Version v0.2.9 Now Available

.env versioning made easy

Envoy is a CLI tool that brings version control to your environment variables.

$curl -fsSL https://raw.githubusercontent.com/denizlg24/envoy/master/install.sh | sh
View Documentation

Getting Started

Three commands to secure your environment variables

01

Initialize your project

Run envy init in your project directory. This creates a secure project ID and sets up local encryption. You'll be prompted for a passphrase that encrypts your environment files locally — the server never sees it.

$ envy init
Demo: Initialize your project
02

Encrypt and commit your .env

Add your .env file to tracking with envy encrypt, then commit the changes. Files are encrypted client-side using XChaCha20-Poly1305 before being stored. Each file can have its own passphrase for granular access control.

$ envy encrypt && envy commit -m "Initial secrets"
Demo: Encrypt and commit your .env
03

Pull on any machine

Clone your repo on another machine and run envy pull. Enter your passphrase to decrypt and restore your environment files. Team members with access can pull using their own passphrase — no plaintext ever touches the wire.

$ envy pull
Demo: Pull on any machine
Zero-knowledge encryption
Team collaboration
Git-like versioning

System Status

Checking...
Uptime (90d)
Error Rate (24h)
Avg Response
Requests (24h)