I've decided to open source some of my tools I use for daily engineering. Today, it's EnvLock — a runtime package for 1Password and dotenvx.
With AI coding tools becoming more used than ever, it's never been more important to protect your secrets. If your secrets live in a plain text .env file, they're one prompt away from being exfiltrated.
envlock combines dotenvx encryption with 1Password key management so secrets never exist on disk — only in memory, only for the process that needs them.
This tool is designed for small teams, startups and freelancers. It doesn't fit every use case — feel free to support envlock by opening a PR and contributing or Staring it.
While it's possible to just use 1Password, I like the combination of dotenvx encryption. This makes rotating environment variables very simple as you only need to encrypt them again and update the encryption key.
Top comments (0)