Scan uploaded files in Strapi for malware, exposed secrets, and risks before they reach production.
released July 11, 2026
npm install strapi-plugin-cypherscanProtect Strapi uploads before they reach production.
CypherScan securely scans every uploaded file using a presigned upload workflow and can automatically block suspicious or malicious files before they become available inside Strapi.
Install the plugin:
npm install strapi-plugin-cypherscanRestart your Strapi application after installation.
Configure your environment variables:
CYPHERSCAN_API_KEY=cs_xxxxxxxxxxxxxxxxx
CYPHERSCAN_BASE_URL=https://cyphernetsecurity.comRestart Strapi after updating your environment.
When a file is uploaded:
User Upload
│
▼
Strapi Upload Hook
│
▼
Request Presigned Upload URL
│
▼
Temporary Secure Upload
│
▼
CypherScan Scan
│
▼
Verdict
│
├── Clean ─────► Upload allowed
│
└── Blocked ───► Upload removedUpload detected
│
▼
Presigned Upload
│
▼
CypherScan Scan
│
▼
Verdict: Clean
│
▼
File available inside StrapiCypherScan supports two operating modes.
Uploads continue if the scanning service is temporarily unavailable.
Recommended for development environments.
Uploads are rejected when the scan cannot be completed.
Recommended for production environments requiring strict upload enforcement.
When debug mode is enabled, the plugin logs:
Validated with:
failOpen=true)failOpen=false)MIT License
Copyright (c) 2026 CypherNet Security Inc.
See the LICENSE file for details.
Built by CypherNet Security Inc.
Share your work with the community and get it listed in the Strapi ecosystem for everyone to discover and use.
Submit
