Local-first secrets manager that encrypts and deploys .env files
It lets developers define secrets once and automatically encrypts and writes .env files into multiple repos per environment, using a daemon that never exposes plaintext. The web UI shows repos, secrets, and scope matrix, while the CLI talks to the daemon over a Unix socket for AI‑safe operations. It integrates with dotenvx for public‑key encryption and supports namespaces, variants, and tutorials, targeting teams that need secure, repeatable secret propagation across many codebases.
View on GitHub →JigSpec/secrets-manager