Immutable • Auditable • Compliant

Enterprise‑grade document archiving you can trust.

Kestrel delivers content‑addressable storage, cryptographic integrity, audit trails, and retention controls. Built with Node.js/TypeScript, Fastify, PostgreSQL, and multi‑backend storage (S3, Azure, MinIO).

Quickstart Explore features

Immutability & Integrity

SHA‑256 checksums, content‑addressable paths, and cryptographic signatures ensure tamper detection.

Auditability

Immutable event log for every operation: who, what, when, where—fully traceable.

Retention & Legal Hold

Automated policies with legal hold workflows and storage‑level object lock support.

# StorageManager example
result = await storage.store(buffer, checksum, filename, metadata)

// Replication across backends
await storage.copyBetweenBackends(path, 's3', 'azure')

// Health checks
const status = await storage.getHealthStatus()

Quickstart

  1. Clone the repository
  2. Copy .env examples and configure storage (Local/S3/Azure)
  3. Run npm run dev for the API and admin-ui if needed
  4. Upload a sample file and verify checksum integrity

Core Capabilities

  • Fast uploads with background text extraction
  • Content‑addressable storage with deduplication
  • Comprehensive audit trail and search
  • Policy‑based retention and secure deletion

Tech Stack

Node.js/TypeScript, Fastify, PostgreSQL, Prisma • React/Next.js • S3/Azure/MinIO • Docker/Kubernetes