lockenv
Simple, CLI-friendly secret storage that lets you safely commit encrypted secrets to version control.
For small teams who want something simpler than sops/git-crypt for .env and infra secrets.
Overview
lockenv provides a secure way to store sensitive files (like .env files, configuration files, certificates) in an encrypted .lockenv file that can be safely committed to your repository. Files are encrypted using a password-derived key and can be easily extracted when needed.
How is this different?
Feature lockenv git-crypt sops Format Single vault file Transparent per-file YAML/JSON native Auth Password + Keyring GPG keys KMS/PGP Git integration Manual (lock/unlock) Transparent (git filter) Manual Setup lockenv init GPG key exchange KMS/key config Best for Simple .env/config Large teams, many devs Cloud infra, key rotation
Installation
Homebrew (macOS/Linux)
brew tap illarion/tap brew install lockenv
... continue reading