How to store encrypted data in SoundFlow

I believe the best way would be to do this via complete end-to-end encryption with the key being derived from a user supplied key phrase or file, which never gets stored in the cloud but only locally on the computer.
This type of end-to-end encryption would make it possible to opaquely store all values in our existing data stores and make it unreadable for anyone who doesn't have the keys.

What SF needs to enable is simple access to symmetrical and possibly also asymmetrical encryption callable from Javascript.
Since the encryption/decryption would be running locally, the servers and the world would only ever see the cipher text.

Please lmk if you have any preferences for algorithms here.

I've made a starting implementation of this.

First you'd generate a secure key, like this:

globalState.key = sf.crypto.aes256.generateKey({}).key;

For this little walkthrough, I'm just storing the key and cipher in the globalState object. globalState is available as long as SF is running so is useful for testing across different commands.
You'd normally store the key in a file on disk or on a shared network drive (for example via sf.file.writeText) - and storing the key might be something you'd just do once for the entire org.

To encode data, use the sf.crypto.aes256.encrypt action, like this:

var someText = prompt('Enter plain text');

globalState.cipherText = sf.crypto.aes256.encrypt({
    key: globalState.key,
    plainText: someText
}).cipherText;

Again, I'm just storing the cipherText in globalState. This would typically be sent to the cloud etc.

And then to decrypt (fetching both key and cipherText from globalState)

var plainText = sf.crypto.aes256.decrypt({
    key: globalState.key,
    cipherText: globalState.cipherText,
}).plainText;

alert(plainText);