Show HN: enveil – hide your .env secrets from prAIng eyes

February 24, 2026 at 05:04

Quality: 8/10 Relevance: 9/10

Summary

enveil provides per-project encrypted storage for environment secrets, preventing plaintext .env data from being exposed to AI coding tools and runtime processes. It uses Argon2id to derive a key and AES-256-GCM to encrypt a local store, with ev:// references resolved at runtime and secrets never written in plaintext to disk.

Read Original Article