Skip to content

Latest commit

 

History

History
844 lines (451 loc) · 25.4 KB

CHANGELOG.md

File metadata and controls

844 lines (451 loc) · 25.4 KB
Raw

Changelog

All notable changes to this project will be documented in this file. See standard-version for commit guidelines.

Unreleased

1.6.4

Changed

  • fix dotenvx help (command was missing)

1.6.3

Changed

  • adjust dotenvx pro to be dynamic if dotenvx-pro is installed user's machine

1.6.2

Added

  • add more detailed type definitions (#313)

1.6.1

Added

  • add support for .env1 (.env*) file format. (private key expands to DOTENV_PRIVATE_KEY_DEVELOPMENT1) (#312)

1.6.0

Added

  • add dotenvx decrypt command. works inversely to dotenvx encrypt. same flags. (#294)
  • add --stdout option to dotenvx decrypt. example: dotenvx decrypt -f .env.production --stdout > somefile.txt (#298)
  • add --stdout option to dotenvx encrypt. example: dotenvx encrypt -f .env.production --stdout > somefile.txt (#298)

Changed

  • smarter private key finder. if you rename your file to secrets.txt it can still decrypt from DOTENV_PRIVATE_KEY by seeking out the invert of the DOTENV_PUBLIC_KEY inside secrets.txt (#302)

Removed

  • remove dotenvx convert - still at dotenvx encrypt
  • remove dotenvx vault - still at dotenvx ext vault

1.5.0

Added

  • add help text for dashed values on set. example: dotenvx set KEY -- "- + * ÷" (#293)

Changed

  • replace @inquirer/confirm and ora (#285)

Removed

  • remove dotenvx ext hub, replace with dotenvx-ext-hub (install there to continue using hub) (#291)

1.4.0

Removed

  • remove update notice. let users decide what version they want without nagging them to update (#288)
  • remove dotenvx hub. still available at dotenvx ext hub (#290)

1.3.2

Changed

  • 🐞 remove risky prepare and postinstall scripts and replace with npm run patch for development and binary building (#286)

1.3.1

Changed

  • 🐞 make patch-package only run locally with prepare (#283)

1.3.0

Added

  • encrypt specified keys with --key option - dotenvx encrypt -k HELLO (#281)

1.2.0

Added

  • handle nested dotenvx invocations - dotenvx run -- dotenvx run -- env (#279)

Changed

  • replace glob with faster approach (#278)

1.1.0

Added

  • add TypeScript type definitions (#272)

1.0.1

Changed

  • 🐞 fix expansion when preset on process.env and/or with --overload (#271)

1.0.0

🎉 dotenvx has made it to 1.0.0. There are BREAKING CHANGES ⚠️ .

Added

  • added dotenvx set KEY value --plain to set plain text values
  • added dotenvx ext 🔌 as a location to place extensions like gititgnore, precommit, ls, and more. better than cluttering up core features like run, get/set, and encrypt.
  • added dotenvx pro 🏆 command with coming soon and link to GitHub issue (if you wish to be notified of progress. will provide tooling/features for teams)

Changed

  • BREAKING ⚠️
    • turned on encryption by default for dotenvx set (use dotenvx set KEY value --plain to set plain values)
    • renamed dotenvx encrypt to dotenvx ext vault encrypt (for managing .env.vault files)
    • renamed dotenvx convert to dotenvx encrypt
    • moved ls to dotenvx ext ls
    • moved genexample to dotenvx ext genexample
    • moved gitignore to dotenvx ext gitignore
    • moved prebuild to dotenvx ext prebuild
    • moved precommit to dotenvx ext precommit
    • moved scan to dotenvx ext scan
    • moved hub to dotenvx ext hub
    • moved vault to dotenvx ext vault
    • moved settings to dotenvx ext settings

(for many of these moved commands, for example dotenvx genexample, still work in 1.0.0 but with a large deprecated notice - DEPRECATION NOTICE: [genexample] has moved to [dotenvx ext genexample]. Please change your muscle memory to dotenvx ext genexample, as these deprecated command paths will be removed in a later minor version. importantly dotenvx encrypt was not able to be preserved because as it is now in use for encrypted .env files rather than .env.vault files)

This is a BIG release that sets the tone for dotenvx's core offering and features while maintaining room for growth. Thank you everyone for your support and usage of dotenvx 🙏.

blog post: "From dotenv to dotenvx: Next Generation Config Management"

0.45.0

Changed

  • Rename dotenvx vault convert to dotenvx vault migrate (#251)
  • Update install.sh regex version check to be sh compatible (not just bash)

0.44.6

Added

  • Added checksums.txt as part of each release

0.44.5

Changed

  • Removed .github folder from published binaries on npm (example: npm code)
  • Add help message to install.sh

0.44.4

Changed

  • Automated deployment of install.sh along with sanity checks (#250)

0.44.3

Added

  • Include CHANGELOG.md in npm release
  • Include install.sh in package release

0.44.2

Changed

  • Fix license in package.json to match project's license BSD-3.

0.44.1

Changed

  • Respect decryption of zero length strings - dotenvx set HELLO '' --encrypt (#236)

0.44.0

Added

  • Added options.debug, options.verbose, options.quiet, and options.logLevel to .config() (#233)

0.43.2

Changed

  • Patch replace when replacing double, single, or backticked quoted at anywhere in the .env file. (#232)

0.43.1

Changed

  • Improved replace function regex - to handle more edge case scenarios with replacing KEY/values (#227)

0.43.0

Added

  • Support require('@dotenvx/dotenvx').config() for DOTENV_PRIVATE_KEY decryption (#225)

0.42.0

Added

  • Added .env.vault deprecated warning when using DOTENV_KEY. Provide instructions to convert to encrypted .env files. (#224)

0.41.0

Added

  • Added vault convert command to list convert instructions for converting .env.vault to encrypted .env files (#222)
To convert your .env.vault file to encrypted .env file(s):

  1. Run [dotenvx vault decrypt]
  2. Run [ls -a .env*]

Lastly, convert each .env(.environment) file:

  3. Run [dotenvx convert -f .env.production]

For example:

  $ dotenvx convert -f .env
  $ dotenvx convert -f .env.ci
  $ dotenvx convert -f .env.production

Afterward:

Update production with your new DOTENV_PRIVATE_KEY_PRODUCTION located in .env.keys

Learn more at [https://dotenvx.com/docs/quickstart#add-encryption]

Changed

  • Rename encryptme to convert (#222)

0.40.1

Added

  • Support encryption replacemnt of multiline values (#220)

0.40.0

Added

  • Added dotenvx encryptme command to convert an entire .env file to an encrypted .env file. (#213)

Changed

  • Made precommit smart enough to check if a .env* file is encrypted or not. If fully encrypted, then allow precommit check to pass (#211)

Removed

  • Do not warn of missing files for conventions (too noisy) (#216)

0.39.0

Added

  • Add --convention flag to get

Removed

  • Removed help messages like 'in production' and 'in ci'. Too specific and could lead to confusion.

0.38.0

Changed

  • ⚠️ DEPRECATION NOTICE: the following commands are being moved. Please, update any code and muscle memory you have related to these:
    • dotenvx encrypt => dotenvx vault encrypt
    • dotenvx decrypt => dotenvx vault decrypt
    • dotenvx status => dotenvx vault status
  • ⚠️ DEPRECATION NOTICE: the beta hub commands are being completely deprecated (they will be fully removed in upcoming 1.0.0 release). We will provide .env.keys tooling at a later time (replacing hub) but in the context of the new --encrypt flag functionality below

Added

  • Add encryption to your .env files with a single command. Pass the --encrypt flag. 🎉
$ dotenvx set HELLO World --encrypt
set HELLO with encryption (.env)

A DOTENV_PUBLIC_KEY (encryption key) and a DOTENV_PRIVATE_KEY (decryption key) is generated using the same public-key cryptography as Bitcoin.

Further notes:

  • DOTENV_PUBLIC_KEY lives in the .env file. You can safely share this with whomever you wish.
  • DOTENV_PRIVATE_KEY lives in your .env.keys file. Share this only with those you trust to decrypt your secrets.
  • If using encrypted .env files like this it is safe to commmit them to source code. This makes reviewing PRs that contain secrets much easier.
  • Tell your contributors to contribute a secret using the command dotenvx set HELLO world --encrypt.
  • Set your DOTENV_PRIVATE_KEY on your server to decrypt these values using dotenvx run -- yourcommand
  • You can repeat all this per environment by modifying your set command to dotenvx set HELLO production -f .env.production --encrypt (for example)
  • In time we will add better tooling for sharing the private keys living in .env.keys, but until then safely share with team members you trust.
  • This mechanism should be particularly useful for open source projects that want to permit secrets contributions without handing out the decryption keys. Now anyone can contribute a secret and only you can decrypt it to see what was changed.
  • This solution is brand new, but I intend it to be the future for .env files. It has many benefits over .env.vault files. We will be sunsetting the .env.vault mechanism but its tooling will stay around in dotenvx for at least 1 year to come - under dotenvx vault parent command.
  • Be patient as we update our documentation to prioritize this improved encryption format for .env files.

0.37.1

  • warn when running dotenvx status against any untracked (not in .env.vault) files (#196)

0.37.0

  • add --convention nextjs flag to dotenvx run (#193)
  • improve status error message when decrypt fails or no .env* files (#192)

0.36.1

  • handle SIGTERM (#191)

0.36.0

  • add dotenvx status command (#186)
  • add dotenvx decrypt [directory] argument option (#186)
  • add dotenvx decrypt --environment flag option (#186)
  • normalize windows \ paths (#186)

0.35.1

Changed

  • exit code 1 if get KEY not found/undefined (#185)

0.35.0

Added

  • added set command, and optionally pass --env-file flag(s) to set usage: dotenvx set HELLO World (#182)

0.34.0

Changed

  • make hub push more forgiving by permitting full filepath like hub push directory/.env.keys (#180)
  • add note on generated .env.example (#181)

0.33.1

Changed

  • patch injection around falsy values (#177)

0.33.0

Added

  • add .env.vault support for .env.something.something (useful for Next.js pattern of .env.development.local) (#174)

0.32.0

Changed

  • quiet exit code 1 message (#173)

0.31.1

Changed

  • improve error messages (#171)

0.31.0

Added

  • add hub logout command (#170)

0.30.2

Changed

  • small fixes for windows users related to hub open and hub push (#169)

0.30.1

Changed

  • remove windows warnings related to missing git or git origin (#166 #167)

0.30.0

Added

  • dotenvx get --quiet will display the value no matter what (adds a blank0 logger level) (#161)

Changed

  • refactor dotenvx get to use run under the hood

0.29.2

Changed

  • fix broken hub login and hub open (#160)

0.29.1

Changed

  • patch situation where DOTENV_KEY is present and --env-file flag is set. assume to still look for .env.vault file as first in line (#157)

0.29.0

Changed

  • respect order for --env-vault-file, --env-file and --env flags (for example: dotenvx run --env "HELLO=one" --env-file=.env will prioritize --env flag. Add --overload here to prioritize --env-file or reverse the order.). you can now mix and match multiple flags in any complex order you wish and dotenvx will respect it. (#155)

0.28.0

Added

  • add dotenvx settings command to list your current settings. in the future we'll provide ways to modify these settings as dotenvx's functionality grows (#153)

0.27.2

Added

  • add windows postrelease step to check that dotenvx.exe is functional immediately after release (#141)

Changed

  • replace package-json with undici (#146)
  • prune redundant packages (#148)
  • return current version if remote version fails (#149)
  • switch to our own update notice mechanism (eliminating multiple deps) (#151)

0.27.1

Added

  • provide .zip download option for windows executable (#140)

Removed

  • remove got from top level deps (#139)

0.27.0

Changed

  • move update-notifier into lib/helpers for more control over got lib (#138)
  • move clipboardy into lib/helpers for more control and to support commonjs going forward (sindre has dropped support and many mature systems still require commonjs for their infra and have need of dotenvx). (#137)

0.26.0

Added

  • add hub pull command to pull a repo's .env.keys down. (#129)

0.25.1

Changed

  • 🐞 patch bug with evaluate commands. do not attempt to evaluate risky preset envs in process.env. evaluate only what's set in a .env* file (#125)

0.25.0

Added

  • expand hub push with [directory] option. use for monorepos. for example: dotenvx hub push apps/backend (#121)

0.24.0

Added

  • add command substitution. for example DATABASE_URL="postgres:https://$(whoami)@localhost/my_database" (#113)

0.23.0

Added

  • support personal environment variables. anything after the comment # personal.dotenvx.com will be considered personal and will not be encrypted to .env.vault (#110)

0.22.0

Added

  • require('@dotenvx/dotenvx').config() expands/interpolates variables. this matches the behavior of run. (note that this behavior differs from the original require('dotenv').config() (#107)

0.21.0

Added

  • expose genexample function on lib/main.js for export convenience (#102)

Changed

  • rely on which npm module to find system command path for user inputted command(s) (#105)

Removed

  • remove main.inject function (#102)

0.20.2

Added

  • added support for --env flag on the .env.vault decryption portion of run (#101)

0.20.1

Changed

  • use system command path (#98)

0.20.0

Changed

  • added --env flag. for example, dotenvx --env="HELLO=World" -- yourcommand (#94)

0.19.1

Changed

  • patched up the precommit command (#91)

0.19.0

Added

  • added scan command to scan for possible leaked secrets in your code (#90)

0.18.0

Added

  • added get command, optionally pass --env-file flag(s) to get, optionally pass --overload, and optionally pass --pretty-print. usage: dotenvx get HELLO => World (#89)

0.17.1

Changed

  • expose main.encrypt and main.ls functions

0.17.0

Added

  • added [directory] argument to encrypt. for example, in your nx repo from root dotenvx encrypt apps/backend will encrypt .env* files in that directory and manage the .env.keys and .env.vault in that directory as well (#82)

0.16.1

Changed

  • bumped dotenv version to fix encrypt bug

0.16.0

Added

  • added ls command to list all your .env* files (#80)
  • added --env-file option ls (#82)
  • optionally specify --env-vault-file path to .env.vault (defaults to .env.vault) (#73)

0.15.4

Changed

  • 🐞 patch --overload flag logic (#66)

0.15.3

Changed

  • 🐞 fix undici readablestream error (#65)

0.15.2

Changed

  • switch from axios to undici (#59)
  • bump dotenv-expand (#63)

0.15.1

Changed

  • use improved dotenv expansion (#62)

0.15.0

Added

  • add expansion (#60)
  • use dotenvx.com (#56)

0.14.1

Changed

  • patch esm issue. use update-notifier ^5.1.0

0.14.0

Added

  • Added genexample command. Generate .env.example from your .env file. (#49)
  • couple security patches (#50, #51)

0.13.0

Added

  • Added decrypt command. Decrypt .env.vault to prospective .env* files. .env.keys must be present. (#48)

0.12.0

Added

  • Append to .gitignore with gitignore command (also .dockerignore, .npmignore, and .vercelignore if existing) (#47)

0.11.0

Removed

  • no longer append to *ignore files automatically. too invasive. will provide as separate cli command (#45)

0.10.6

Changed

  • Improve error message when decryption fails (#40)

0.10.5

Changed

  • Rename predockerbuild command to prebuild (#36)

0.10.4

Added

  • Add predockerbuild command to prevent including .env file in your docker builds (#35)

0.10.3

Changed

  • If dotenvx is missing tell user how to install it from pre-commit (#34)
  • Add help notice for ci (when .env file not present) (#33)

0.10.2

Changed

  • Improve error message when custom --env-file passed (#32)

0.10.1

Changed

  • Adjust precommit verbosity and coloring
  • Add --install flag to precommit - installs to .git/hooks/pre-commit (#31)

0.10.0

Added

  • Added dotenvx precommit command and instructions for git pre-commit hook (#30)

0.9.0

Changed

  • Remove .flaskenv from appends (#27)
  • Improved error message when .env file is missing (#28)

0.8.4

Changed

Load axios with a try/catch depending on context 🐞 (#24)

0.8.3

Changed

Patched helpers.guessEnvironment bug when filepath contained a . in the folder name. 🐞 (#23)

0.8.2

Changed

Change path to axios in attempt for pkg to build correctly.

0.8.1

Added

Add axios (missing) to package-lock.json

0.8.0

Added

Added hub support. 🎉 (#16)

0.7.4

Changed

Create binaries with root:root defaults. (#21)

0.7.3

Added

Tell user about undefined subprocess with additional debug logs (#19)

0.7.2

Added

debug other signals send to execa process (#18)

0.7.1

Changed

Fix missed package.json#version

0.7.0

Added

handle SIGINT (#17)

0.6.13

write to /latest only for releases repo (#15)

0.6.12

Changed

do not package README alongside binary. adds noise to a user's machine. keep their machine shiny. (#14)

0.6.11

Added

tell user what to do next (#13)

0.6.10

Patched

do not log when error code is 0 (#12)

0.6.9

Added

tell user when no changes to re-encrypt (#11)

0.6.8

Added

added help text when user's command fails. include link to report issue (#10)

0.6.7

Added

added next step help message when running dotenvx run with no argument (#9)

0.6.6

Added

help includes a command example as well as a full working 'try it out' example (#8)

0.6.5

Changed

made the info messaging more succinct (#7)

0.6.4

Added

added tagged images to hub.docker.com/u/dotenv

0.6.3

Changed

fixed the .env.keys file comment. spacing was off. (#6)

0.6.2

Added

added help text to encrypt. (#5)

0.6.1

Changed

removed the pad on the logging level. didn't look good when running in default INFO mode. (#4)

0.6.0

Added

prevent committing a .env* file to code. append to .gitignore, .dockerignore, .vercelignore, and .npmignore 🗂️ (#3)

0.5.0

Added

run support for .env.vault files 🔑 (#2)

0.4.0

Added

encrypt 🔐 (#1)

0.3.9 and prior

Please see commit history.