Security News
Introducing the Socket Python SDK
The initial version of the Socket Python SDK is now on PyPI, enabling developers to more easily interact with the Socket REST API in Python projects.
By Douglas Coburn - Sep 13, 2024
dotenv-encode
Advanced tools
DOTENV-ENCODE
Installation
$ npm install dotenv-encode
Description
Dotenv-encode is a package for encrypting or decrypting a file or folder using a password.
- Secured: It uses the aes256 algorythm from the
cryptopackage for encrypting a file or folder with a key. - Fast and flexible: The command line only take few arguments and can be adapted easily.
Example
Encryption
$ npm dotenv-encode ./env/test.env -o ./encrypted/test.env -s MySecretKey
## Without secret/s, a prompt will ask for the secret
$ npm dotenv-encode ./env/test.env -o ./encrypted/test.env
This command will encrypt the content of the file ./env/test.env in the file ./encrypted/test.env with MySecretKey as password.
You can also encrypt all the file in a folder :
$ npm dotenv-encode ./env -o ./env_encrypted -s MySecretKey
Decryption
$ npm dotenv-encode ./env/test.env -o ./encrypted/test.env -s MySecretKey -d
This command will decrypt the content of the file ./env/test.env in the file ./encrypted/test.env with MySecretKey as password.
Usage
$ dotenv-encode <path-input-file> --options <VALUE>
| Options | Short | Mandatory | Description |
|---|---|---|---|
| --out | -o | yes | The path of the result file or folder (it will be created if does not exist) |
| --secret | -s | no | Specify the password which would be used to encrypt or decrypt the file. |
| --decrypt | -d | no | If present, the command will decrypt the input file |
In case the secret is specified, a prompt will ask for the secret.
The decrypt option does not take any parameters.
The path-input-file is the file on which we will get the data from.
Contributing
The main purpose of this repository is to continue evolving dotenv-encode, making it faster and easier to use. Development of this package happens in the open on GitHub, and I am grateful to anyone contributing bugfixes and improvements. Read below to learn how you can take part in improving Dotenv-encode.
Sending a PR
I am monitoring for pull requests. I will review any pull request and either merge it, request changes to it, or close it with an explanation.
Before submitting a pull request, please make sure the following is done:
- Actual tests are not break
- Documentation is still compiling
- Code coverage is still higher than 85%
- Your modification has been tested properly
- Your modification has been documented
License
Dotenv-encode is MIT licensed.
FAQs
Unknown package
The npm package dotenv-encode receives a total of 30 weekly downloads. As such, dotenv-encode popularity was classified as not popular.
We found that dotenv-encode demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Package last updated on 09 Jan 2022
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Related posts
Security News
The Wildcard Gamble: Understanding the Risks of Floating Dependency Ranges in npm
Floating dependency ranges in npm can introduce instability and security risks into your project by allowing unverified or incompatible versions to be installed automatically, leading to unpredictable behavior and potential conflicts.
By Sarah Gooding - Sep 13, 2024
Security News
New Rust RFC Proposes Adding Support for Trusted Publishing to Crates.io
A new Rust RFC proposes "Trusted Publishing" for Crates.io, introducing short-lived access tokens via OIDC to improve security and reduce risks associated with long-lived API tokens.
By Sarah Gooding - Sep 12, 2024