Alpha Plugin

nexus-vault-shield

v0.1.0Alpha

Classification-driven encryption for documents and project artifacts based on customer/project confidentiality levels.

Overview

Enforces encryption policies automatically based on the confidentiality level defined on customers or projects. Supports at-rest AES-256, field-level encryption with external KMS providers (AWS KMS, GCP Cloud KMS, HashiCorp Vault), and automatic watermarking on PDF exports. Every decrypt operation is logged to the audit trail.

Key Features

Encryption policy per confidentiality level
AWS KMS / GCP Cloud KMS / HashiCorp Vault
Automatic watermarking on PDF exports
Audit log for every decrypt operation

Registered Hooks

Events this plugin listens to in the OpenCode runtime.

document.upload

Intercepts document uploads and applies encryption based on the project confidentiality level before storage.

document.export

Applies watermarking and access controls to PDF exports based on classification level.

Custom Tools

MCP tools this plugin exposes to agents.

nexus_encrypt_status

Reports encryption status and classification level for a given document or project.

Technical Details

Pricing€1.99/month per tenant. Available on Pro and Enterprise plans.

KMS ProvidersAWS KMS, GCP Cloud KMS, HashiCorp Vault, or built-in AES-256.

Back to plugins

Alpha Plugin

nexus-vault-shield

Overview

Key Features

Registered Hooks

Custom Tools

Technical Details

Platform

Resources

Company

Legal