Big News: Socket raises $60M Series C at a $1B valuation to secure software supply chains for AI-driven development.Announcement
Sign In

keyquill-relay

Package Overview
Dependencies
Maintainers
1
Versions
17
Alerts
File Explorer

Advanced tools

License
Socket logo

Install Socket

Detect and block malicious and high-risk dependencies

Install

keyquill-relay

Zero-knowledge E2E encrypted WebSocket relay for pairing a browser with a mobile LLM wallet. Ships a browser client, a Cloudflare Durable Object, and a Hono route factory.

latest
Source
npmnpm
Version
3.6.0
Version published
Weekly downloads
32
190.91%
Maintainers
1
Weekly downloads
 
Created
Source

keyquill-relay

Zero-knowledge E2E-encrypted WebSocket relay for pairing a PC browser with a mobile LLM wallet.

Note: payload shape tracks keyquill-mobile, not the extension broker

RelayInnerRequest currently carries { provider, messages, systemPrompt, maxTokens } — the same wire shape the keyquill-mobile plugin accepts, not the capability-first shape used by keyquill@3.x and keyquill-extension@1.0+. That's intentional for now: relay is a pure transport whose payload is defined by the mobile endpoint it talks to. When mobile migrates to the broker architecture (see the note in the mobile README), this relay's RelayInnerRequest and RelayInnerResponse will follow. Until then, relay operates as-is.

When the mobile app holds the LLM API keys (via keyquill-mobile) and the user wants to use those keys from a PC browser, keyquill-relay provides a secure bridge:

 PC browser                Relay server              Phone
┌───────────┐              ┌──────────┐             ┌──────────────┐
│           │  QR pairing  │          │             │              │
│  client   │─────────────>│   DO     │<───────────>│  native app  │
│ (browser) │              │(ciphertext│  WebSocket │ (Keychain/KS)│
│           │◄─────────────│  only)   │             │              │
└───────────┘   WebSocket  └──────────┘             └──────────────┘
     │                                                      │
     └────────── ECDH P-256 + HKDF + AES-GCM ────────────────┘
                 (server never sees plaintext)

The relay server sees only ciphertext. Pairing token → single-use, 5-minute expiry.

Install

pnpm add keyquill-relay
# or, if you're using it in a Cloudflare Worker:
pnpm add keyquill-relay hono

Package layout

EntryUse
keyquill-relay/clientBrowser-side: PhoneRelayClient and QR helpers
keyquill-relay/serverServer-side: RelaySessionDO (Cloudflare Durable Object) + createRelayRoutes (Hono factory)
keyquill-relay (root)Wire protocol types only (no runtime code)

Server usage (Cloudflare Workers + Hono)

import { Hono } from "hono";
import { createRelayRoutes } from "keyquill-relay/server";
export { RelaySessionDO } from "keyquill-relay/server";

type Env = {
  RELAY_SESSIONS: DurableObjectNamespace;
  ALLOWED_ORIGINS?: string;
};

const app = new Hono<{ Bindings: Env }>();

app.route(
  "/relay",
  createRelayRoutes<Env>({
    getDurableObject: (env) => env.RELAY_SESSIONS,
    allowedWsOrigins: (env) => [
      "https://your-app.example.com",
      ...(env.ALLOWED_ORIGINS ?? "").split(",").filter(Boolean),
    ],
  }),
);

export default app;

wrangler.jsonc:

{
  "durable_objects": {
    "bindings": [{ "name": "RELAY_SESSIONS", "class_name": "RelaySessionDO" }]
  },
  "migrations": [{ "tag": "v1", "new_classes": ["RelaySessionDO"] }]
}

Client usage (browser)

import { PhoneRelayClient } from "keyquill-relay/client";

const client = new PhoneRelayClient({
  relayUrl: "wss://your-relay.example.com/relay",
});

// 1. Generate pairing QR
const { pairingToken, qrPayload } = await client.createPairing();
// ... render qrPayload as QR code ...

// 2. After the phone scans and accepts:
await client.waitForPaired(pairingToken);

// 3. Send an AI request (E2E encrypted end to end)
const response = await client.sendRequest({
  provider: "openai",
  messages: [{ role: "user", content: "Hello" }],
});

Protocol

  • Key exchange: ECDH P-256 between browser and phone.
  • Key derivation: HKDF-SHA-256 with a protocol-specific info label (keyquill-relay-v1 by default; override per app if desired).
  • Symmetric: AES-GCM-256, nonce per message.
  • Pairing token: 16 bytes of CSPRNG-backed entropy, single use, 5-minute TTL.
  • Session: 30-minute idle timeout (configurable server-side).

All crypto uses Web Crypto only (no Node-specific APIs) — runs in browsers, Cloudflare Workers, and Deno.

Security properties

  • Relay server sees ciphertext only.
  • Pairing token is single-use and short-lived.
  • Session key is ephemeral — lost when either peer disconnects.
  • Replay protection via AES-GCM nonce + sequence numbering.

License

MIT

Keywords

llm
keyquill
phone-wallet-relay
e2e-encryption
ecdh
websocket

FAQs

Package last updated on 30 Apr 2026

Did you know?

Socket

Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.

Install

Related posts

Mini Shai-Hulud Campaign Hits Red Hat Cloud Services npm Packages

Research

/

Security News

Mini Shai-Hulud Campaign Hits Red Hat Cloud Services npm Packages

A mini Shai-Hulud campaign compromised Red Hat Cloud Services npm packages to steal developer and CI/CD secrets during installation.

By Socket Research Team  -  Jun 01, 2026