Take a markdown file. Turn it into a shareable link that nobody — not even us — can read without your permission. That's it. That's the whole product.
Every existing tool fails at something. Pick your poison.
Strips your formatting. Mangles code blocks. Buries it in scrollback within an hour.
Public by default. Stripped down. No expiration, no access control, no analytics.
Heavy. Requires accounts. Permissions are a project. Overkill for a one-shot share.
Renders inconsistently. No expiration. Sits in inboxes forever. It's email.
As fast as scp, as nice as a docs site, and we can't read a word of it.
Here's the revised auth flow after yesterday's review. The big change: we're moving session-token hashing into the database trigger…
// we, the operators, see ciphertext
Four steps, no hand-waving.
Before your markdown leaves your machine, we encrypt it with AES-256-GCM using a fresh key generated just for that document.
It rides along in the URL fragment — the part after the #. Browsers are required to keep that client-side. We literally never see it.
Title, content, category, project — all encrypted before upload. Our database holds an opaque blob and a few operational fields (expiration, view count, lock type).
When they open the link, their browser pulls the ciphertext, lifts the key from the URL fragment, and renders the markdown locally. We never see plaintext — on either end.
If our database ever leaked, attackers would walk away with encrypted blobs and hashes. No documents, no passwords, no keys. See exactly what we store →
You live in tmux. You hate context-switching to a browser to share a file. You want one command, one link, and zero ceremony.
Your agent generates specs, debug reports, and ramblings all day. With mdpush ai-skills it can publish them as easily as it writes them.
You got a link. You shouldn't need an account, an app, or a password manager to read a markdown file. Just open it and go.
We will never roll out a feature that requires us to read your content. Server-side search, AI summaries, content-based recommendations — none of it.
Every doc has a lock. Even the lightest one. We won't give bots and scrapers free rein over your shares.
50 docs/month, all features, no credit card. Paid tiers will come for teams who want shared workspaces — never to gate the core experience.
The CLI is the part that touches your plaintext. It belongs in the open, where you can audit it, fork it, and verify the encryption is real.