BurnLink — The Ashtray For Your Secrets

We built something weird: an ashtray for digital secrets. Throw the password in, light it once, and watch it go. No smoke. No evidence. Just a little click and it’s gone.

Why this exists

• People still email passwords, paste keys in Slack, and trust “we’ll delete it later.” That trust is why things get leaked.

• BurnLink flips the script: make sharing fast, then make the trace disappear.

What it does (in plain terms)

• Encrypts in your browser — the server never sees plaintext.

• Produces a single-use link — download once, it’s deleted atomically.

• Detects unfurlers and serves a neutral preview so bots don’t accidentally burn links.

• Optional password + rate limits + Turnstile for extra safety.

• Open source & self-hostable — run it where you actually trust it.

A tiny story (so it lands):
At 2AM my pager screamed. A contractor who should’ve been gone still had prod API keys. I rotated keys, cursed, and by 3AM I’d hacked together something that let me share a secret without leaving a copy. That angry little script became BurnLink.

If you care about minimizing blast radius

• Use BurnLink for one-time credential handoffs, emergency shares, and any file that shouldn’t live in backups.

• Don’t treat it as storage. Treat it as a fuse.

Try it: https://burnlink.page
Fork it: https://github.com/Joy-Majumder/BurnLink

“Share it once. Let it disappear.”