Run any Skill in Manus with one click

dotenvx-secrets

Name: Dotenvx Secrets
Author: kortix-ai

How this repo manages API secrets — they are dotenvx-ENCRYPTED in git and the keys live in Dotenv Armor. Load this WHENEVER you touch a secret, API key, token, credential, or any apps/api/.env* file; whenever the user pastes a key/token/secret and wants it stored or used; and whenever adding, reading, rotating, or sharing a secret. Enforces the non-negotiable rule: never write a plaintext secret into a tracked file — always go through dotenvx.

Run Skill in Manus

Skill metadata

Stars19,807

Forks3,416

UpdatedJune 3, 2026 at 18:37

SKILL.md

readonly

name

dotenvx-secrets

description

dotenvx secrets (this repo)

API secrets are encrypted in git with dotenvx; the decryption keys live off-device in Dotenv Armor. This is mandatory — there is no path where a plaintext secret belongs in a tracked file.

The one rule (non-negotiable)

Never write a plaintext secret into a tracked file, a commit, or a code/PR artifact. Every secret goes in through dotenvx, which encrypts it in place. The only plaintext that ever exists is in process memory at runtime and in the gitignored apps/api/.env.keys / apps/api/.env.local.

If you're ever about to type a real key into a file, stop — use dotenvx set instead.

When the user pastes a key/token/secret

Do not paste it into a file, echo it back, or commit it. Instead, store it encrypted:

dotenvx set THE_KEY_NAME 'the-pasted-value' -f apps/api/.env

This re-encrypts apps/api/.env in place (value becomes KEY=encrypted:…). Then commit the file. If it's a brand-new value that teammates need, also dotenvx-armor push -f apps/api/.env. Never leave the raw value sitting in chat output, a scratch file, or a comment.

How it works (briefly)

Each value in apps/api/.env is AES-encrypted. The public key (encrypts) sits in the file and is safe to commit; the private key (decrypts) never touches git.
Private keys live in Dotenv Armor (cloud) and/or the gitignored apps/api/.env.keys.
At boot, dotenvx run decrypts in memory and injects real env vars — nothing plaintext hits disk.
Two profiles, one file each, each with its own keypair: apps/api/.env (local, the default) and apps/api/.env.dev (opt-in via -f). Production secrets are NOT in the repo — the prod runtime injects them; never add a prod profile here.

Commands

Task	Command
Read a secret	`dotenvx get KEY -f apps/api/.env`
Add / change a secret	`dotenvx set KEY value -f apps/api/.env` (or `.env.dev`), then commit
Run with decrypted env	`dotenvx run -f apps/api/.env -- <cmd>` (this is what `pnpm dev` does)
First time / new machine	`dotenvx-armor login` then `cd apps/api && for f in .env .env.dev; do dotenvx-armor pull -f "$f"; done`
Share a new/rotated key	`dotenvx-armor push -f <file>` (one file at a time)
Remove a key from the cloud	`dotenvx-armor down -f <file>`

Machine-local overrides

Need a different value just on your machine? Put it in the gitignored apps/api/.env.local (plaintext is fine — it's never committed). Bun loads it at higher precedence than apps/api/.env. Never edit apps/api/.env to a local value.

Guardrails already in place

apps/api/.env.keys, apps/api/.env.local, apps/web/.env, supabase/.env are gitignored.
Version-controlled git hooks in .githooks/ (enable per clone: git config core.hooksPath .githooks). The pre-commit hook auto-encrypts apps/api/.env / .env.dev and then blocks the commit if any unencrypted, non-gitignored .env remains; pre-push re-checks as a final gate.
.gitleaks.toml allowlists the (encrypted) apps/api/.env* so secret-scan passes while still catching real plaintext anywhere else.
GitHub secret-scanning push protection is enabled on the repo.

Do not weaken any of these to make a commit go through. If the guard fires, the fix is to encrypt the value, not to bypass it.

More from this repository

same repository

website-building

kortix-ai/suna

Use for distinctive production-grade websites, landing pages, and interactive web experiences with strong design and QA discipline.

2026-06-0219.8k

kortix-system

kortix-ai/suna

Canonical reference for a Kortix project. Covers (1) the platform overview — repo-native projects, sessions backed by ephemeral branches, the strict boundary between Kortix config (`kortix.toml`) and OpenCode config (`.kortix/opencode/`) — (2) the in-depth `kortix.toml` manifest with every key, every trigger field, the secrets contract, the `[[apps]]` deployment surface, (3) the full `kortix` CLI reference (every command, every flag, the project-scoped token model, what works inside a session sandbox with the pre-injected `KORTIX_TOKEN`), (4) the Kortix change-request (CR) system — the mandatory path for landing any session-branch work on `main`, including the rule that an agent MUST open a CR if it wants its changes merged, and (5) the OpenCode runtime reference mirroring opencode.ai/docs/ for agents, skills, commands, tools (built-in + custom), plugins, MCP servers, permissions, rules (AGENTS.md), and models. Load when the user asks how Kortix works, asks about anything in `kortix.toml` or the `kortix` CLI,

2026-06-0219.8k

kortix-release

kortix-ai/suna

How to cut a Kortix production release — the versioning philosophy (when patch vs minor vs major) and the exact flow: derive the release title + notes from the FULL git log since the last release, run the Promote workflow, then deploy + verify prod. Load WHENEVER the user wants to release, promote, cut/ship a version, publish a release, or bump the version. The release notes ARE the public /changelog, so they must be 100% accurate to what shipped.

2026-06-0219.8k

kortix-executor

kortix-ai/suna

How to reach third-party systems from a Kortix session via the Executor — one interface to every configured integration (Pipedream, MCP, OpenAPI, GraphQL, HTTP), exposed as the `kortix-executor` MCP server's tools (connectors, discover, describe, call). Load whenever the user asks the agent to DO something in an external app/API (send an email, create a Stripe charge, post to Slack, query an internal API, call any SaaS), asks "what integrations/connectors/tools do I have", asks to add/configure a connector, or asks about `[[connectors]]` in kortix.toml. The agent must use the Executor's MCP tools rather than hand-rolling API calls with raw tokens.

thermo-nuclear-review

kortix-ai/suna

Run an extremely strict maintainability review for abstraction quality, giant files, and spaghetti-condition growth. Use for a thermo-nuclear code quality review, thermonuclear review, deep code quality audit, or especially harsh maintainability review. The pr-bot agent loads this on every PR.

2026-05-2919.8k

Source

kortix-ai

kortix-ai/suna

View GitHub Repository View Creator Repositories

Install

Download

Run Skill in Manus

Useful forSOC

Software DevelopersComputer and Mathematical Occupations15-1252L4

name

dotenvx-secrets

description

dotenvx secrets (this repo)

API secrets are encrypted in git with dotenvx; the decryption keys live off-device in Dotenv Armor. This is mandatory — there is no path where a plaintext secret belongs in a tracked file.

The one rule (non-negotiable)

If you're ever about to type a real key into a file, stop — use dotenvx set instead.

When the user pastes a key/token/secret

Do not paste it into a file, echo it back, or commit it. Instead, store it encrypted:

dotenvx set THE_KEY_NAME 'the-pasted-value' -f apps/api/.env

How it works (briefly)

Each value in apps/api/.env is AES-encrypted. The public key (encrypts) sits in the file and is safe to commit; the private key (decrypts) never touches git.
Private keys live in Dotenv Armor (cloud) and/or the gitignored apps/api/.env.keys.
At boot, dotenvx run decrypts in memory and injects real env vars — nothing plaintext hits disk.
Two profiles, one file each, each with its own keypair: apps/api/.env (local, the default) and apps/api/.env.dev (opt-in via -f). Production secrets are NOT in the repo — the prod runtime injects them; never add a prod profile here.

Commands

Task	Command
Read a secret	`dotenvx get KEY -f apps/api/.env`
Add / change a secret	`dotenvx set KEY value -f apps/api/.env` (or `.env.dev`), then commit
Run with decrypted env	`dotenvx run -f apps/api/.env -- <cmd>` (this is what `pnpm dev` does)
First time / new machine	`dotenvx-armor login` then `cd apps/api && for f in .env .env.dev; do dotenvx-armor pull -f "$f"; done`
Share a new/rotated key	`dotenvx-armor push -f <file>` (one file at a time)
Remove a key from the cloud	`dotenvx-armor down -f <file>`

Machine-local overrides

Guardrails already in place

apps/api/.env.keys, apps/api/.env.local, apps/web/.env, supabase/.env are gitignored.
Version-controlled git hooks in .githooks/ (enable per clone: git config core.hooksPath .githooks). The pre-commit hook auto-encrypts apps/api/.env / .env.dev and then blocks the commit if any unencrypted, non-gitignored .env remains; pre-push re-checks as a final gate.
.gitleaks.toml allowlists the (encrypted) apps/api/.env* so secret-scan passes while still catching real plaintext anywhere else.
GitHub secret-scanning push protection is enabled on the repo.

Do not weaken any of these to make a commit go through. If the guard fires, the fix is to encrypt the value, not to bypass it.