Command: ennote share
The share command group allows you to create and read Zero-Knowledge encrypted secret links. It is designed for securely sharing sensitive data across untrusted channels.
Overview
link
View the available commands within the share group:
bash
ennote share
Available Commands:
create Create a self-destructing, encrypted share link
get Decrypt and read a secure share link, optionally injecting it into a processInfo
Security by Design: Zero-Knowledge Architecture
When a share link is generated, the decryption key is embedded in the URL fragment (the
#key_salt portion). Modern HTTP clients and browsers never send the fragment to the server. This guarantees that Ennote acts purely as a blind storage provider and mathematically cannot decrypt your payload. Creating a Share (ennote share create)
link
Generate a self-destructing, encrypted link. You can pass the secret as an argument, or pipe it directly from standard input (stdin) to prevent leaving traces in your shell history.
bash
ennote share create [secret-text] [flags]Examples
bash
# Pass as an argument
ennote share create "my-super-secret"
# Pipe securely from another command
echo "secret-from-pipe" | ennote share create
# Read from a file, set a 7-day TTL, and require a password
cat config.json | ennote share create --ttl 7d --password "1234"Creation Flags
- --password, -p:Optional password to further protect the share with an additional layer of encryption.
- --ttl:Time-to-live for the secret (e.g., 30s, 15m, 1h, 7d, 2w). Defaults to 1h. Maximum allowed is 30d.
Reading & Injecting (ennote share get)
link
Decrypt and read a secure share link. Just like the standard secret commands, you can inject shared payloads directly into child processes.
bash
ennote share get <url> [-- <command>] [flags]Examples
bash
# Read full payload to standard output
ennote share get "https://app.ennote.io/onetime/1234#key_salt"
# Extract a specific JSON field from a shared payload
ennote share get "https://app.ennote.io/onetime/1234#key_salt" --key "password"
# Inject only a specific key into a child process
ennote share get "https://app.ennote.io/onetime/1234#key_salt" -k "api_key" -- ./deploy.shReading Flags
- --key, -k:Extract a specific key from a JSON payload. Useful for pulling out just a password or token.
- --password, -p:Password required to unlock the share (if it was configured during creation).
Need Help?
link
If you encounter any issues or have questions, don’t hesitate to contact support. Our team is here to assist you with any challenges you might face.
© 2026 Ennote.io. All Rights Reserved.