Kiskis
Keep It Safe. Keep It Secret.
Stop hardcoding API keys and feature flags. Upload them to our vault, add our SDK, and we'll only release them to genuine, non-jailbroken iPhones. No Firebase required. No LaunchDarkly pricing.
Keep It Safe. Keep It Secret.
Stop hardcoding API keys and feature flags. Upload them to our vault, add our SDK, and we'll only release them to genuine, non-jailbroken iPhones. No Firebase required. No LaunchDarkly pricing.
Paste your API keys into the dashboard or deploy via CLI/CI pipeline
Swift Package Manager. 5 lines of code. 60 seconds.
Your app downloads keys at startup, secured by Apple's Secure Enclave
That's it. Really.
Apple App Attest verifies genuine devices via the Secure Enclave. Bots and scripts are rejected at the hardware level.
Different configs for different app versions. Roll out new API endpoints to v3.0+ while v2.x stays on the old ones.
Encrypted Keychain caching, background refresh, configurable staleness policies. Your app works on the subway.
Instantly disable config delivery for compromised versions. Emergency revocation pushes new keys in minutes.
Encrypt locally before upload. We literally cannot read your secrets. Not our engineers. Not a subpoena.
CLI tool + GitHub Action. Deploy configs from your pipeline. kiskis upload --auth $AUTH --file config.json
Ship features dark, toggle on/off instantly, A/B test variants. kiskis.isEnabled("dark_mode"). Same SDK, no extra service.
Enable new features for 5% of devices, monitor, then ramp to 100%. Auto-rollback if something breaks. Deterministic per-device.
Silent push triggers instant config + flag updates across all of a user's devices. SwiftData sync in seconds, not minutes.
Every change is archived. View history, diff revisions, and rollback to any previous version instantly.
Tune drop rates, schedule events, nerf broken weapons — all without a TestFlight build. Separate economy, events, and difficulty documents, each edited by the right role. No Firebase. No PlayFab pricing.
Your Stripe or RevenueCat webhook tells Kiskis who paid. Kiskis delivers the Pro content — API keys, unlocked assets, premium endpoints — only to attested iPhones. Cracked IPAs and jailbroken devices get nothing.
Pirated IPAs on jailbroken devices can't pass Apple App Attest — so they never get your Pro keys, assets, or unlocked features. Raises the cost of piracy from "script kiddie" to "dedicated reverse engineer" without enterprise pricing.
Kiskis remembers when each device first talked to your app and when it was last seen — attestation-anchored, survives app restarts. Build trial logic, tenure badges, or welcome-back flows with no backend of your own. kiskis.deviceInfo().firstSeen.
"We can't read your secrets.
Not our engineers. Not a hacker. Not a court order.
The math won't allow it."
Your config is encrypted on your machine before it ever touches our servers. We store and deliver opaque ciphertext. The decryption key never leaves your app binary.
| Kiskis | LaunchDarkly | Firebase Remote Config | Approov | |
|---|---|---|---|---|
| Price (starter) | From $0, Indie $29/mo | $200+/mo | Free (locked in) | ~$500/mo |
| Secret Delivery | Built-in vault | No | No | No |
| Feature Flags | Yes | Yes | Yes | No |
| Progressive Rollouts | Yes | Yes | Limited | No |
| Hardware Attestation | Yes | No | Yes (App Check) | Yes |
| Zero-Knowledge | Yes | No | No | No |
| Vendor Lock-in | None | None | None | |
| Open-Source SDK | Yes | No | Partial | No |
| Config Rollback | Built-in | Yes | Limited | No |
| Setup | 5 lines of Swift | SDK + targeting rules | Firebase project | Complex SDK |
The indie sweet spot: LaunchDarkly-style flags + Approov-style secrets + hardware attestation, at 1/10th the price.
All features on every tier. Pay for the scale of your users, not the feature set. We never break your production app as a billing lever.
Proof of concept — beta and early launch.
Side hustle — protect your growing app.
Startup — real overhead, real insurance.
Professional — board-level risk, board-level protection.
Enterprise — let's talk volume.