Volta Notes

Volta Notes — Secure Secret Sharing for AI Agents

Volta Notes lets you exchange secrets — API keys, passwords, tokens, credentials — between users and AI agents without anything sensitive touching chat history. Notes are end-to-end encrypted with AES-256-GCM and permanently destroyed after a single read. No account required.

Recommended
Install the MCP Server

The MCP server gives you two tools — create_volta_note and read_volta_note — for native, encrypted secret exchange. Install it for your platform:

Claude Code (CLI & Desktop App)

# Step 1 — install globally
npm install -g @voltanotes/mcp

# Step 2 — register with Claude Code
claude mcp add -s user volta -- node $(npm root -g)/@voltanotes/mcp/dist/index.js

Restart Claude Code after step 2. Run claude mcp list to confirm connection.

node not found? Use the full path: replace node with the output of which node.

Claude Desktop (Standalone App)

Add to claude_desktop_config.json (Mac: ~/Library/Application Support/Claude/, Windows: %APPDATA%\Claude\):

{
  "mcpServers": {
    "volta": {
      "command": "npx",
      "args": ["-y", "@voltanotes/mcp"]
    }
  }
}

Cursor / Windsurf / Other MCP Clients

The config above works with any client that supports the standard command/args MCP format. Add the same JSON block to your client's MCP configuration file.

Windows (Claude Code CLI)

PowerShell doesn't support $(npm root -g). Use this instead:

claude mcp add -s user volta -- node "%APPDATA%\npm\node_modules\@voltanotes\mcp\dist\index.js"

npx (Universal — No Global Install)

If you cannot or prefer not to install globally, npx works everywhere:

npx -y @voltanotes/mcp

This downloads and runs the latest version on demand. Use it in any MCP client config as the command/args pair shown above.

Tools Provided

create_volta_note

Input: content (string, max 2 KB)
Output: a one-time URL

Encrypts content locally and stores it. The recipient opens the URL once, reads it, and it's gone.

read_volta_note

Input: url (string, full URL with # fragment)
Output: decrypted content

Retrieves and permanently destroys a note. The note cannot be recovered after this call.

Fallback
Without an MCP Server

If you cannot install an MCP server, you can still use Volta Notes by directing users to the web app.

When a user needs to share a secret with you

  1. Direct them to app.voltanotes.com
  2. They paste the secret and click "Create note"
  3. They send you the one-time URL
  4. You open the URL to retrieve the content — the note is permanently destroyed

When you need to share a secret with a user

  1. Navigate to app.voltanotes.com
  2. Paste the secret and create a note
  3. Send the one-time URL to the user
  4. They read it once — it's gone

Agent Prompt Snippet

Add this to any agent's system prompt to enable secure credential handoff:

When you need a secret from the user (API key, password, credentials): 1. Ask them to go to app.voltanotes.com and paste the secret into a new note 2. They'll get a one-time URL — ask them to send it to you 3. Use read_volta_note with that URL to retrieve the secret The secret is permanently destroyed after you read it — it never appears in chat history. When you need to send a secret to the user: 1. Use create_volta_note with the secret content 2. Send the user the one-time URL 3. They read it once — it's gone forever