ShareX API security

Secure ShareX uploads with API keys instead of passwords.

Biohost ShareX uploads use generated API keys so you can connect ShareX without storing your account password, then revoke access if a config is exposed.

Generate API keySetup guide

Why API keys are safer for ShareX

A ShareX uploader needs a way to prove it is allowed to upload. The wrong way is to store your account password in a local app config. The better pattern is a generated API key that only exists for uploader access and can be revoked when needed.

Biohost uses this pattern for ShareX. You generate a config from your settings page, import it into ShareX, and keep your account password out of the uploader file.

Revocable accessDisable the ShareX key without changing your account password.
Generated configBiohost builds the .sxcu file for the selected upload mode.
Scoped workflowThe key is used for uploads instead of general account login.
Abuse visibilityFailed and suspicious API activity can be reviewed from admin tooling.

How to protect your ShareX API key

Your ShareX API key should be treated like an upload password. Anyone with the key may be able to send files through your configured uploader until the key is revoked.

Keep the generated config local, do not paste it into public issue trackers, and revoke the key if you believe it was copied. After revocation, generate a new config and import it into ShareX again.

  • Do not commit .sxcu files to Git repositories.
  • Do not send your full API key in screenshots.
  • Revoke the key before sharing your ShareX configuration for support.
  • Use a strong Biohost account password and keep your email secure.

Account uploads versus temporary uploads

API key security applies to both Biohost ShareX modes. Account mode stores uploaded files under your user account for dashboard management. Temporary mode is better for quick files that should not become long-term account records.

Choose the mode based on file lifecycle, not security alone. The API key protects the upload request; the selected mode controls where the file goes after upload.

Frequently asked questions about ShareX API key upload

Does ShareX need my Biohost password?

No. Biohost generates a ShareX API key and custom uploader config so ShareX does not need your account password.

What should I do if my ShareX key leaks?

Revoke the current ShareX API key from the Biohost ShareX settings page and generate a new config.

Are API key uploads rate limited?

Biohost can apply upload limits and record failed or suspicious API activity to help protect the service from abuse.

Start with a simple Biohost upload

Open the Biohost upload page, choose your file, add an optional password, complete verification, and copy the generated link. For repeated uploads, create an account so you can manage files from your dashboard.