,10 @@
 		"advanced": {
 			"explanation": "Par défaut, un mot de passe généré de manière sécurisée est utilisé pour chaque note. Vous pouvez toutefois choisir votre propre mot de passe, qui n'est pas inclus dans le lien.",
 			"custom_password": "mot de passe personnalisé"
-		}
+		},
 		"pasting": "Collage...",
 		"pasted_files": "Fichiers collés",
 		"remove": "Supprimer"
 	},
 	"show": {
 		"errors": {
@@ -45,9 +48,9 @@
 			"unsupported_type": "type de note non supporté."
 		},
 		"explanation": "Cliquez ci-dessous pour afficher et supprimer la note si le compteur a atteint sa limite.",
-		"show_note": "note de présentation",
+		"show_note": "afficher la note",
 		"warning_will_not_see_again": "vous <b>n'aurez pas</b> la chance de revoir la note.",
-		"download_all": "télécharger tout",
+		"download_all": "tout télécharger",
 		"links_found": "liens trouvés à l’intérieur de la note :"
 	},
 	"file_upload": {
@@ -5,7 +5,7 @@
 		"advanced": "avanzato",
 		"create": "crea",
 		"loading": "carica",
-		"mode": "modalita",
+		"mode": "modalità",
 		"views": "{n, plural, =0 {viste} =1 {1 vista} other {# viste}}",
 		"minutes": "{n, plural, =0 {minuti} =1 {1 minuto} other {# minuti}}",
 		"max": "max",
@@ -36,7 +36,10 @@
 		"advanced": {
 			"explanation": "Per impostazione predefinita, per ogni nota viene utilizzata una password generata in modo sicuro. È tuttavia possibile scegliere la propria password, che non è inclusa nel link.",
 			"custom_password": "password personalizzata"
-		}
+		},
 		"pasting": "Incollando...",
 		"pasted_files": "File incollati",
 		"remove": "Rimuovi"
 	},
 	"show": {
 		"errors": {
@@ -17,7 +17,7 @@
 		"uploading": "アップロード中",
 		"downloading": "ダウンロード中",
 		"qr_code": "QRコード",
-		"password": "暗号"
+		"password": "パスワード"
 	},
 	"home": {
 		"intro": "<i>完全に暗号化された</i> 、安全なメモやファイルをワンクリックで簡単に送信できます。メモを作成してリンクを共有するだけです。",
@@ -36,7 +36,10 @@
 		"advanced": {
 			"explanation": "デフォルトでは、安全に生成されたパスワードが各ノートに使用されます。しかし、リンクに含まれない独自のパスワードを選択することもできます。",
 			"custom_password": "カスタムパスワード"
-		}
+		},
 		"pasting": "貼り付け中...",
 		"pasted_files": "貼り付けたファイル",
 		"remove": "削除"
 	},
 	"show": {
 		"errors": {
@@ -46,7 +49,7 @@
 		},
 		"explanation": "カウンターが上限に達した場合、ノートの表示と削除を行うには、以下をクリックします。",
 		"show_note": "メモを表示",
-		"warning_will_not_see_again": "あなた <b>できません</b> このノートをもう一度見る",
+		"warning_will_not_see_again": "このノートを再度表示することは<b>できません</b>",
 		"download_all": "すべてダウンロード",
 		"links_found": "メモ内にあるリンク:"
 	},
@@ -0,0 +1,61 @@
 {
 	"common": {
 		"note": "notatka",
 		"file": "plik",
 		"advanced": "zaawansowane",
 		"create": "utwórz",
 		"loading": "ładowanie",
 		"mode": "tryb",
 		"views": "{n, plural, =0 {wyświetleń} =1 {1 wyświetlenie} other {{n} wyświetleń}}",
 		"minutes": "{n, plural, =0 {minut} =1 {1 minuta} other {{n} minuty}}",
 		"max": "maks.",
 		"share_link": "link udostępniania",
 		"copy_clipboard": "kopiuj do schowka",
 		"copied_to_clipboard": "skopiowano do schowka",
 		"encrypting": "szyfrowanie",
 		"decrypting": "odszyfrowywanie",
 		"uploading": "wysyłanie",
 		"downloading": "pobieranie",
 		"qr_code": "kod QR",
 		"password": "hasło"
 	},
 	"home": {
 		"intro": "Łatwo wysyłaj <i>w pełni zaszyfrowane</i>, bezpieczne notatki lub pliki jednym kliknięciem. Po prostu utwórz notatkę i udostępnij link.",
 		"explanation": "notatka wygaśnie i zostanie zniszczona po {type}.",
 		"new_note": "nowa notatka",
 		"new_note_notice": "<b>dostępność:</b><br />nie ma gwarancji, że notatka będzie przechowywana, ponieważ wszystko jest przechowywane w pamięci RAM, jeśli się zapełni, najstarsze notatki zostaną usunięte.<br />(prawdopodobnie nic się nie stanie, ale warto ostrzec.)",
 		"errors": {
 			"note_to_big": "nie można utworzyć notatki. notatka jest za duża",
 			"note_error": "nie można utworzyć notatki. spróbuj ponownie.",
 			"max": "maks.: {n}",
 			"empty_content": "notatka jest pusta."
 		},
 		"messages": {
 			"note_created": "notatka utworzona."
 		},
 		"advanced": {
 			"explanation": "Domyślnie dla każdej notatki używane jest bezpiecznie wygenerowane hasło. Możesz jednak wybrać własne hasło, które nie jest uwzględnione w linku.",
 			"custom_password": "własne hasło"
 		},
 		"pasting": "Wklejanie...",
 		"pasted_files": "Wklejone pliki",
 		"remove": "Usuń"
 	},
 	"show": {
 		"errors": {
 			"not_found": "notatka nie została znaleziona lub została już usunięta.",
 			"decryption_failed": "błędne hasło. nie można odszyfrować. prawdopodobnie uszkodzony link. notatka została zniszczona.",
 			"unsupported_type": "nieobsługiwany typ notatki."
 		},
 		"explanation": "kliknij poniżej, aby wyświetlić i usunąć notatkę, jeśli licznik osiągnie swój limit",
 		"show_note": "pokaż notatkę",
 		"warning_will_not_see_again": "<b>nie będziesz mieć</b> możliwości ponownego zobaczenia notatki.",
 		"download_all": "pobierz wszystko",
 		"links_found": "linki znalezione w notatce:"
 	},
 	"file_upload": {
 		"selected_files": "Wybrane pliki",
 		"no_files_selected": "Nie wybrano plików",
 		"clear": "Wyczyść"
 	}
 }
@@ -23,10 +23,10 @@
 		"intro": "Легко отправляйте <i>полностью зашифрованные</i> защищенные заметки или файлы одним щелчком мыши. Просто создайте заметку и поделитесь ссылкой.",
 		"explanation": "заметка истечет и будет уничтожена после {type}.",
 		"new_note": "новая заметка",
-		"new_note_notice": "<b>availability:</b><br />the note is not guaranteed to be stored as everything is kept in ram, if it fills up the oldest notes will be removed.<br />(you probably will be fine, just be warned.)",
+		"new_note_notice": "<b>доступность:</b><br />сохранение заметки не гарантируется, поскольку все хранится в оперативной памяти; если она заполнится, самые старые заметки будут удалены.<br />( вероятно, все будет в порядке, просто будьте осторожны.)",
 		"errors": {
 			"note_to_big": "нельзя создать новую заметку. заметка слишком большая",
-			"note_error": "нельзя создать новую заметку. пожалйста попробуйте позднее.",
+			"note_error": "нельзя создать новую заметку. пожалуйста попробуйте позже.",
 			"max": "макс: {n}",
 			"empty_content": "пустая заметка."
 		},
@@ -36,15 +36,18 @@
 		"advanced": {
 			"explanation": "По умолчанию для каждой заметки используется безопасно сгенерированный пароль. Однако вы также можете выбрать свой собственный пароль, который не включен в ссылку.",
 			"custom_password": "пользовательский пароль"
-		}
+		},
 		"pasting": "Вставка...",
 		"pasted_files": "Вставленные файлы",
 		"remove": "Удалить"
 	},
 	"show": {
 		"errors": {
 			"not_found": "заметка не найдена или была удалена.",
-			"decryption_failed": "неправильный пароль. не смог расшифровать. возможно ссылка битая. записка уничтожена.",
+			"decryption_failed": "неправильный пароль. не смог расшифровать. возможно ссылка битая. заметка уничтожена.",
 			"unsupported_type": "неподдерживаемый тип заметки."
 		},
-		"explanation": "щелкните ниже, чтобы показать и удалить примечание, если счетчик достиг предела",
+		"explanation": "щелкните ниже, чтобы показать и удалить заметку, если счетчик достиг предела",
 		"show_note": "показать заметку",
 		"warning_will_not_see_again": "вы <b>не сможете</b> больше просмотреть заметку.",
 		"download_all": "скачать всё",
@@ -0,0 +1,61 @@
 {
 	"common": {
 		"note": "筆記",
 		"file": "檔案",
 		"advanced": "進階",
 		"create": "創建",
 		"loading": "載入中",
 		"mode": "模式",
 		"views": "{n, plural, =0 {瀏覽次數} =1 {1 次瀏覽} other {# 次瀏覽}}",
 		"minutes": "{n, plural, =0 {分鐘} =1 {1 分鐘} other {# 分鐘}}",
 		"max": "最大",
 		"share_link": "分享連結",
 		"copy_clipboard": "複製到剪貼板",
 		"copied_to_clipboard": "已複製到剪貼板",
 		"encrypting": "加密中",
 		"decrypting": "解密中",
 		"uploading": "上傳中",
 		"downloading": "下載中",
 		"qr_code": "QR 碼",
 		"password": "密碼"
 	},
 	"home": {
 		"intro": "輕鬆地以一鍵傳送<i>完全加密</i>的安全筆記或檔案。只需創建筆記並分享連結。",
 		"explanation": "筆記將在 {type} 後過期並被銷毀。",
 		"new_note": "新筆記",
 		"new_note_notice": "<b>可用性：</b><br />筆記不保證被儲存，因為所有內容都保留在 RAM 中，如果 RAM 填滿，最舊的筆記將被移除。<br />(您可能會沒事，只是提醒一下。)",
 		"errors": {
 			"note_to_big": "無法創建筆記。筆記過大",
 			"note_error": "無法創建筆記。請再試一次。",
 			"max": "最大值：{n}",
 			"empty_content": "筆記內容為空。"
 		},
 		"messages": {
 			"note_created": "筆記已創建。"
 		},
 		"advanced": {
 			"explanation": "預設情況下，每個筆記都會使用安全生成的密碼。您也可以選擇自己的密碼，該密碼不會包含在連結中。",
 			"custom_password": "自定義密碼"
 		},
 		"pasting": "正在粘貼...",
 		"pasted_files": "粘貼的檔案",
 		"remove": "移除"
 	},
 	"show": {
 		"errors": {
 			"not_found": "筆記未找到或已被刪除。",
 			"decryption_failed": "密碼錯誤。無法解密。可能是連結已損壞。筆記已被銷毀。",
 			"unsupported_type": "不支持的筆記類型。"
 		},
 		"explanation": "如果計數器達到限制，請點擊下方以顯示並刪除筆記",
 		"show_note": "顯示筆記",
 		"warning_will_not_see_again": "您將<b>無法</b>再次查看筆記。",
 		"download_all": "全部下載",
 		"links_found": "在筆記中找到的連結："
 	},
 	"file_upload": {
 		"selected_files": "已選擇的檔案",
 		"no_files_selected": "未選擇檔案",
 		"clear": "重置"
 	}
 }
@@ -36,7 +36,10 @@
 		"advanced": {
 			"explanation": "默认情况下，每个笔记都使用安全生成的密码。但是，您也可以选择您自己的密码，该密码未包含在链接中。",
 			"custom_password": "自定义密码"
-		}
+		},
 		"pasting": "正在粘贴...",
 		"pasted_files": "粘贴的文件",
 		"remove": "移除"
 	},
 	"show": {
 		"errors": {
@@ -7,34 +7,32 @@
 		"build": "vite build",
 		"preview": "vite preview",
 		"check": "svelte-check --tsconfig tsconfig.json",
-		"licenses": "license-checker --summary > licenses.csv",
+		"licenses": "license-checker-rseidelsohn --summary > licenses.csv",
 		"locale:download": "node scripts/locale.js",
 		"test:prepare": "pnpm run build"
 	},
 	"type": "module",
 	"devDependencies": {
-		"@lokalise/node-api": "^12.1.0",
+		"@lokalise/node-api": "^13.2.1",
-		"@sveltejs/adapter-static": "^3.0.1",
+		"@sveltejs/adapter-static": "^3.0.10",
-		"@sveltejs/kit": "^2.5.2",
+		"@sveltejs/kit": "^2.61.1",
-		"@sveltejs/vite-plugin-svelte": "^3.0.2",
+		"@sveltejs/vite-plugin-svelte": "^7.1.2",
-		"@types/file-saver": "^2.0.7",
+		"@zerodevx/svelte-toast": "^0.9.6",
-		"@zerodevx/svelte-toast": "^0.9.5",
+		"adm-zip": "^0.5.17",
-		"adm-zip": "^0.5.10",
+		"dotenv": "^17.4.2",
-		"dotenv": "^16.4.5",
+		"license-checker-rseidelsohn": "^5.0.1",
-		"svelte": "^4.2.12",
+		"svelte": "^5.55.9",
-		"svelte-check": "^3.6.6",
+		"svelte-check": "^4.4.8",
 		"svelte-intl-precompile": "^0.12.3",
-		"tslib": "^2.6.2",
+		"tslib": "^2.8.1",
-		"typescript": "^5.3.3",
+		"typescript": "^6.0.3",
-		"vite": "^5.1.4"
+		"vite": "^8.0.14"
 	},
 	"dependencies": {
-		"@cryptgeon/shared": "workspace:*",
+		"@fontsource/fira-mono": "^5.2.7",
-		"@fontsource/fira-mono": "^5.0.8",
+		"cryptgeon": "workspace:*",
-		"copy-to-clipboard": "^3.3.3",
+		"occulto": "^2.0.6",
-		"file-saver": "^2.0.5",
+		"pretty-bytes": "^7.1.0",
-		"occulto": "^2.0.3",
+		"uqr": "^0.1.3"
 		"pretty-bytes": "^6.1.1",
 		"qrious": "^4.0.2"
 	}
 }
@@ -1,3 +1,5 @@
 <script lang="ts"></script>
 <svg xmlns="http://www.w3.org/2000/svg" class="ionicon" viewBox="0 0 512 512"
 	><title>Contrast</title><path
 		d="M256 32C132.29 32 32 132.29 32 256s100.29 224 224 224 224-100.29 224-224S379.71 32 256 32zM128.72 383.28A180 180 0 01256 76v360a178.82 178.82 0 01-127.28-52.72z"
@@ -1,3 +1,5 @@
 <script lang="ts"></script>
 <svg xmlns="http://www.w3.org/2000/svg" class="ionicon" viewBox="0 0 512 512"
 	><title>Copy</title><path
 		d="M456 480H136a24 24 0 01-24-24V128a16 16 0 0116-16h328a24 24 0 0124 24v320a24 24 0 01-24 24z"
@@ -1,3 +1,5 @@
 <script lang="ts"></script>
 <svg xmlns="http://www.w3.org/2000/svg" class="ionicon" viewBox="0 0 512 512"
 	><title>Dice</title><path
 		d="M48 366.92L240 480V284L48 170zM192 288c8.84 0 16 10.75 16 24s-7.16 24-16 24-16-10.75-16-24 7.16-24 16-24zm-96 32c8.84 0 16 10.75 16 24s-7.16 24-16 24-16-10.75-16-24 7.16-24 16-24zM272 284v196l192-113.08V170zm48 140c-8.84 0-16-10.75-16-24s7.16-24 16-24 16 10.75 16 24-7.16 24-16 24zm0-88c-8.84 0-16-10.75-16-24s7.16-24 16-24 16 10.75 16 24-7.16 24-16 24zm96 32c-8.84 0-16-10.75-16-24s7.16-24 16-24 16 10.75 16 24-7.16 24-16 24zm0-88c-8.84 0-16-10.75-16-24s7.16-24 16-24 16 10.75 16 24-7.16 24-16 24zm32 77.64zM256 32L64 144l192 112 192-112zm0 120c-13.25 0-24-7.16-24-16s10.75-16 24-16 24 7.16 24 16-10.75 16-24 16z"
@@ -1,3 +1,5 @@
 <script lang="ts"></script>
 <svg xmlns="http://www.w3.org/2000/svg" class="ionicon" viewBox="0 0 512 512"
 	><title>Eye</title><circle cx="256" cy="256" r="64" /><path
 		d="M394.82 141.18C351.1 111.2 304.31 96 255.76 96c-43.69 0-86.28 13-126.59 38.48C88.52 160.23 48.67 207 16 256c26.42 44 62.56 89.24 100.2 115.18C159.38 400.92 206.33 416 255.76 416c49 0 95.85-15.07 139.3-44.79C433.31 345 469.71 299.82 496 256c-26.38-43.43-62.9-88.56-101.18-114.82zM256 352a96 96 0 1196-96 96.11 96.11 0 01-96 96z"
@@ -1,3 +1,5 @@
 <script lang="ts"></script>
 <svg xmlns="http://www.w3.org/2000/svg" class="ionicon" viewBox="0 0 512 512"
 	><title>Eye Off</title><path
 		d="M63.998 86.004l21.998-21.998L448 426.01l-21.998 21.998zM259.34 192.09l60.57 60.57a64.07 64.07 0 00-60.57-60.57zM252.66 319.91l-60.57-60.57a64.07 64.07 0 0060.57 60.57z"
@@ -1,8 +1,8 @@
-import { status as getStatus, type Status } from '@cryptgeon/shared'
+import { API, type Status } from 'cryptgeon/shared'
 import { writable } from 'svelte/store'
 export const status = writable<null | Status>(null)
 export async function init() {
-	status.set(await getStatus())
+	status.set(await API.status())
 }
@@ -1,11 +1,11 @@
-import { toast, type SvelteToastOptions } from '@zerodevx/svelte-toast'
+import { toast } from '@zerodevx/svelte-toast'
 export enum NotifyType {
 	Success = 'success',
 	Error = 'error',
 }
-const themeMapping: Record<NotifyType, SvelteToastOptions['theme']> = {
+const themeMapping: Record<NotifyType, Record<string, string>> = {
 	[NotifyType.Success]: {
 		'--toastBackground': 'var(--ui-clr-primary)',
 		'--toastBarBackground': 'var(--ui-clr-primary-alt)',
@@ -17,7 +17,7 @@ const themeMapping: Record<NotifyType, SvelteToastOptions['theme']> = {
 }
 function notifyFN(message: string, type: NotifyType = NotifyType.Success) {
-	const options: SvelteToastOptions = {
+	const options = {
 		duration: 5_000,
 		theme: {
 			...themeMapping[type],
@@ -1,10 +1,17 @@
 <script lang="ts">
-	export let title: string
+	import type { Snippet } from 'svelte'
 	interface Props {
 		title: string
 		children?: Snippet
 	}
 	let { title, children }: Props = $props()
 </script>
 <p>
 	<b>▶ {title}</b>
-	<slot />
+	{@render children?.()}
 </p>
 <style>
@@ -4,15 +4,25 @@
 	import { status } from '$lib/stores/status'
 	import Switch from '$lib/ui/Switch.svelte'
 	import TextInput from '$lib/ui/TextInput.svelte'
-	import type { Note } from '@cryptgeon/shared'
+	import type { Note } from 'cryptgeon/shared'
-	export let note: Note
+	interface Props {
-	export let timeExpiration = false
+		note: Note
-	export let customPassword: string | null = null
+		timeExpiration?: boolean
 		customPassword?: string | null
 	}
-	let hasCustomPassword = false
+	let {
 		note = $bindable(),
 		timeExpiration = $bindable(false),
 		customPassword = $bindable(null),
 	}: Props = $props()
-	$: if (!hasCustomPassword) customPassword = null
+	let hasCustomPassword = $state(false)
 	$effect(() => {
 		if (!hasCustomPassword) customPassword = null
 	})
 </script>
 <div class="flex col">
@@ -1,4 +1,14 @@
-<button {...$$restProps} on:click><slot /></button>
+<script lang="ts">
 	import type { HTMLButtonAttributes } from 'svelte/elements'
 	interface Props {
 		children?: import('svelte').Snippet
 	}
 	let { children, ...rest }: HTMLButtonAttributes & Props = $props()
 </script>
 <button {...rest}>{@render children?.()}</button>
 <style>
 	button {
@@ -1,42 +0,0 @@
 <script lang="ts">
 	// @ts-ignore
 	import QR from 'qrious'
 	import { t } from 'svelte-intl-precompile'
 	import { getCSSVariable } from '$lib/utils'
 	export let value: string
 	let canvas: HTMLCanvasElement
 	$: {
 		new QR({
 			value,
 			level: 'Q',
 			size: 800,
 			background: getCSSVariable('--ui-bg-0'),
 			foreground: getCSSVariable('--ui-text-0'),
 			element: canvas,
 		})
 	}
 </script>
 <small>{$t('common.qr_code')}</small>
 <div>
 	<canvas bind:this={canvas} />
 </div>
 <style>
 	div {
 		padding: 0.5rem;
 		width: fit-content;
 		border: 2px solid var(--ui-bg-1);
 		background-color: var(--ui-bg-0);
 		margin-top: 0.125rem;
 	}
 	canvas {
 		width: 100%;
 		height: auto;
 	}
 </style>
@@ -3,10 +3,15 @@
 	import Button from '$lib/ui/Button.svelte'
 	import MaxSize from '$lib/ui/MaxSize.svelte'
-	import type { FileDTO } from '@cryptgeon/shared'
+	import type { FileDTO } from 'cryptgeon/shared'
-	export let label: string = ''
+	interface Props {
-	export let files: FileDTO[] = []
+		label?: string
 		files?: FileDTO[]
 		[key: string]: any
 	}
 	let { label = '', files = $bindable([]), ...rest }: Props = $props()
 	async function fileToDTO(file: File): Promise<FileDTO> {
 		return {
@@ -35,7 +40,7 @@
 	<small>
 		{label}
 	</small>
-	<input {...$$restProps} type="file" on:change={onInput} multiple />
+	<input {...rest} type="file" onchange={onInput} multiple />
 	<div class="box">
 		{#if files.length}
 			<div>
@@ -45,8 +50,8 @@
 						{file.name}
 					</div>
 				{/each}
-				<div class="spacer" />
+				<div class="spacer"></div>
-				<Button on:click={clear}>{$t('file_upload.clear')}</Button>
+				<Button onclick={clear}>{$t('file_upload.clear')}</Button>
 			</div>
 		{:else}
 			<div>
@@ -1,9 +1,10 @@
-<script lang="ts" context="module">
+<script lang="ts" module>
 	import IconContrast from '$lib/icons/IconContrast.svelte'
 	import IconCopy from '$lib/icons/IconCopy.svelte'
 	import IconDice from '$lib/icons/IconDice.svelte'
 	import IconEye from '$lib/icons/IconEye.svelte'
 	import IconEyeOff from '$lib/icons/IconEyeOff.svelte'
 	import type { HTMLButtonAttributes } from 'svelte/elements'
 	const map = {
 		contrast: IconContrast,
@@ -15,22 +16,27 @@
 </script>
 <script lang="ts">
-	export let icon: keyof typeof map
+	interface Props {
 		icon: keyof typeof map
 	}
 	let { icon, ...rest }: HTMLButtonAttributes & Props = $props()
 </script>
-<div on:click {...$$restProps}>
+<button type="button" {...rest}>
 	{#if map[icon]}
-		<svelte:component this={map[icon]} />
+		{@const SvelteComponent = map[icon]}
 		<SvelteComponent />
 	{/if}
-</div>
+</button>
 <style>
-	div {
+	button {
 		display: inline-block;
 		contain: strict;
 		box-sizing: content-box;
 	}
-	div > :global(svg) {
+	button > :global(svg) {
 		display: block;
 		fill: currentColor;
 	}
@@ -1,3 +1,5 @@
 <script lang="ts"></script>
 <svg
 	version="1.1"
 	xmlns="http://www.w3.org/2000/svg"
@@ -1,4 +1,4 @@
-<script lang="ts" context="module">
+<script lang="ts" module>
 	export type NoteResult = {
 		id: string
 		password?: string
@@ -10,12 +10,19 @@
 	import { status } from '$lib/stores/status'
 	import Button from '$lib/ui/Button.svelte'
 	import TextInput from '$lib/ui/TextInput.svelte'
-	import Canvas from './Canvas.svelte'
+	import QR from './QR.svelte'
-	export let result: NoteResult
+	interface Props {
 		result: NoteResult
 	}
-	let url = `${window.location.origin}/note/${result.id}`
+	let { result }: Props = $props()
-	if (result.password) url += `#${result.password}`
+
 	let url = $derived.by(() => {
 		let url = `${window.location.origin}/note/${result.id}`
 		if (result.password) url += `#${result.password}`
 		return url
 	})
 	function reset() {
 		window.location.reload()
@@ -32,16 +39,16 @@
 />
 <div>
-	<Canvas value={url} />
+	<QR value={url} />
 </div>
 {#if $status?.theme_new_note_notice}
 	<p>
-		{@html $t('home.theme_new_note_notice')}
+		{@html $t('home.new_note_notice')}
 	</p>
 {/if}
 <br />
-<Button on:click={reset}>{$t('home.new_note')}</Button>
+<Button onclick={reset}>{$t('home.new_note')}</Button>
 <style>
 	div {
@@ -0,0 +1,155 @@
 <script lang="ts">
 	import { t } from 'svelte-intl-precompile'
 	import Button from '$lib/ui/Button.svelte'
 	import type { FileDTO } from 'cryptgeon/shared'
 	interface Props {
 		files: FileDTO[]
 	}
 	let { files = $bindable([]) }: Props = $props()
 	let previewUrls: string[] = $state([])
 	$effect(() => {
 		const urls = files.map((f) => URL.createObjectURL(new Blob([f.contents], { type: f.type })))
 		previewUrls = urls
 		return () => {
 			for (const url of urls) URL.revokeObjectURL(url)
 		}
 	})
 	function remove(index: number) {
 		const removed = files[index]
 		URL.revokeObjectURL(previewUrls[index])
 		files = files.toSpliced(index, 1)
 	}
 	function isImage(type: string) {
 		return type.startsWith('image/')
 	}
 </script>
 {#if files.length > 0}
 	<div class="pasted-files-preview">
 		<h4>{$t('home.pasted_files')}</h4>
 		<div class="files-grid">
 			{#each files as entry, index}
 				<div class="file-preview">
 					{#if isImage(entry.type)}
 						<img src={previewUrls[index]} class="preview-img" alt={entry.name} />
 					{:else}
 						<div class="file-icon">
 							<div class="file-extension">
 								{entry.name.split('.').pop()?.toUpperCase() || entry.type}
 							</div>
 						</div>
 					{/if}
 					<div class="file-name">{entry.name}</div>
 					<div class="file-actions">
 						<Button onclick={() => remove(index)}>
 							{$t('home.remove')}
 						</Button>
 					</div>
 				</div>
 			{/each}
 		</div>
 	</div>
 {/if}
 <style>
 	.pasted-files-preview {
 		margin-top: 1rem;
 		padding: 1rem;
 		border: 1px dashed #ccc;
 		border-radius: 4px;
 		background-color: #fafafa;
 	}
 	.pasted-files-preview h4 {
 		margin-top: 0;
 		margin-bottom: 0.5rem;
 		color: #333;
 	}
 	.files-grid {
 		display: flex;
 		flex-wrap: wrap;
 		gap: 1rem;
 	}
 	.file-preview {
 		position: relative;
 		text-align: center;
 		width: 150px;
 	}
 	.preview-img {
 		max-width: 150px;
 		max-height: 150px;
 		border-radius: 4px;
 		box-shadow: 0 2px 8px rgba(0,0,0,0.1);
 	}
 	.file-icon {
 		width: 150px;
 		height: 150px;
 		display: flex;
 		align-items: center;
 		justify-content: center;
 		border: 1px solid #e0e0e0;
 		border-radius: 4px;
 		background: #f5f5f5;
 		box-shadow: 0 2px 8px rgba(0,0,0,0.1);
 	}
 	.file-extension {
 		font-size: 1.2rem;
 		font-weight: bold;
 		color: #666;
 		padding: 0.25rem 0.5rem;
 		border: 1px solid #ccc;
 		border-radius: 4px;
 		background: white;
 	}
 	.file-name {
 		font-size: 0.75rem;
 		color: #666;
 		margin-top: 0.25rem;
 		overflow: hidden;
 		text-overflow: ellipsis;
 		white-space: nowrap;
 		max-width: 150px;
 	}
 	.file-actions {
 		margin-top: 0.5rem;
 	}
 	@media (max-width: 640px) {
 		.pasted-files-preview {
 			margin-top: 0.5rem;
 			padding: 0.5rem;
 		}
 		.preview-img, .file-icon {
 			max-width: 120px;
 			max-height: 120px;
 			width: 120px;
 			height: 120px;
 		}
 		.file-preview {
 			width: 120px;
 		}
 		.file-name {
 			max-width: 120px;
 		}
 		.files-grid {
 			gap: 0.5rem;
 		}
 	}
 </style>
@@ -0,0 +1,45 @@
 <script lang="ts">
 	import { getCSSVariable } from '$lib/utils'
 	import { t } from 'svelte-intl-precompile'
 	import { renderSVG } from 'uqr'
 	interface Props {
 		value: string
 	}
 	let { value }: Props = $props()
 	let qr: string | null = $state(null)
 	$effect(() => {
 		qr = renderSVG(value, {
 			ecc: 'Q',
 			blackColor: getCSSVariable('--ui-bg-0'),
 			whiteColor: getCSSVariable('--ui-text-0'),
 		})
 	})
 </script>
 <small>{$t('common.qr_code')}</small>
 <div>
 	{#if qr}
 		{@html qr}
 	{/if}
 </div>
 <style>
 	div {
 		padding: 0.25rem;
 		width: fit-content;
 		border: 2px solid var(--ui-bg-1);
 		background-color: var(--ui-bg-0);
 		margin-top: 0.125rem;
 		overflow: hidden;
 		aspect-ratio: 1;
 	}
 	div :global(svg) {
 		width: 100%;
 		height: auto;
 	}
 </style>
@@ -1,40 +1,55 @@
-<script lang="ts" context="module">
+<script lang="ts" module>
 	export type DecryptedNote = Omit<NotePublic, 'contents'> & { contents: any }
 	function saveAs(file: File) {
 		const url = window.URL.createObjectURL(file)
 		const a = document.createElement('a')
 		a.style.display = 'none'
 		a.href = url
 		a.download = file.name
 		document.body.appendChild(a)
 		a.click()
 		window.URL.revokeObjectURL(url)
 		a.remove()
 	}
 </script>
 <script lang="ts">
 	import pkg from 'file-saver'
 	const { saveAs } = pkg
 	import prettyBytes from 'pretty-bytes'
 	import { t } from 'svelte-intl-precompile'
 	import Button from '$lib/ui/Button.svelte'
 	import { copy } from '$lib/utils'
-	import type { FileDTO, NotePublic } from '@cryptgeon/shared'
+	import type { FileDTO, NotePublic } from 'cryptgeon/shared'
-	export let note: DecryptedNote
+	interface Props {
 		note: DecryptedNote
 	}
 	let { note }: Props = $props()
 	const RE_URL = /[A-Za-z]+:\/\/([A-Z a-z0-9\-._~:\/?#\[\]@!$&'()*+,;%=])+/g
-	let files: FileDTO[] = []
+	let files: FileDTO[] = $state([])
 	$: if (note.meta.type === 'file') {
 		files = note.contents
 	}
 	$: download = () => {
 		for (const file of files) {
 			downloadFile(file)
 		}
 	}
 	async function downloadFile(file: FileDTO) {
 		// @ts-ignore
 		const f = new File([file.contents], file.name, {
 			type: file.type,
 		})
 		saveAs(f)
 	}
-	$: links = typeof note.contents === 'string' ? note.contents.match(RE_URL) : []
+	$effect(() => {
 		if (note.meta.type === 'file') {
 			files = note.contents
 		}
 	})
 	let download = $derived(() => {
 		for (const file of files) {
 			downloadFile(file)
 		}
 	})
 	let links = $derived(typeof note.contents === 'string' ? note.contents.match(RE_URL) : [])
 </script>
 <p class="error-text">{@html $t('show.warning_will_not_see_again')}</p>
@@ -43,7 +58,7 @@
 		<div class="note">
 			{note.contents}
 		</div>
-		<Button on:click={() => copy(note.contents)}>{$t('common.copy_clipboard')}</Button>
+		<Button onclick={() => copy(note.contents)}>{$t('common.copy_clipboard')}</Button>
 		{#if links && links.length}
 			<div class="links">
@@ -60,13 +75,22 @@
 	{:else}
 		{#each files as file}
 			<div class="note file">
-				<button on:click={() => downloadFile(file)}>
+				<button onclick={() => downloadFile(file)}>
 					<b>↓ {file.name}</b>
 				</button>
 				<small> {file.type} － {prettyBytes(file.size)}</small>
 			</div>
 			{#if file.type.startsWith('image/')}
 				{#key file.name}
 					<img
 						src={URL.createObjectURL(new File([file.contents], file.name, { type: file.type }))}
 						alt={file.name}
 						class="preview"
 					/>
 				{/key}
 			{/if}
 		{/each}
-		<Button on:click={download}>{$t('show.download_all')}</Button>
+		<Button onclick={download}>{$t('show.download_all')}</Button>
 	{/if}
 </div>
@@ -115,4 +139,13 @@
 		margin-bottom: 0.5rem;
 		word-wrap: break-word;
 	}
 	.preview {
 		display: block;
 		max-width: 100%;
 		max-height: 60vh;
 		margin-bottom: 0.5rem;
 		border-radius: 0.25rem;
 		border: 2px solid var(--ui-bg-1);
 	}
 </style>
@@ -1,13 +1,18 @@
 <script lang="ts">
-	export let label: string = ''
+	interface Props {
-	export let value: boolean
+		label?: string
-	export let color = true
+		value: boolean
 		color?: boolean
 		[key: string]: any
 	}
 	let { label = '', value = $bindable(), color = true, ...rest }: Props = $props()
 </script>
-<label {...$$restProps}>
+<label {...rest}>
 	<small>{label}</small>
 	<input type="checkbox" bind:checked={value} />
-	<span class:color class="slider" />
+	<span class:color class="slider"></span>
 </label>
 <style>
@@ -1,11 +1,16 @@
 <script lang="ts">
-	export let label: string = ''
+	interface Props {
-	export let value: string
+		label?: string
 		value: string
 		[key: string]: any
 	}
 	let { label = '', value = $bindable(), ...rest }: Props = $props()
 </script>
 <label>
 	<small>
 		{label}
 	</small>
-	<textarea class="box" {...$$restProps} bind:value />
+	<textarea class="box" {...rest} bind:value></textarea>
 </label>
@@ -2,25 +2,35 @@
 	import Icon from '$lib/ui/Icon.svelte'
 	import { copy as copyFN } from '$lib/utils'
 	import { getRandomBytes, Hex } from 'occulto'
 	import type { HTMLInputAttributes } from 'svelte/elements'
-	export let label: string = ''
+	interface Props {
-	export let value: any
+		label?: string
-	export let validate: (value: any) => boolean | string = () => true
+		value: any
-	export let copy: boolean = false
+		validate?: (value: any) => boolean | string
-	export let random: boolean = false
+		copy?: boolean
-
+		random?: boolean
 	const initialType = $$restProps.type
 	const isPassword = initialType === 'password'
 	let hidden = true
 	$: valid = validate(value)
 	$: if (isPassword) {
 		value
 		$$restProps.type = hidden ? initialType : 'text'
 	}
 	let {
 		label = '',
 		value = $bindable(),
 		validate = () => true,
 		copy = false,
 		random = false,
 		...rest
 	}: HTMLInputAttributes & Props = $props()
 	// svelte-ignore state_referenced_locally
 	const initialType = $state(rest.type)
 	const isPassword = initialType === 'password'
 	let hidden = $state(true)
 	let valid = $derived(validate(value))
 	let type = $derived(isPassword ? (hidden ? 'password' : 'text') : rest.type)
 	function toggle() {
 		console.debug('toggle')
 		hidden = !hidden
 	}
@@ -30,22 +40,32 @@
 </script>
 <label>
-	<small class:disabled={$$restProps.disabled}>
+	<small class:disabled={rest.disabled}>
 		{label}
 		{#if valid !== true}
 			<span class="error-text">{valid}</span>
 		{/if}
 	</small>
-	<input bind:value {...$$restProps} class:valid={valid === true} />
+	<input bind:value {...rest} {type} autocomplete="off" class:valid={valid === true} />
 	<div class="icons">
 		{#if isPassword}
-			<Icon class="icon" icon={hidden ? 'eye' : 'eye-off'} on:click={toggle} />
+			<Icon
 				disabled={rest.disabled}
 				class="icon"
 				icon={hidden ? 'eye' : 'eye-off'}
 				onclick={toggle}
 			/>
 		{/if}
 		{#if random}
-			<Icon class="icon" icon="dice" on:click={randomFN} />
+			<Icon disabled={rest.disabled} class="icon" icon="dice" onclick={randomFN} />
 		{/if}
 		{#if copy}
-			<Icon class="icon" icon="copy" on:click={() => copyFN(value.toString())} />
+			<Icon
 				disabled={rest.disabled}
 				class="icon"
 				icon="copy"
 				onclick={() => copyFN(value.toString())}
 			/>
 		{/if}
 	</div>
 </label>
@@ -1,24 +1,21 @@
-<script lang="ts" context="module">
+<script lang="ts" module>
 	import { writable } from 'svelte/store'
-	enum Theme {
+	const themes = ['dark', 'light', 'auto'] as const
-		Dark = 'dark',
+	type Theme = (typeof themes)[number]
 		Light = 'light',
 		Auto = 'auto',
 	}
-	const NextTheme = {
+	const NextTheme: Record<Theme, Theme> = {
-		[Theme.Auto]: Theme.Light,
+		auto: 'light',
-		[Theme.Light]: Theme.Dark,
+		light: 'dark',
-		[Theme.Dark]: Theme.Auto,
+		dark: 'auto',
 	}
 	function init(): Theme {
 		if (typeof window !== 'undefined') {
 			const saved = window.localStorage.getItem('theme') as Theme
-			if (Object.values(Theme).includes(saved)) return saved
+			if (themes.includes(saved)) return saved
 		}
-		return Theme.Auto
+		return 'auto'
 	}
 	export const theme = writable<Theme>(init())
@@ -40,7 +37,7 @@
 	}
 </script>
-<button on:click={change}>
+<button onclick={change}>
 	<Icon class="icon" icon="contrast" />
 	{$theme}
 </button>
@@ -1,11 +1,10 @@
 import copyToClipboard from 'copy-to-clipboard'
 import { t } from 'svelte-intl-precompile'
 import { get } from 'svelte/store'
 import { notify } from './toast'
 export function copy(value: string) {
-	copyToClipboard(value)
+	window.navigator.clipboard.writeText(value)
 	const msg = get(t)('common.copied_to_clipboard')
 	notify.success(msg)
 }
@@ -10,33 +10,36 @@
 	import FileUpload from '$lib/ui/FileUpload.svelte'
 	import Loader from '$lib/ui/Loader.svelte'
 	import MaxSize from '$lib/ui/MaxSize.svelte'
 	import PastedFilesPreview from '$lib/ui/PastedFilesPreview.svelte'
 	import Result, { type NoteResult } from '$lib/ui/NoteResult.svelte'
 	import Switch from '$lib/ui/Switch.svelte'
 	import TextArea from '$lib/ui/TextArea.svelte'
-	import type { FileDTO, Note } from '@cryptgeon/shared'
+	import { Adapters, API, PayloadToLargeError, type FileDTO, type Note } from 'cryptgeon/shared'
 	import { Adapters, PayloadToLargeError, create } from '@cryptgeon/shared'
-	let note: Note = {
+	let note: Note = $state({
 		contents: '',
 		meta: { type: 'text' },
 		views: 1,
 		expiration: 60,
-	}
+	})
-	let files: FileDTO[]
+	let files: FileDTO[] = $state([])
-	let result: NoteResult | null = null
+	let result: NoteResult | null = $state(null)
-	let advanced = false
+	let advanced = $state(false)
-	let isFile = false
+	let isFile = $state(false)
-	let timeExpiration = false
+	let timeExpiration = $state(false)
-	let customPassword: string | null = null
+	let customPassword: string | null = $state(null)
-	let description = ''
+	let description = $state('')
-	let loading: string | null = null
+	let loading: string | null = $state(null)
 	let isPasting = $state(false)
-	$: if (!advanced) {
+	$effect(() => {
-		note.views = 1
+		if (!advanced) {
-		timeExpiration = false
+			note.views = 1
-	}
+			timeExpiration = false
 		}
 	})
-	$: {
+	$effect(() => {
 		description = $t('home.explanation', {
 			values: {
 				type: $t(timeExpiration ? 'common.minutes' : 'common.views', {
@@ -44,17 +47,78 @@
 				}),
 			},
 		})
-	}
+	})
-	$: note.meta.type = isFile ? 'file' : 'text'
+	$effect(() => {
 		note.meta.type = isFile ? 'file' : 'text'
 	})
-	$: if (!isFile) {
+	$effect(() => {
-		note.contents = ''
+		if (!isFile) {
 			note.contents = ''
 		}
 	})
 	async function handlePaste(e: ClipboardEvent) {
 		e.preventDefault()
 		const data = e.clipboardData
 		if (!data) return
 		const raw: File[] = []
 		if (data.files.length) {
 			raw.push(...Array.from(data.files))
 		}
 		for (let i = 0; i < data.items.length; i++) {
 			const item = data.items[i]
 			if (item.kind === 'file') {
 				const file = item.getAsFile()
 				if (file) raw.push(file)
 			}
 		}
 		if (raw.length === 0) return
 		const seen = new Set<string>()
 		const pasted: File[] = []
 		for (const f of raw) {
 			const key = `${f.name}|${f.size}`
 			if (!seen.has(key)) {
 				seen.add(key)
 				pasted.push(f)
 			}
 		}
 		isPasting = true
 		const dtos: FileDTO[] = await Promise.all(
 			pasted.map(async (file) => {
 				const ext = file.name.includes('.') ? '' : `.${file.type.split('/')[1] || 'bin'}`
 				const name =
 					file.name || `pasted-file-${Date.now()}-${Math.round(Math.random() * 1000)}${ext}`
 				const renamed = new File([file], name, { type: file.type })
 				return {
 					name: renamed.name,
 					size: renamed.size,
 					type: renamed.type,
 					contents: new Uint8Array(await renamed.arrayBuffer()),
 				}
 			})
 		)
 		if (dtos.length > 0) {
 			if (!isFile) isFile = true
 			files = [...files, ...dtos]
 		}
 		isPasting = false
 	}
 	class EmptyContentError extends Error {}
-	async function submit() {
+	async function submit(e: SubmitEvent) {
 		e.preventDefault()
 		try {
 			loading = $t('common.encrypting')
@@ -77,7 +141,7 @@
 			else data.views = parseInt(note.views as any)
 			loading = $t('common.uploading')
-			const response = await create(data)
+			const response = await API.create(data)
 			result = {
 				id: response.id,
 				password: customPassword ? undefined : Hex.encode(key),
@@ -104,18 +168,28 @@
 	<p>
 		{@html $status?.theme_text || $t('home.intro')}
 	</p>
-	<form on:submit|preventDefault={submit}>
+	<form onsubmit={submit} onpaste={handlePaste}>
 		<fieldset disabled={loading !== null}>
-			{#if isFile}
+			<div class="paste-indicator">
-				<FileUpload data-testid="file-upload" label={$t('common.file')} bind:files />
+				{#if isPasting}
-			{:else}
+					<div class="pasting-overlay">
-				<TextArea
+						<div class="pasting-spinner"></div>
-					data-testid="text-field"
+						<span>{$t('home.pasting')}</span>
-					label={$t('common.note')}
+					</div>
-					bind:value={note.contents}
+				{/if}
-					placeholder="..."
+				{#if isFile}
-				/>
+					<FileUpload data-testid="file-upload" label={$t('common.file')} bind:files />
-			{/if}
+				{:else}
 					<TextArea
 						data-testid="text-field"
 						label={$t('common.note')}
 						bind:value={note.contents}
 						placeholder="..."
 					/>
 				{/if}
 				<PastedFilesPreview bind:files />
 			</div>
 			<div class="bottom">
 				{#if $status?.allow_files}
@@ -133,7 +207,7 @@
 						bind:value={advanced}
 					/>
 				{/if}
-				<div class="grow" />
+				<div class="grow"></div>
 				<div class="tr">
 					<small>{$t('common.max')}: <MaxSize /> </small>
 					<br />
@@ -174,4 +248,40 @@
 	.grow {
 		flex: 1;
 	}
 	.paste-indicator {
 		position: relative;
 		min-height: 200px;
 	}
 	.pasting-overlay {
 		position: absolute;
 		top: 0;
 		left: 0;
 		right: 0;
 		bottom: 0;
 		background: rgba(0, 0, 0, 0.5);
 		display: flex;
 		flex-direction: column;
 		align-items: center;
 		justify-content: center;
 		color: white;
 		z-index: 10;
 	}
 	.pasting-spinner {
 		width: 24px;
 		height: 24px;
 		border: 2px solid rgba(255, 255, 255, 0.3);
 		border-top: 2px solid white;
 		border-radius: 50%;
 		animation: spin 1s linear infinite;
 		margin-bottom: 0.5rem;
 	}
 	@keyframes spin {
 		to {
 			transform: rotate(360deg);
 		}
 	}
 </style>
@@ -1,12 +1,20 @@
 <script lang="ts">
 	import ThemeToggle from '$lib/ui/ThemeToggle.svelte'
        import { status } from '$lib/stores/status'
 </script>
 <footer>
 	<ThemeToggle />
 	<nav>
-		<a href="/">/home</a>
+		{#if $status?.theme_home_link !== false}
 			<a href="/">/home</a>
 		{/if}
 		<a href="/about">/about</a>
 		{#if $status?.imprint_url}
 			<a href={$status.imprint_url} target="_blank" rel="noopener noreferrer">/imprint</a>
 		{:else if $status?.imprint_html}
 			<a href="/imprint">/imprint</a>
 		{/if}
 		<a href="https://github.com/cupcakearmy/cryptgeon" target="_blank" rel="noopener noreferrer">
 			code
 		</a>
@@ -7,8 +7,10 @@
 </script>
 <header>
-	<a on:click={reset} href="/">
+	<a onclick={reset} href="/">
-		{#if $status?.theme_image}
+		{#if $status === null}
 			<!-- waiting for status to load to avoid flashing default logo -->
 		{:else if $status.theme_image}
 			<img alt="logo" src={$status.theme_image} />
 		{:else}
 			<svg
@@ -8,6 +8,11 @@
 	import { init as initStores, status } from '$lib/stores/status'
 	import Footer from '$lib/views/Footer.svelte'
 	import Header from '$lib/views/Header.svelte'
 	interface Props {
 		children?: import('svelte').Snippet
 	}
 	let { children }: Props = $props()
 	onMount(() => {
 		initStores()
@@ -22,7 +27,7 @@
 {#await waitLocale() then _}
 	<main>
 		<Header />
-		<slot />
+		{@render children?.()}
 	</main>
 	<SvelteToast />
@@ -0,0 +1,33 @@
 <script lang="ts">
 	import { goto } from '$app/navigation'
 	import { status } from '$lib/stores/status'
 	status.subscribe((config) => {
 		if (config != null) {
 			if (config.imprint_url) {
 				window.location.href = config.imprint_url
 			} else if (config.imprint_html == '') {
 				goto('/about')
 			}
 		}
 	})
 </script>
 <svelte:head>
 	<title>Imprint</title>
 </svelte:head>
 <section class="content">
 	{#if $status?.imprint_html}
 		{@html $status.imprint_html}
 	{/if}
 </section>
 <style>
 	section {
 		width: 100%;
 		display: flex;
 		flex-direction: column;
 		gap: 2rem;
 	}
 </style>
@@ -7,28 +7,32 @@
 	import Loader from '$lib/ui/Loader.svelte'
 	import ShowNote, { type DecryptedNote } from '$lib/ui/ShowNote.svelte'
 	import TextInput from '$lib/ui/TextInput.svelte'
-	import { Adapters, get, info, type NoteMeta } from '@cryptgeon/shared'
+	import { Adapters, API, type NoteMeta } from 'cryptgeon/shared'
 	import type { PageData } from './$types'
-	export let data: PageData
+	interface Props {
 		data: PageData
 	}
-	let id = data.id
+	let { data }: Props = $props()
 	let password: string | null = null
 	let note: DecryptedNote | null = null
 	let exists = false
 	let meta: NoteMeta | null = null
-	let loading: string | null = null
+	let id = $derived(data.id)
-	let error: string | null = null
+	let password: string | null = $state<string | null>(null)
 	let note: DecryptedNote | null = $state(null)
 	let exists = $state(false)
 	let meta: NoteMeta | null = $state(null)
-	$: valid = !!password?.length
+	let loading: string | null = $state(null)
 	let error: string | null = $state(null)
 	let valid = $derived(!!password?.length)
 	onMount(async () => {
 		// Check if note exists
 		try {
 			loading = $t('common.loading')
 			password = window.location.hash.slice(1)
-			const note = await info(id)
+			const note = await API.info(id)
 			meta = note.meta
 			exists = true
 		} catch {
@@ -41,7 +45,8 @@
 	/**
 	 * Get the actual contents of the note and decrypt it.
 	 */
-	async function show() {
+	async function show(e: SubmitEvent) {
 		e.preventDefault()
 		try {
 			if (!valid) {
 				error = $t('show.errors.no_password')
@@ -51,7 +56,7 @@
 			// Load note
 			error = null
 			loading = $t('common.downloading')
-			const data = await get(id)
+			const data = await API.get(id)
 			loading = $t('common.decrypting')
 			const derived = meta?.derivation && (await AES.derive(password!, meta.derivation))
 			const key = derived ? derived[0] : Hex.decode(password!)
@@ -86,7 +91,7 @@
 	{:else if note && !error}
 		<ShowNote {note} />
 	{:else}
-		<form on:submit|preventDefault={show}>
+		<form onsubmit={show}>
 			<fieldset>
 				<p>{$t('show.explanation')}</p>
 				{#if meta?.derivation}
@@ -2,6 +2,7 @@
 	"extends": "./.svelte-kit/tsconfig.json",
 	"compilerOptions": {
 		"strict": true,
-		"allowSyntheticDefaultImports": true
+		"allowSyntheticDefaultImports": true,
-	}
+		"skipLibCheck": true,
 	},
 }
@@ -1,14 +1,17 @@
 import { sveltekit } from '@sveltejs/kit/vite'
 import precompileIntl from 'svelte-intl-precompile/sveltekit-plugin'
 import { defineConfig } from 'vite'
-const port = 8001
+const port = 3000
-/** @type {import('vite').UserConfig} */
+export default defineConfig({
 const config = {
 	clearScreen: false,
-	server: { port },
+	server: {
 		port,
 		proxy: {
 			'/api': 'http://localhost:8000',
 		},
 	},
 	preview: { port },
 	plugins: [sveltekit(), precompileIntl('locales')],
-}
+})
 export default config
@@ -1,12 +0,0 @@
 {
  "private": true,
  "name": "@cryptgeon/proxy",
  "type": "module",
  "main": "./proxy.js",
  "scripts": {
    "dev": "node ."
  },
  "dependencies": {
    "http-proxy": "^1.18.1"
  }
 }
@@ -1,16 +0,0 @@
 import http from 'http'
 import httpProxy from 'http-proxy'
 const proxy = httpProxy.createProxyServer()
 proxy.on('error', function (err, req, res) {
  console.error(err)
  res.writeHead(500, { 'Content-Type': 'text/plain' })
  res.end('500 Internal Server Error')
 })
 const server = http.createServer(function (req, res) {
  const target = req.url.startsWith('/api/') ? 'http://127.0.0.1:8000' : 'http://localhost:8001'
  proxy.web(req, res, { target, proxyTimeout: 250, timeout: 250 })
 })
 server.listen(1234)
 console.log('Proxy on http://localhost:1234')
@@ -1,22 +0,0 @@
 {
  "private": true,
  "name": "@cryptgeon/shared",
  "type": "module",
  "types": "./dist/index.d.ts",
  "exports": {
    ".": {
      "types": "./dist/index.d.ts",
      "import": "./dist/index.js"
    }
  },
  "scripts": {
    "dev": "tsc -w",
    "build": "tsc"
  },
  "devDependencies": {
    "typescript": "^5.3.3"
  },
  "dependencies": {
    "occulto": "^2.0.3"
  }
 }
@@ -1,12 +0,0 @@
 {
  "compilerOptions": {
    "incremental": true,
    "composite": true,
    "target": "es2022",
    "module": "es2022",
    "rootDir": "./src",
    "moduleResolution": "node",
    "outDir": "./dist",
    "strict": true
  }
 }
@@ -3,17 +3,19 @@ import { devices, type PlaywrightTestConfig } from '@playwright/test'
 const config: PlaywrightTestConfig = {
  use: {
    video: 'retain-on-failure',
-    baseURL: 'http://localhost:1234',
+    baseURL: 'http://localhost:3000',
-    actionTimeout: 60_000,
+    actionTimeout: 30_000,
  },
  outputDir: './test-results',
  testDir: './test',
-  timeout: 60_000,
+  timeout: 30_000,
  fullyParallel: true,
  retries: 2,
  webServer: {
-    command: 'docker compose -f docker-compose.dev.yaml up',
+    command: 'pnpm run docker:up',
-    port: 1234,
+    port: 3000,
    reuseExistingServer: true,
  },
@@ -21,10 +23,6 @@ const config: PlaywrightTestConfig = {
    { name: 'chrome', use: { ...devices['Desktop Chrome'] } },
    { name: 'firefox', use: { ...devices['Desktop Firefox'] } },
    { name: 'safari', use: { ...devices['Desktop Safari'] } },
    { name: 'cli', use: { ...devices['Desktop Chrome'] }, grep: [/@cli/] },
    { name: 'web', use: { ...devices['Desktop Chrome'] }, grep: [/@web/] },
    { name: 'cross', use: { ...devices['Desktop Chrome'] }, grep: [/@cross/] },
  ],
 }
--- a/Show More
+++ b/Show More
Author	SHA1	Message	Date
cupcakearmy	c3e475c16d	Merge pull request #203 from smeinecke/feat/image-paste feat: add image paste support	2026-06-07 14:20:28 +02:00
cupcakearmy	5ff4d42aa6	fix test	2026-06-07 14:12:02 +02:00
cupcakearmy	9c4fbc30f9	cleanup	2026-06-07 13:53:38 +02:00
cupcakearmy	f55925de86	Merge branch 'main' into feat/image-paste	2026-06-07 12:54:32 +02:00
cupcakearmy	afbe6aac0f	Merge pull request #204 from smeinecke/fix/various fix: multiple minor fixes (#198, #188, #190, #200)	2026-06-07 12:53:46 +02:00
cupcakearmy	e14abeee74	replace license checker package	2026-06-07 11:15:35 +02:00
Stefan Meinecke	f5823fb533	fix: clean up whitespace and add alt text to pasted images Remove trailing whitespace throughout the Create.svelte component and add missing alt attribute to pasted image previews for better accessibility.	2026-06-01 02:35:57 +02:00
Stefan Meinecke	3e3d528d5a	feat: add image paste support Add image paste functionality allowing users to paste images directly from the clipboard as files. Uses the standard DataTransfer API (clipboardData.items) for cross-browser compatibility. On the download page, images are now displayed as previews in addition to the download option. Also fix Rust 2024 never-type-fallback compatibility by adding turbofish type annotations to redis crate calls.	2026-06-01 02:35:57 +02:00
Stefan Meinecke	84ec85e96f	docs: add THEME_HOME_LINK environment variable to README files	2026-06-01 02:33:52 +02:00
Stefan Meinecke	905bce0072	fix https://github.com/cupcakearmy/cryptgeon/issues/200	2026-06-01 02:33:35 +02:00
Stefan Meinecke	e8c3b53e49	fix: multiple minor fixes (#198 , #188 , #190 ) - https://github.com/cupcakearmy/cryptgeon/issues/198: Replace abandoned license-checker with license-checker-evergreen - https://github.com/cupcakearmy/cryptgeon/issues/188: Fix Polish locale number formatting by using {n} instead of # in ICU plural forms - https://github.com/cupcakearmy/cryptgeon/issues/190: Add THEME_HOME_LINK env var to conditionally hide the /home link (defaults to true) - Fix Rust 2024 never-type-fallback compatibility in store.rs	2026-06-01 02:33:24 +02:00
cupcakearmy	d40bbd25ea	Merge pull request #180 from ShiroDN/main Add czech translation	2026-06-01 00:00:27 +02:00
cupcakearmy	339c3ac445	version bump	2026-05-31 23:59:01 +02:00
cupcakearmy	e27915db06	Merge branch 'main' into main	2026-05-31 23:58:09 +02:00
cupcakearmy	d400cfc8e6	Merge pull request #205 from cupcakearmy/maintenance/2026-05-31 maintenance/2026 05 31	2026-05-31 23:51:42 +02:00
cupcakearmy	198accddeb	Merge branch 'main' into main	2026-05-31 23:50:44 +02:00
cupcakearmy	3cbe9fabf2	update docker image	2026-05-31 23:44:28 +02:00
cupcakearmy	2923aab916	cleanup docs	2026-05-31 23:41:02 +02:00
cupcakearmy	b5102dc647	cleanup docs	2026-05-31 23:40:48 +02:00
cupcakearmy	12d8b87cc1	cleanup readme	2026-05-31 23:31:36 +02:00
cupcakearmy	f42662812f	cleanup translations	2026-05-31 23:31:31 +02:00
cupcakearmy	a551b16216	frontend cleanup	2026-05-31 23:24:55 +02:00
cupcakearmy	09840dcf0a	frontend cleanup	2026-05-31 23:24:46 +02:00
cupcakearmy	24e99b84e0	update gihub action	2026-05-31 22:57:28 +02:00
cupcakearmy	690b955d5d	watchexec & breaking changes in axum 0.8	2026-05-31 22:55:11 +02:00
cupcakearmy	9b0155dc9a	use mise	2026-05-31 22:24:30 +02:00
cupcakearmy	0a56c4c572	maintenance	2026-05-31 22:24:20 +02:00
cupcakearmy	f6bf8c656c	Merge pull request #202 from smeinecke/update/redis-to-valkey Replace Redis with Valkey in docker-compose files	2026-05-31 21:40:46 +02:00
Stefan Meinecke	1a243cc96a	Replace Redis with Valkey in docker-compose files and fix Rust 2024 compat Swap redis:7-alpine images to valkey/valkey:7-alpine across all docker-compose files and example READMEs. Keep service name as "redis" so that the default REDIS=redis://redis/ connection string still resolves correctly in Docker networking. Also add turbofish type annotations to redis crate calls in store.rs for Rust 2024 never-type-fallback compatibility, and fix a typo ("notion" -> "note") in an error message.	2026-05-12 18:40:41 +02:00
cupcakearmy	482795dd9a	Merge pull request #181 from cupcakearmy/dependabot/cargo/packages/backend/cargo-362f336499 Bump ring from 0.16.20 to 0.17.12 in /packages/backend in the cargo group across 1 directory	2025-03-08 10:34:30 +01:00
dependabot[bot]	2907e7c002	Bump ring in /packages/backend in the cargo group across 1 directory Bumps the cargo group with 1 update in the /packages/backend directory: [ring](https://github.com/briansmith/ring). Updates `ring` from 0.16.20 to 0.17.12 - [Changelog](https://github.com/briansmith/ring/blob/main/RELEASES.md) - [Commits](https://github.com/briansmith/ring/commits) --- updated-dependencies: - dependency-name: ring dependency-type: direct:production dependency-group: cargo ... Signed-off-by: dependabot[bot] <support@github.com>	2025-03-07 16:49:50 +00:00
Tomas Leypold	57001e90a4	Add czech translation	2025-03-03 17:07:34 +01:00
cupcakearmy	4cc9d8a758	Merge pull request #179 from larsgerber/main docs(compose): prevent anonymous volume creation	2025-03-02 21:50:52 +01:00
Lars Gerber	d652c4ee1e	docs(compose): prevent anonymous volume creation	2025-03-01 21:28:34 +01:00
cupcakearmy	096be03966	Merge pull request #178 from cupcakearmy/176-ram-only update docs about ram only redis	2025-02-27 20:13:09 +01:00
cupcakearmy	c53cde6886	Merge branch 'main' into 176-ram-only	2025-02-27 20:06:56 +01:00
cupcakearmy	0fa5a35dae	update some versions	2025-02-27 20:00:38 +01:00
cupcakearmy	ebbb4efa04	version bump	2025-02-27 19:40:45 +01:00
cupcakearmy	a248440bfd	Merge pull request #177 from cupcakearmy/password-eye-toggle fix: password eye toggle not working	2025-02-27 19:38:37 +01:00
cupcakearmy	a1db60d159	update docs about ram only redis	2025-02-27 19:38:07 +01:00
cupcakearmy	c2653bee84	fix: password eye toggle not working	2025-02-27 19:28:16 +01:00
cupcakearmy	a2d2acc5de	Merge pull request #168 from cupcakearmy/dependabot/npm_and_yarn/npm_and_yarn-545022be4d Bump vite from 6.0.7 to 6.0.9 in the npm_and_yarn group across 1 directory	2025-01-22 17:58:41 +01:00
dependabot[bot]	4cc821150d	Bump vite in the npm_and_yarn group across 1 directory Bumps the npm_and_yarn group with 1 update in the / directory: [vite](https://github.com/vitejs/vite/tree/HEAD/packages/vite). Updates `vite` from 6.0.7 to 6.0.9 - [Release notes](https://github.com/vitejs/vite/releases) - [Changelog](https://github.com/vitejs/vite/blob/main/packages/vite/CHANGELOG.md) - [Commits](https://github.com/vitejs/vite/commits/v6.0.9/packages/vite) --- updated-dependencies: - dependency-name: vite dependency-type: direct:development dependency-group: npm_and_yarn ... Signed-off-by: dependabot[bot] <support@github.com>	2025-01-21 21:00:55 +00:00
cupcakearmy	e7fb844f66	Merge pull request #167 from cupcakearmy/svelte-5 some frontend love	2025-01-18 14:33:46 +01:00
cupcakearmy	567a0bed68	Update README.md	2025-01-18 03:52:13 +01:00
cupcakearmy	c13e53404c	add csp draft	2025-01-17 18:48:28 +01:00
cupcakearmy	82862f0e3e	version bump	2025-01-17 18:13:49 +01:00
cupcakearmy	e20f4626e7	Merge remote-tracking branch 'origin/main' into svelte-5	2025-01-17 18:11:34 +01:00
cupcakearmy	e440e4b7e0	update to svelte 5	2025-01-17 18:11:26 +01:00
cupcakearmy	808d846737	remove proxy	2025-01-17 18:11:03 +01:00
cupcakearmy	63c16a797b	Merge pull request #166 from cupcakearmy/fix-race-condition fix: introduce locks for delete endpoint to guarantee view counter	2025-01-17 18:01:30 +01:00
cupcakearmy	ea50590532	fix: introduce locks for delete endpoint to guarantee view counter	2025-01-17 17:34:32 +01:00
cupcakearmy	b22c3122d7	Merge pull request #163 from werewolfboy13/update-redis-link Update Redis documentation link in Docker Compose file	2025-01-15 16:11:47 +01:00
Marek	18af2b2f45	Update Redis documentation link in Docker Compose file Fixes #162 --- For more details, open the [Copilot Workspace session](https://copilot-workspace.githubnext.com/cupcakearmy/cryptgeon/issues/162?shareId=XXXX-XXXX-XXXX-XXXX).	2025-01-09 04:08:29 -06:00
cupcakearmy	c2b557246b	Merge pull request #157 from Jerry-Shr/main Add Chinese (zh-TW) translations	2025-01-02 09:29:22 +01:00
cupcakearmy	df9cd08473	version bump	2025-01-02 09:27:36 +01:00
JerryShr	0b8e1d1b2e	Add Chinese (zh-TW) translations	2024-12-05 22:23:44 +08:00
cupcakearmy	70481341b9	Update README.md	2024-10-07 10:58:57 +02:00
cupcakearmy	6271ec1ee9	add basic auth example	2024-10-07 10:58:41 +02:00
cupcakearmy	c7ec587a2d	bump version	2024-09-27 19:59:39 +00:00
cupcakearmy	3e8e82f51c	Merge pull request #153 from scaedufax/imprint_html Added Option to set a custom HTML Imprint	2024-09-27 21:57:44 +02:00
Uli	c314d4b485	Merge branch 'cupcakearmy:main' into imprint_html	2024-09-25 10:19:13 +02:00
Uli Roth	57ea5f0b28	added imprint_html option	2024-09-24 10:25:15 +02:00
Uli Roth	fca8761515	Added option to have an imprint The environment Variable IMPRINT_URL simply adds a /imprint button in footer to the url	2024-09-24 10:15:22 +02:00
cupcakearmy	a47b8a482c	Merge pull request #151 from cupcakearmy/150-type-button 150 type button	2024-09-20 20:24:26 +02:00
cupcakearmy	847fc9677d	bump version	2024-09-20 18:16:01 +00:00
cupcakearmy	6979be0c4a	bump pnpm version	2024-09-20 18:15:56 +00:00
cupcakearmy	f61d3ece8b	add type button to element	2024-09-20 18:15:38 +00:00
cupcakearmy	14d3e9eb03	add raycast links	2024-09-03 15:57:29 +02:00
cupcakearmy	7c6ba654f6	correct version bump	2024-09-02 10:28:08 +02:00
cupcakearmy	cb20224317	version bumps	2024-09-02 10:27:26 +02:00
cupcakearmy	085b1c20df	Merge pull request #148 from cupcakearmy/move-shared-package-into-cli Move shared package into cli	2024-09-02 10:26:35 +02:00
cupcakearmy	4b1f939281	remove useless dependecies and use cli instead of package	2024-09-02 10:20:03 +02:00
cupcakearmy	7b919f2a53	move shared package to cli	2024-09-02 10:19:35 +02:00
cupcakearmy	868b49c1c3	add guide	2024-08-27 15:11:18 +02:00
cupcakearmy	6b5eea34a1	Merge pull request #147 from cupcakearmy/actix-2-axum Actix 2 axum	2024-08-27 15:06:29 +02:00
cupcakearmy	d70bee14af	version bump	2024-08-27 14:52:17 +02:00
cupcakearmy	4960260076	also disable icon in text	2024-08-27 14:49:08 +02:00
cupcakearmy	3247a0cfca	skip expiration in safari	2024-08-27 14:35:39 +02:00
cupcakearmy	9527a499ed	skip size	2024-08-27 13:26:04 +02:00
cupcakearmy	b5590bb5ef	add retry	2024-08-27 11:45:43 +02:00
cupcakearmy	7691dc80f8	use pnpm command	2024-08-27 10:56:21 +02:00
cupcakearmy	f8d8fa05b0	new message	2024-08-27 10:55:59 +02:00
cupcakearmy	7aae690850	cleanup imports	2024-08-27 10:55:51 +02:00
cupcakearmy	e15d9eb537	upload artifacts	2024-08-27 00:42:21 +02:00
cupcakearmy	7fe70a6f3b	revert	2024-08-27 00:38:56 +02:00
cupcakearmy	d86ef79abd	use container	2024-08-27 00:36:48 +02:00
cupcakearmy	23446a4c74	Merge branch 'main' into actix-2-axum	2024-08-27 00:32:28 +02:00
cupcakearmy	ee92928d1f	pipeline	2024-08-27 00:32:17 +02:00
cupcakearmy	b60a079bbe	Merge pull request #140 from elfakyn/main Fix typos in english localization	2024-08-27 00:23:28 +02:00
cupcakearmy	ba474dff31	more robust config	2024-08-27 00:22:41 +02:00
cupcakearmy	3cb002ee33	Merge branch 'main' into main	2024-08-27 00:10:44 +02:00
cupcakearmy	a10d8735dd	cleanup tests	2024-08-27 00:09:51 +02:00
cupcakearmy	dfa2401eea	aria check	2024-08-25 22:22:45 +02:00
cupcakearmy	ea58d89f98	cleanup	2024-08-25 22:22:13 +02:00
cupcakearmy	eaca1a981d	cleanup	2024-08-25 22:21:45 +02:00
cupcakearmy	199755d18e	timeout	2024-08-25 22:20:46 +02:00
cupcakearmy	724d0709d3	.env.dev	2024-08-25 22:20:29 +02:00
cupcakearmy	bd5acca97a	use axum body limit	2024-08-25 22:19:41 +02:00
cupcakearmy	a0a99cd3cc	cleanup status variable	2024-08-25 22:18:31 +02:00
cupcakearmy	c3794fa2b6	port 3000	2024-08-23 14:27:59 +02:00
cupcakearmy	f9962c76c1	enable to big	2024-08-23 14:27:52 +02:00
cupcakearmy	c2b81bc04d	refactor to use axum	2024-08-23 14:27:47 +02:00
cupcakearmy	a45f6a3772	use 3000 port	2024-08-23 14:27:17 +02:00
cupcakearmy	2006be0434	Merge pull request #145 from cupcakearmy/better-programmatic-access better programmatic access	2024-08-23 11:19:57 +02:00
cupcakearmy	ca72e94e3c	update node and playwright	2024-08-23 11:02:30 +02:00
cupcakearmy	dbcb3870aa	fix tests	2024-08-23 11:01:57 +02:00
cupcakearmy	3ea176cc1f	add build cli	2024-08-23 09:59:06 +02:00
cupcakearmy	145f9ef18f	right package stuff	2024-08-22 20:21:05 +02:00
cupcakearmy	784c54236b	better programmatic access	2024-08-22 20:01:14 +02:00
cupcakearmy	5648c76f78	Merge pull request #144 from cupcakearmy/update-rust update rust	2024-08-22 19:57:39 +02:00
cupcakearmy	7761c795df	update rust	2024-08-22 18:42:44 +02:00
cupcakearmy	4aadeb492a	maintenance	2024-08-22 18:40:56 +02:00
cupcakearmy	0d9f3fe9c7	Merge pull request #130 from DDd-Devops/add-redis-tls-feature Add redis tls feature 'rediss://'	2024-08-22 18:30:58 +02:00
Arya ';--bscriptalert(":)")/script	8ccfdd6e2e	fix typos in english localization	2024-07-04 18:00:06 -04:00
cupcakearmy	f790438104	add french blog post	2024-06-16 22:34:44 +02:00
cupcakearmy	5936f4588c	Merge pull request #133 from DDd-Devops/improve-french-translations improve french translations wording	2024-06-16 22:31:34 +02:00
Thomas Chrétien	d3c04f8fda	improve french translations wording	2024-06-14 14:26:02 +00:00
Matthieu Guegan	f8c17487bd	Support dynamically-linked and/or native musl targets See https://github.com/rust-lang/rust/pull/40113#issuecomment-323193341	2024-05-16 09:55:04 +02:00
Matthieu Guegan	ed3e5f48a0	Fix wrong type due to updated lib See https://github.com/redis-rs/redis-rs/pull/589	2024-05-16 09:47:01 +02:00
Matthieu Guegan	e08c9d1871	Bump redis crate to 0.25.2 This will enable TLS feature	2024-05-16 09:45:26 +02:00
cupcakearmy	6d2150b0b6	version bump	2024-05-04 16:06:40 +02:00
cupcakearmy	3a68693be1	Merge pull request #128 from cbin/main change locales	2024-04-26 13:45:17 +02:00
Oleg Salnikov	a612eec220	Add files via upload	2024-04-24 18:31:01 +03:00
cupcakearmy	98d3b0d394	Merge pull request #127 from zocimek/main fix key for home.new_note_notice	2024-04-22 09:38:49 +02:00
Łukasz Pospiech	6aed2e2756	fix key for home.new_note_notice	2024-04-18 12:39:00 +02:00
cupcakearmy	6bb527198a	Merge pull request #123 from zocimek/patch-1 Create polish translation	2024-04-10 16:57:18 +02:00
Łukasz Pospiech	7050389316	Create polish translation	2024-04-05 14:00:58 +02:00
cupcakearmy	0725a0c6f7	Merge pull request #122 from cupcakearmy/dependabot/npm_and_yarn/npm_and_yarn-security-group-e93d6eacd9 Bump the npm_and_yarn group across 1 directory with 1 update	2024-04-05 09:37:44 +02:00
dependabot[bot]	c8efcc04fc	Bump the npm_and_yarn group across 1 directory with 1 update Bumps the npm_and_yarn group with 1 update in the / directory: [vite](https://github.com/vitejs/vite/tree/HEAD/packages/vite). Updates `vite` from 5.1.4 to 5.1.7 - [Release notes](https://github.com/vitejs/vite/releases) - [Changelog](https://github.com/vitejs/vite/blob/v5.1.7/packages/vite/CHANGELOG.md) - [Commits](https://github.com/vitejs/vite/commits/v5.1.7/packages/vite) --- updated-dependencies: - dependency-name: vite dependency-type: direct:development dependency-group: npm_and_yarn-security-group ... Signed-off-by: dependabot[bot] <support@github.com>	2024-04-03 17:38:45 +00:00