메뉴
Manages environment variables and credentials securely. Use when configuring secrets or .env files.
Codex 또는 Claude로 설치 이 Prompt를 복사해 Codex, Claude 또는 다른 어시스턴트에 붙여 넣으면 Skill 페이지를 검토하고 설치를 진행할 수 있습니다.
SOC 직업 분류 기준
Show token / tool usage stats from the local telemetry log. Use when you want to know "which tools am I burning context on", "which skills are expensive", or "was yesterday's session mostly Read/Grep or actually productive".
Parallel quality audit with 7 specialized agents (Opus). Finds bugs, violations, and quality issues. Use audit for fixes, brainstorm for features.
Manage environment variables with Doppler — auto-install CLI, login, link projects, wrap commands with `doppler run`. Replaces scattered .env files with a hub/spoke architecture.
Scaffolds new projects or onboards existing ones. Detects stack, creates monorepo/single-app, configures strict tooling. Use for greenfield or first-time setup.
Archives completed stories from prd.json to reduce token usage.
Autonomous task execution with testing and security. Works through all tasks without stopping.
| name | env-vars |
| description | Manages environment variables and credentials securely. Use when configuring secrets or .env files. |
| user-invocable | true |
| triggers | ["env","environment","credentials","secrets","api key"] |
| allowed-tools | Bash, Read, Write, Grep |
| model | haiku |
For any project with 3+ secrets or any secret reused across projects, use Doppler (see the doppler skill). This skill handles the legacy .env.local flow for projects not yet on Doppler.
When you see .env.local in a repo that should be on Doppler:
doppler skill to migrate.env.local if a doppler.yaml exists (use doppler secrets set instead)When a repo has doppler.yaml, secrets live in Doppler. Commands run via doppler run -- <cmd>.
if [ -f doppler.yaml ]; then
echo "This repo uses Doppler. See the 'doppler' skill for any env var work."
cat doppler.yaml
# Route to doppler skill
fi
If Doppler is in use, defer to the doppler skill. If not, proceed with the .env.local flow below.
question: "What do you need?"
options:
- { label: "Check current", description: "See what's configured" }
- { label: "Add new", description: "Add a new environment variable" }
- { label: "Debug missing", description: "Something isn't working" }
- { label: "Setup .env.local", description: "Create project env file" }
- { label: "Migrate to Doppler", description: "Move to the recommended tool" }
If user picks "Migrate to Doppler", invoke the doppler skill.
Check current (Windows):
# List relevant env vars
[Environment]::GetEnvironmentVariable("SUPABASE_ACCESS_TOKEN", "User")
[Environment]::GetEnvironmentVariable("GOOGLE_CLIENT_ID", "User")
# etc.
Check current (Mac/Linux):
echo $SUPABASE_ACCESS_TOKEN
echo $GOOGLE_CLIENT_ID
# etc.
Add new:
1. Ask for variable name
2. Ask for value
3. Store in system env vars:
- Windows: setx NAME "value"
- Mac/Linux: Add to ~/.zshrc or ~/.bashrc
4. Report success
Debug missing:
1. Run npm run build to surface errors
2. Check which env vars are referenced
3. Compare against what's set
4. Report missing vars
Setup .env.local:
1. Check project for env var usage
2. Generate .env.local with required vars
3. Pull values from system env vars where available
4. Mark missing vars for user to fill
Avoid:
Do:
| Category | Variables |
|---|---|
| Supabase | SUPABASE_ACCESS_TOKEN, NEXT_PUBLIC_SUPABASE_URL, NEXT_PUBLIC_SUPABASE_ANON_KEY |
| Google OAuth | GOOGLE_CLIENT_ID, GOOGLE_CLIENT_SECRET |
| GitHub | GITHUB_PAT |
| AI/LLM | OPENAI_API_KEY, ELEVENLABS_API_KEY, OPENROUTER_API_KEY |
| RESEND_API_KEY | |
| Search | BRAVE_API_KEY |
# Project-specific (fill these in)
NEXT_PUBLIC_SUPABASE_URL=https://[ref].supabase.co
NEXT_PUBLIC_SUPABASE_ANON_KEY=eyJ...
# These are read from system env vars automatically:
# - GOOGLE_CLIENT_ID
# - GOOGLE_CLIENT_SECRET
# - SUPABASE_ACCESS_TOKEN
# Project-specific overrides (optional)
YOUTUBE_REDIRECT_URI=http://localhost:3000/api/auth/youtube/callback
"Environment variable not found":
echo $VAR_NAME or $env:VAR_NAME"Invalid API key":
".env.local not loading":