aymenhmaidiwastaken

aymenhmaidiwastaken / envsafe

Public

Your secrets, encrypted, everywhere. Universal .env and secrets manager with encrypted vault, environment profiles, cloud sync, and more.

aes-256 cli cloud-sync cross-platform developer-tools
10
0
100% credibility
Found Mar 16, 2026 at 10 stars -- GitGems finds repos before they trend. Get early access to the next one.
Sign Up Free
AI Analysis
Rust
AI Summary

EnvSafe is a secure manager for app configuration details like passwords and keys, keeping them encrypted locally while allowing safe sharing and use across different setups.

How It Works

1
🔍 Discover EnvSafe

You hear about a simple tool that keeps your app's private details like passwords safe from leaks and easy to share.

2
📥 Get the tool

You download and add it to your computer with one quick step, ready to use anywhere.

3
🏠 Set up your project

In your project folder, you start it up and it creates a safe spot for your info.

4
🔒 Store your secrets

You add things like your database link or special keys, and they get locked away securely, never seen in plain text.

5
▶️ Run your app safely

You launch your app, and it grabs just what it needs without writing files or risking exposure.

6
☁️ Connect to cloud or share

You pull from your team's cloud storage or lock a file to share safely with friends.

🎉 Everything protected

Your app runs perfectly, secrets stay hidden across computers and teams, and you never worry about accidents again.

Sign up to see the full architecture

5 more

Sign Up Free

Star Growth

See how this repo grew from 10 to 10 stars Sign Up Free
Repurpose This Repo

Repurpose is a Pro feature

Generate ready-to-use prompts for X threads, LinkedIn posts, blog posts, YouTube scripts, and more -- with full repo context baked in.

Unlock Repurpose
AI-Generated Review

What is envsafe?

Envsafe is a Rust CLI for managing .env files and secrets across projects and teams, encrypting everything at rest with AES-256-GCM so plaintext never hits disk. It solves scattered configs, accidental git commits of keys, and env-switching headaches by offering a local vault with profiles (dev/staging/prod), process injection via `envsafe run -- npm start`, git-safe locked vaults, and cloud sync to AWS SSM, Vault, 1Password, or GCP. Export formats cover shell, dotenv, Docker (docker secrets encrypted), and Kubernetes (k8s encrypted secrets).

Why is it gaining traction?

Unlike dotenvx or direnv, envsafe bundles secret scanning, pre-commit hooks, schema validation, and an interactive TUI into one binary—no stitching tools. Git-safe sharing beats sops encrypted secrets for quick team handoffs without gitlab encrypted secrets setups, while podman secrets encrypted and docker-compose secrets encrypted exports simplify containers. Cloud sync pulls secrets github actions tokens or github_token securely, no servers involved.

Who should use this?

Solo devs juggling local/prod envs, backend teams deploying Kubernetes cluster secrets encrypted or Docker workflows, or ops folks tired of manual secrets github repository management. Ideal for GitHub workflows needing secrets github_pat rotation or envsafe npm installs in Node projects—anywhere leaked API keys haunt staging pushes.

Verdict

Promising early tool (10 stars, 1.0% credibility) with polished docs, CI, and Rust memory safety, but too green for prod without more battle-testing. Try for personal projects if you hate plaintext .env commits; skip for enterprise until adoption grows.

(198 words)

Sign up to read the full AI review Sign Up Free

Similar repos coming soon.