@southpole/require-env
Advanced tools
Readme
This plugin allows you to safely read environment variables from process.env in Node.js. It was built to provide an extra layer of safety as this plugin will throw an error when an environment variable is undefined. You also have the option to provide a default value in case your environment variable cannot be found.
undefined values.Imagine this is your code:
const variable = process.env.NODE_ENV === 'production' ? 'something-cool' : 'something-strange';
if (variable) {
console.log(`My code will do something strange now and I won't notice it...`);
}
In case you forget to set process.env.NODE_ENV in your environment, your variable will be set to something-strange. You won't even notice in local development that your variable is unset, because the if-condition is still met. That's where requireEnv comes into play.
With requireEnv your code will fail already in local development when you haven't configured the NODE_ENV environment variable:
import {requireEnv} from '@southpole/require-env';
const variable = requireEnv('NODE_ENV') === 'production' ? 'something-cool' : 'something-strange';
if (variable) {
console.log(`My code won't reach this line because it will fail early to avoid something strange happening.`);
}
Using requireEnv instead of directly accessing process.env will make your system stop early rather than attempting to continue a flawed state (see fail-fast systems design).
If you prefer, you can also provide meaningful default values:
import {requireEnv} from '@southpole/require-env';
const variable = requireEnv('NODE_ENV', 'development');
if (variable) {
console.log('My app will still work as there is a default value.');
}
process.env with requireEnv in your codenode/no-process-env rule using eslint-plugin-nodeFAQs
Loads environment variables and fails fast if they don't exist.
The npm package @southpole/require-env receives a total of 57 weekly downloads. As such, @southpole/require-env popularity was classified as not popular.
We found that @southpole/require-env demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
This episode of the Risky Biz podcast discusses how the rise of small open source packages and the shift towards individual maintainers makes the ecosystem more vulnerable to supply chain attacks.
Product
Streamline your login process and enhance security by enabling Single Sign-On (SSO) on the Socket platform, now available for all customers on the Enterprise plan, supporting 20+ identity providers.
Security News
Tea.xyz, a crypto project aimed at rewarding open source contributions, is once again facing backlash due to an influx of spam packages flooding public package registries.