name	env-vars
description	Manages environment variables and credentials securely. Use when configuring secrets or .env files.
user-invocable	true
triggers	["env","environment","credentials","secrets","api key"]
allowed-tools	Bash, Read, Write, Grep
model	haiku

Environment Variables Workflow

Preferred pattern: Doppler

For any project with 3+ secrets or any secret reused across projects, use Doppler (see the doppler skill). This skill handles the legacy .env.local flow for projects not yet on Doppler.

When you see .env.local in a repo that should be on Doppler:

Suggest running the doppler skill to migrate
Don't add new secrets to .env.local if a doppler.yaml exists (use doppler secrets set instead)

When a repo has doppler.yaml, secrets live in Doppler. Commands run via doppler run -- <cmd>.

On "env" or "credentials"

Step 0: Check for Doppler

if [ -f doppler.yaml ]; then
  echo "This repo uses Doppler. See the 'doppler' skill for any env var work."
  cat doppler.yaml
  # Route to doppler skill
fi

If Doppler is in use, defer to the doppler skill. If not, proceed with the .env.local flow below.

Step 1: Determine Action (non-Doppler flow)

question: "What do you need?"
options:
  - { label: "Check current", description: "See what's configured" }
  - { label: "Add new", description: "Add a new environment variable" }
  - { label: "Debug missing", description: "Something isn't working" }
  - { label: "Setup .env.local", description: "Create project env file" }
  - { label: "Migrate to Doppler", description: "Move to the recommended tool" }

If user picks "Migrate to Doppler", invoke the doppler skill.

Step 2: Actions

Check current (Windows):

# List relevant env vars
[Environment]::GetEnvironmentVariable("SUPABASE_ACCESS_TOKEN", "User")
[Environment]::GetEnvironmentVariable("GOOGLE_CLIENT_ID", "User")
# etc.

Check current (Mac/Linux):

echo $SUPABASE_ACCESS_TOKEN
echo $GOOGLE_CLIENT_ID
# etc.

Add new:

1. Ask for variable name
2. Ask for value
3. Store in system env vars:
   - Windows: setx NAME "value"
   - Mac/Linux: Add to ~/.zshrc or ~/.bashrc
4. Report success

Debug missing:

1. Run npm run build to surface errors
2. Check which env vars are referenced
3. Compare against what's set
4. Report missing vars

Setup .env.local:

1. Check project for env var usage
2. Generate .env.local with required vars
3. Pull values from system env vars where available
4. Mark missing vars for user to fill

Security Rules

Avoid:

Hardcode API keys in code
Commit .env files to git
Log secret values
Store secrets in .env.example

Do:

Use process.env.VAR_NAME
Store secrets in system env vars
Use .env.local for project-specific values
Add .env* to .gitignore

Common Variables

Category	Variables
Supabase	SUPABASE_ACCESS_TOKEN, NEXT_PUBLIC_SUPABASE_URL, NEXT_PUBLIC_SUPABASE_ANON_KEY
Google OAuth	GOOGLE_CLIENT_ID, GOOGLE_CLIENT_SECRET
GitHub	GITHUB_PAT
AI/LLM	OPENAI_API_KEY, ELEVENLABS_API_KEY, OPENROUTER_API_KEY
Email	RESEND_API_KEY
Search	BRAVE_API_KEY

.env.local Template

# Project-specific (fill these in)
NEXT_PUBLIC_SUPABASE_URL=https://[ref].supabase.co
NEXT_PUBLIC_SUPABASE_ANON_KEY=eyJ...

# These are read from system env vars automatically:
# - GOOGLE_CLIENT_ID
# - GOOGLE_CLIENT_SECRET
# - SUPABASE_ACCESS_TOKEN

# Project-specific overrides (optional)
YOUTUBE_REDIRECT_URI=http://localhost:3000/api/auth/youtube/callback

Troubleshooting

"Environment variable not found":

Check if set: echo $VAR_NAME or $env:VAR_NAME
Restart terminal after setting
For Next.js, restart dev server

"Invalid API key":

Verify the key is correct (no extra spaces)
Check key hasn't expired
Verify key has required permissions

".env.local not loading":

File must be in project root
Restart dev server after changes
Check file encoding (should be UTF-8)

Más de este repositorio

mismo repositorio

telemetry

djnsty23/claude-auto-dev

Show token / tool usage stats from the local telemetry log. Use when you want to know "which tools am I burning context on", "which skills are expensive", or "was yesterday's session mostly Read/Grep or actually productive".

2026-04-222

audit

djnsty23/claude-auto-dev

Parallel quality audit with 7 specialized agents (Opus). Finds bugs, violations, and quality issues. Use audit for fixes, brainstorm for features.

2026-04-222

doppler

djnsty23/claude-auto-dev

Manage environment variables with Doppler — auto-install CLI, login, link projects, wrap commands with `doppler run`. Replaces scattered .env files with a hub/spoke architecture.

2026-04-222

setup-project

djnsty23/claude-auto-dev

Scaffolds new projects or onboards existing ones. Detects stack, creates monorepo/single-app, configures strict tooling. Use for greenfield or first-time setup.

2026-04-222

archive-prd

djnsty23/claude-auto-dev

Archives completed stories from prd.json to reduce token usage.

2026-04-222

auto

djnsty23/claude-auto-dev

Autonomous task execution with testing and security. Works through all tasks without stopping.

2026-04-222

name	env-vars
description	Manages environment variables and credentials securely. Use when configuring secrets or .env files.
user-invocable	true
triggers	["env","environment","credentials","secrets","api key"]
allowed-tools	Bash, Read, Write, Grep
model	haiku

Environment Variables Workflow

Preferred pattern: Doppler

For any project with 3+ secrets or any secret reused across projects, use Doppler (see the doppler skill). This skill handles the legacy .env.local flow for projects not yet on Doppler.

When you see .env.local in a repo that should be on Doppler:

Suggest running the doppler skill to migrate
Don't add new secrets to .env.local if a doppler.yaml exists (use doppler secrets set instead)

When a repo has doppler.yaml, secrets live in Doppler. Commands run via doppler run -- <cmd>.

On "env" or "credentials"

Step 0: Check for Doppler

if [ -f doppler.yaml ]; then
  echo "This repo uses Doppler. See the 'doppler' skill for any env var work."
  cat doppler.yaml
  # Route to doppler skill
fi

If Doppler is in use, defer to the doppler skill. If not, proceed with the .env.local flow below.

Step 1: Determine Action (non-Doppler flow)

question: "What do you need?"
options:
  - { label: "Check current", description: "See what's configured" }
  - { label: "Add new", description: "Add a new environment variable" }
  - { label: "Debug missing", description: "Something isn't working" }
  - { label: "Setup .env.local", description: "Create project env file" }
  - { label: "Migrate to Doppler", description: "Move to the recommended tool" }

If user picks "Migrate to Doppler", invoke the doppler skill.

Step 2: Actions

Check current (Windows):

# List relevant env vars
[Environment]::GetEnvironmentVariable("SUPABASE_ACCESS_TOKEN", "User")
[Environment]::GetEnvironmentVariable("GOOGLE_CLIENT_ID", "User")
# etc.

Check current (Mac/Linux):

echo $SUPABASE_ACCESS_TOKEN
echo $GOOGLE_CLIENT_ID
# etc.

Add new:

1. Ask for variable name
2. Ask for value
3. Store in system env vars:
   - Windows: setx NAME "value"
   - Mac/Linux: Add to ~/.zshrc or ~/.bashrc
4. Report success

Debug missing:

1. Run npm run build to surface errors
2. Check which env vars are referenced
3. Compare against what's set
4. Report missing vars

Setup .env.local:

1. Check project for env var usage
2. Generate .env.local with required vars
3. Pull values from system env vars where available
4. Mark missing vars for user to fill

Security Rules

Avoid:

Hardcode API keys in code
Commit .env files to git
Log secret values
Store secrets in .env.example

Do:

Use process.env.VAR_NAME
Store secrets in system env vars
Use .env.local for project-specific values
Add .env* to .gitignore

Common Variables

Category	Variables
Supabase	SUPABASE_ACCESS_TOKEN, NEXT_PUBLIC_SUPABASE_URL, NEXT_PUBLIC_SUPABASE_ANON_KEY
Google OAuth	GOOGLE_CLIENT_ID, GOOGLE_CLIENT_SECRET
GitHub	GITHUB_PAT
AI/LLM	OPENAI_API_KEY, ELEVENLABS_API_KEY, OPENROUTER_API_KEY
Email	RESEND_API_KEY
Search	BRAVE_API_KEY

.env.local Template

# Project-specific (fill these in)
NEXT_PUBLIC_SUPABASE_URL=https://[ref].supabase.co
NEXT_PUBLIC_SUPABASE_ANON_KEY=eyJ...

# These are read from system env vars automatically:
# - GOOGLE_CLIENT_ID
# - GOOGLE_CLIENT_SECRET
# - SUPABASE_ACCESS_TOKEN

# Project-specific overrides (optional)
YOUTUBE_REDIRECT_URI=http://localhost:3000/api/auth/youtube/callback

Troubleshooting

"Environment variable not found":

Check if set: echo $VAR_NAME or $env:VAR_NAME
Restart terminal after setting
For Next.js, restart dev server

"Invalid API key":

Verify the key is correct (no extra spaces)
Check key hasn't expired
Verify key has required permissions

".env.local not loading":

File must be in project root
Restart dev server after changes
Check file encoding (should be UTF-8)