Security News
Weekly Downloads Now Available in npm Package Search Results
Socket's package search now displays weekly downloads for npm packages, helping developers quickly assess popularity and make more informed decisions.
Environment variables are a great and popular way to configure your application. Although the number of such variables can be really high in a big application, making it annoying to manage during development.
Common solution for this issue is usage of .env
files which contain all variables
that should be loaded into your development environment. There are different ways
to do this, for example handy python-dotenv
package. But it should be executed explicitly in order to work. In my projects
I don't want to add load_dotenv()
execution in my code that is running on
production, and I'm too lazy to create customer runners for development only.
Thus, I made load-dotenv that can do this for me automatically.
pip install load-dotenv
Create .env
file in your working directory and put your variables there.
For details about file format, please refer
python-dotenv documentation.
Run your application with LOAD_DOTENV
variable set to one of true
, yes
or 1
.
Alternative path to the file can be specified via LOAD_DOTENV_PATH
variable.
FAQs
Automatically and implicitly load environment variables from .env file
We found that load-dotenv demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
Socket's package search now displays weekly downloads for npm packages, helping developers quickly assess popularity and make more informed decisions.
Security News
A Stanford study reveals 9.5% of engineers contribute almost nothing, costing tech $90B annually, with remote work fueling the rise of "ghost engineers."
Research
Security News
Socket’s threat research team has detected six malicious npm packages typosquatting popular libraries to insert SSH backdoors.