DEV Community: Hosaina Yirgalem The latest articles on DEV Community by Hosaina Yirgalem (@hossiy16). https://dev.to/hossiy16 https://media2.dev.to/dynamic/image/width=90,height=90,fit=cover,gravity=auto,format=auto/https:%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Fuser%2Fprofile_image%2F931153%2Fa4f66f6f-5253-4b29-8b96-000ee5b3fa80.jpeg DEV Community: Hosaina Yirgalem https://dev.to/hossiy16 en I built a CLI that scans, validates and audits your .env files and it works with any stack Hosaina Yirgalem Mon, 04 May 2026 23:16:25 +0000 https://dev.to/hossiy16/i-built-a-cli-that-scans-validates-and-audits-your-env-files-and-it-works-with-any-stack-2pi4 https://dev.to/hossiy16/i-built-a-cli-that-scans-validates-and-audits-your-env-files-and-it-works-with-any-stack-2pi4 <p>Every dev team has lost hours to .env problems.</p> <p>A missing variable breaks a deploy.<br> An API key gets committed to Git.<br> A new teammate spends half a day figuring out which variables they need.<br> Nobody documented anything.</p> <p>I built <strong>Razify</strong> to make all of that stop happening.</p> <h2> What is Razify? </h2> <p>Razify is a single binary CLI tool for .env file management.<br> It diffs, scans, validates, documents, and audits your environment<br> variables — all from your terminal.</p> <ul> <li>No cloud account</li> <li>No tracking</li> <li>No Go installation required</li> </ul> <p>Works with Node.js, Python, Ruby, Laravel, Rails — anything that uses .env files.</p> <h2> What it does </h2> <h3> 🔍 Secret scanning </h3> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code> razify scan .env </code></pre> </div> <p>Detects leaked secrets using 80+ regex patterns combined with<br> Shannon entropy analysis to catch what pattern matching alone would miss.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code> ✘ [CRITICAL] Line 6: DB_PASSWORD — weak or default value ⚠ [HIGH] Line 5: AWS_ACCESS_KEY — cloud provider credential Summary: 1 CRITICAL 4 HIGH 1 MEDIUM </code></pre> </div> <h3> ✅ Pre-deploy validation </h3> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code> razify validate .env .env.example </code></pre> </div> <p>Catches missing required variables before you deploy.<br> Returns exit code 1 — plugs straight into CI/CD.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight yaml"><code> <span class="pi">-</span> <span class="na">name</span><span class="pi">:</span> <span class="s">Validate environment</span> <span class="na">run</span><span class="pi">:</span> <span class="s">razify validate .env .env.example --json</span> </code></pre> </div> <h3> 🛡️ Git commit protection </h3> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code> razify guard <span class="nb">install</span> </code></pre> </div> <p>Installs a pre-commit hook that blocks any commit<br> containing exposed secrets. Set it once, forget about it.</p> <h3> 📊 Health score </h3> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code> razify audit .env .env.example </code></pre> </div> <p>Runs scan + validate + diff together.<br> Gives you a score out of 100 with actionable recommendations.</p> <h3> 📄 Auto-generated docs </h3> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code> razify docs .env.example <span class="nt">-o</span> ENV_DOCS.md </code></pre> </div> <p>Generates a markdown table from your inline comments.<br> No more "what does this variable do?"</p> <h2> Installation </h2> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code> <span class="c"># macOS / Linux</span> brew tap Hossiy21/tap <span class="o">&amp;&amp;</span> brew <span class="nb">install </span>razify <span class="c"># Windows</span> scoop <span class="nb">install </span>razify <span class="c"># Go users</span> go <span class="nb">install </span>github.com/Hossiy21/razify@latest </code></pre> </div> <h2> Open source </h2> <p>MIT licensed. PRs very welcome — especially for new secret<br> patterns or improving the scoring algorithm.</p> <p>⭐ github.com/Hossiy21/razify<br> 🎬 Demo: <a href="https://github.com/Hossiy21/razify/raw/master/razify-demo.gif" rel="noopener noreferrer">https://github.com/Hossiy21/razify/raw/master/razify-demo.gif</a></p> <p>Would love your feedback — especially on the entropy detection<br> and health scoring. What would make this useful for your workflow?</p> go devops opensource security