

-
a) We use an open source cryptographic library, OpenPGPjs, which is built by the good folks over at Protonmail, and the library itself is frequently audited. Here's one. And everything you see and use on Cryptee is built on top of this.
-
CodeRabbit
CodeRabbit: AI Code Reviews for Developers. Revolutionize your code reviews with AI. CodeRabbit offers PR summaries, code walkthroughs, 1-click suggestions, and AST-based analysis. Boost productivity and code quality across all major languages with each PR.
-
end-to-end
Discontinued End-To-End is a crypto library to encrypt, decrypt, digital sign, and verify signed messages (implementing OpenPGP)
In contrast, companies like Standard Notes actually uses their own home-built encryption library, which is why it's a bit more critical that they go through these audits more often and quickly than others. And despite the audits, this home-brewed encryption library puts them at a much bigger risk, due to the fact that it's never going to be as thoroughly battle tested as an open industry-standard encryption like OpenPGP, used by much larger companies like Google, Protonmail, etc.
-
b) Our code-base is entirely open source, so anyone can take a look at the code and verify its security. Vs companies like Tresorit for example, they are closed-sourced, and nobody can independently verify their claims, so they are audited frequently by third parties.