nsnip = nostr snippet — a full nostr identity (BIP39 seed → NIP-06 keys) bundled with an LNbits wallet, NWC pairing, and @coincreek.com Lightning Address. Deterministic key derivation, AES-256-GCM encrypted at rest, PIN-locked claim page. Print it. Hand it out. Onboard plebs at meetups, conferences, hackathons, clubs, workshops & community events.
Each snippet ships a complete nostr + lightning stack. Zero setup for the end user.
12-word BIP39 seed → NIP-06 derivation path. nsec + npub ready to import.
LNbits wallet + NWC pairing URL + @coincreek.com Lightning Address. Zap-ready out of the box.
Thermal-printed fold labels with QR codes. Fits any 57mm receipt printer. Batch-generate up to 100.
PIN-locked endpoint serves encrypted secrets. Brute-force protected. Claim once, nuke from server.
Secrets encrypted at rest with authenticated encryption. Server stores ciphertext only — no plaintext nsec, ever.
HMAC-SHA256 derived PIN gates decryption. Rate-limited to 5 attempts / 15 min per token + IP.
600k iterations stretch the PIN into an AES key. Makes offline brute-force computationally expensive.
Nuke your encrypted blob from the server after claiming. Only the public profile (kind:0) stays on relays.
claimed_at is set on first unlock. Detects if someone got to your snippet before you.
Full source on GitHub. Read the code, don't trust the landing page.