Secure passphrases
Stored only in memory for the lifetime of the request and cleared after conversion.
Transparent warnings
Mismatched cert/key pairs, deprecated algorithms, and weak sizes trigger visible alerts.
Automatic cleanup
Uploaded material lives inside an isolated temp workspace that is destroyed as soon as files are streamed back to you.
Tooling fidelity
Conversion relies on the host's `ssh-keygen` exactly as shipped with OpenSSH so the results match what you'd get locally.