Security and trust

Designed for safer file processing.

SNKA Tools keeps file bytes out of SQL, uses random storage names, validates extensions, and hides internal paths from users.

Random filenamesUploads are saved with UUID-based names instead of raw user filenames.

Path safetyDelete and output paths are checked against configured storage roots.

CSRF protectionTraditional forms and upload API requests use session CSRF tokens.

Password hashingPasswords are stored using PBKDF2-SHA256, not plaintext.

Safe shell callsExternal engines use subprocess argument lists and timeouts.

Zip-slip blockingZIP extraction rejects unsafe archive member paths.