rails_credentials_manager 0.0.1.pre.alpha

checksums.yaml

@@ -0,0 +1,7 @@
+---
+SHA256:
+  metadata.gz: 0171fe9558f8b916c9c46a6d3bec41043e9215836ec05f3d72ff243372df4ffb
+  data.tar.gz: 41422006a52a35ef9f93d561b3bbd16ed0c7e35e68c65d9dd04ca7ab884e121a
+SHA512:
+  metadata.gz: 9aac4f9fa8ad4addfcf073f4c416e71f99ba0290d75cf813294420c15d1c11c86d1ee362b67385bcb2b1b3b2dc3a760039ac82ab5ccacc5567f0a7af47ef1a7b
+  data.tar.gz: f405bf4561c3c68b28822e909b04455302bea73bab00a8cce230884215d7d88696b4c0f0373e4c918ec8cf25ba4448291c05e95d9b2cfdb7f760bbbd0349b10c

data/.rspec

@@ -0,0 +1,3 @@
+--format documentation
+--color
+--require spec_helper

data/.vscode/settings.json

@@ -0,0 +1,6 @@
+{
+  "ruby.lint": {
+    "rubocop": false,
+    "standard": true
+  }
+}

data/CHANGELOG.md

@@ -0,0 +1,5 @@
+## [Unreleased]
+
+## [0.0.1-alpha] - 2022-07-26
+
+- Initial unstable release

data/Gemfile

@@ -0,0 +1,10 @@
+# frozen_string_literal: true
+
+source "https://rubygems.org"
+
+# Specify your gem's dependencies in rails_credentials_manager.gemspec
+gemspec
+
+gem "rake", "~> 13.0"
+gem "rspec", "~> 3.0"
+gem "standard", "~> 1.13"

data/Gemfile.lock

@@ -0,0 +1,86 @@
+PATH
+  remote: .
+  specs:
+    rails_credentials_manager (0.0.1.pre.alpha)
+      activesupport (>= 6.0)
+      dry-cli (~> 0.7)
+      hash_diff (~> 1.0)
+      pastel (~> 0.8)
+      tty-command (~> 0.10)
+
+GEM
+  remote: https://rubygems.org/
+  specs:
+    activesupport (7.0.3.1)
+      concurrent-ruby (~> 1.0, >= 1.0.2)
+      i18n (>= 1.6, < 2)
+      minitest (>= 5.1)
+      tzinfo (~> 2.0)
+    ast (2.4.2)
+    concurrent-ruby (1.1.10)
+    diff-lcs (1.5.0)
+    dry-cli (0.7.0)
+    hash_diff (1.0.0)
+    i18n (1.12.0)
+      concurrent-ruby (~> 1.0)
+    json (2.6.2)
+    minitest (5.16.2)
+    parallel (1.22.1)
+    parser (3.1.2.0)
+      ast (~> 2.4.1)
+    pastel (0.8.0)
+      tty-color (~> 0.5)
+    rainbow (3.1.1)
+    rake (13.0.6)
+    regexp_parser (2.5.0)
+    rexml (3.2.5)
+    rspec (3.11.0)
+      rspec-core (~> 3.11.0)
+      rspec-expectations (~> 3.11.0)
+      rspec-mocks (~> 3.11.0)
+    rspec-core (3.11.0)
+      rspec-support (~> 3.11.0)
+    rspec-expectations (3.11.0)
+      diff-lcs (>= 1.2.0, < 2.0)
+      rspec-support (~> 3.11.0)
+    rspec-mocks (3.11.1)
+      diff-lcs (>= 1.2.0, < 2.0)
+      rspec-support (~> 3.11.0)
+    rspec-support (3.11.0)
+    rubocop (1.31.2)
+      json (~> 2.3)
+      parallel (~> 1.10)
+      parser (>= 3.1.0.0)
+      rainbow (>= 2.2.2, < 4.0)
+      regexp_parser (>= 1.8, < 3.0)
+      rexml (>= 3.2.5, < 4.0)
+      rubocop-ast (>= 1.18.0, < 2.0)
+      ruby-progressbar (~> 1.7)
+      unicode-display_width (>= 1.4.0, < 3.0)
+    rubocop-ast (1.19.1)
+      parser (>= 3.1.1.0)
+    rubocop-performance (1.14.3)
+      rubocop (>= 1.7.0, < 2.0)
+      rubocop-ast (>= 0.4.0)
+    ruby-progressbar (1.11.0)
+    standard (1.13.0)
+      rubocop (= 1.31.2)
+      rubocop-performance (= 1.14.3)
+    tty-color (0.6.0)
+    tty-command (0.10.1)
+      pastel (~> 0.8)
+    tzinfo (2.0.5)
+      concurrent-ruby (~> 1.0)
+    unicode-display_width (2.2.0)
+
+PLATFORMS
+  x86_64-darwin-21
+
+DEPENDENCIES
+  rails_credentials_manager!
+  rake (~> 13.0)
+  rspec (~> 3.0)
+  standard (~> 1.13)
+
+BUNDLED WITH
+   2.2.29

data/LICENSE.txt

@@ -0,0 +1,21 @@
+The MIT License (MIT)
+
+Copyright (c) 2022 Uscreen
+
+Permission is hereby granted, free of charge, to any person obtaining a copy
+of this software and associated documentation files (the "Software"), to deal
+in the Software without restriction, including without limitation the rights
+to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+copies of the Software, and to permit persons to whom the Software is
+furnished to do so, subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in
+all copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN
+THE SOFTWARE.

data/README.md

@@ -0,0 +1,39 @@
+# Rails::Credentials::Manager
+
+Welcome to your new gem! In this directory, you'll find the files you need to be able to package up your Ruby library into a gem. Put your Ruby code in the file `lib/rails/credentials/manager`. To experiment with that code, run `bin/console` for an interactive prompt.
+
+TODO: Delete this and the text above, and describe your gem
+
+## Installation
+
+Add this line to your application's Gemfile:
+
+```ruby
+gem 'rails_credentials_manager'
+```
+
+And then execute:
+
+    $ bundle install
+
+Or install it yourself as:
+
+    $ gem install rails_credentials_manager
+
+## Usage
+
+TODO: Write usage instructions here
+
+## Development
+
+After checking out the repo, run `bin/setup` to install dependencies. Then, run `rake spec` to run the tests. You can also run `bin/console` for an interactive prompt that will allow you to experiment.
+
+To install this gem onto your local machine, run `bundle exec rake install`. To release a new version, update the version number in `version.rb`, and then run `bundle exec rake release`, which will create a git tag for the version, push git commits and the created tag, and push the `.gem` file to [rubygems.org](https://rubygems.org).
+
+## Contributing
+
+Bug reports and pull requests are welcome on GitHub at https://github.com/[USERNAME]/rails_credentials_manager.
+
+## License
+
+The gem is available as open source under the terms of the [MIT License](https://opensource.org/licenses/MIT).

data/Rakefile

@@ -0,0 +1,12 @@
+# frozen_string_literal: true
+
+require "bundler/gem_tasks"
+require "rspec/core/rake_task"
+
+RSpec::Core::RakeTask.new(:spec)
+
+require "rubocop/rake_task"
+
+RuboCop::RakeTask.new
+
+task default: %i[spec rubocop]

data/bin/console

@@ -0,0 +1,15 @@
+#!/usr/bin/env ruby
+# frozen_string_literal: true
+
+require "bundler/setup"
+require "rails_credentials_manager"
+
+# You can add fixtures and/or initialization code here to make experimenting
+# with your gem easier. You can also use a different console, if you like.
+
+# (If you use this, don't forget to add pry to your Gemfile!)
+# require "pry"
+# Pry.start
+
+require "irb"
+IRB.start(__FILE__)

data/bin/rails_credentials_manager

@@ -0,0 +1,5 @@
+#!/usr/bin/env ruby
+
+require File.expand_path("../lib/rails_credentials_manager", __dir__)
+
+Dry::CLI.new(RailsCredentialsManager::CLI::Commands).call

data/bin/rcm

@@ -0,0 +1 @@
+bin/rails_credentials_manager

data/bin/setup

@@ -0,0 +1,8 @@
+#!/usr/bin/env bash
+set -euo pipefail
+IFS=$'\n\t'
+set -vx
+
+bundle install
+
+# Do any other automated setup that you need to do here

data/lib/rails_credentials_manager/base.rb

@@ -0,0 +1,51 @@
+module RailsCredentialsManager
+  class Base
+    AVAILABLE_ENVIRONMENTS = %i[development test staging production].freeze
+
+    def initialize(environment_list)
+      @environment_list = environment_list.map(&:to_sym).keep_if { |env| env.to_sym.in?(AVAILABLE_ENVIRONMENTS) }
+      abort pastel.red("No valid environments specified. Valid example: `-e development,test`") if @environment_list.empty?
+    end
+
+    def configs
+      @configs ||= @environment_list.inject({}) { |conf, env| conf.merge({env => config_for(env)}) }
+    end
+
+    def pastel
+      @pastel ||= Pastel.new
+    end
+
+    def print_key_and_value(key, value)
+      print pastel.blue("\t#{key}:\t")
+
+      case value
+      when "not set"
+        print pastel.red("not set")
+      when ->(v) { v.is_a?(String) }
+        print pastel.yellow(value)
+      else
+        print pastel.yellow(value.inspect)
+      end
+
+      print "\n"
+    end
+
+    def config_has_keys?(config, keys_path)
+      dig_keys = keys_path[0...-1]
+      return config.key?(keys_path.first) if dig_keys.empty?
+
+      config.dig(*dig_keys)&.key?(keys_path.last)
+    end
+
+    private
+
+    def config_for(environment)
+      ActiveSupport::EncryptedConfiguration.new(
+        config_path: "config/credentials/#{environment}.yml.enc",
+        key_path: "config/credentials/#{environment}.key",
+        env_key: "RAILS_MASTER_KEY",
+        raise_if_missing_key: true
+      ).config
+    end
+  end
+end

data/lib/rails_credentials_manager/commands.rb

@@ -0,0 +1,82 @@
+module RailsCredentialsManager
+  module CLI
+    module Commands
+      class Get < Dry::CLI::Command
+        desc "Find keys in credentials files for each environment"
+
+        argument :keys, type: :array, required: true, desc: "keys to show"
+
+        option :environments,
+          aliases: ["e"],
+          type: :array,
+          default: RailsCredentialsManager::Base::AVAILABLE_ENVIRONMENTS,
+          desc: "filter for environments"
+
+        def call(keys:, environments:, **)
+          RailsCredentialsManager::Get.new(environments).perform(keys)
+        end
+      end
+
+      class List < Dry::CLI::Command
+        desc "List of all keys for each environment"
+
+        option :environments,
+          aliases: ["e"],
+          type: :array,
+          default: RailsCredentialsManager::Base::AVAILABLE_ENVIRONMENTS,
+          desc: "filter for environments"
+
+        def call(environments:, **)
+          RailsCredentialsManager::List.new(environments).perform
+        end
+      end
+
+      class Set < Dry::CLI::Command
+        desc "Set a value to the key provided for given environments"
+
+        argument :key, type: :string, required: true
+        argument :value, type: :string, required: true
+
+        option :environments,
+          aliases: ["e"],
+          type: :array,
+          default: [],
+          desc: "filter for environments"
+
+        def call(key:, value:, environments:, **)
+          RailsCredentialsManager::Set.new(environments).perform(key, value)
+        end
+      end
+
+      class Diff < Dry::CLI::Command
+        desc "Show credentials diff between given branch (heroku by default) and current changes"
+
+        argument :branch, type: :string, default: "heroku", required: false
+
+        option :environments,
+          aliases: ["e"],
+          type: :array,
+          default: RailsCredentialsManager::Base::AVAILABLE_ENVIRONMENTS,
+          desc: "filter for environments"
+
+        def call(branch:, environments:, **)
+          RailsCredentialsManager::Diff.new(environments).perform(branch)
+        end
+      end
+
+      class Conflicts < Dry::CLI::Command
+        desc "Help to resolve merge conflicts for credentials"
+
+        option :environments,
+          aliases: ["e"],
+          type: :array,
+          default: RailsCredentialsManager::Base::AVAILABLE_ENVIRONMENTS,
+          desc: "filter for environments"
+
+        def call(environments:, **)
+          RailsCredentialsManager::Conflicts.new(environments).perform
+        end
+      end
+    end
+  end
+end

data/lib/rails_credentials_manager/conflicts.rb

@@ -0,0 +1,120 @@
+require "active_support/encrypted_file"
+
+module RailsCredentialsManager
+  class Conflicts < RailsCredentialsManager::Base
+    REGEXP = /^<{7} HEAD(\r?\n(?!={7}\r?\n).*)*\r?\n={7}(\r?\n(?!>{7} ).*)*\r?\n>{7} \S+/m
+
+    def perform
+      @environment_list.each do |env|
+        puts pastel.green("#{env}:")
+        cred_content = File.read("config/credentials/#{env}.yml.enc")
+        parsed_conflict = REGEXP.match(cred_content)
+
+        unless parsed_conflict
+          puts "✅ No conflicts found"
+          next
+        end
+
+        our_config = config_to_compare_for(env, parsed_conflict[1].strip)
+        their_config = config_to_compare_for(env, parsed_conflict[2].strip)
+        @merged_config = our_config.deep_merge(their_config)
+        deep_print_diff(HashDiff.diff(their_config, our_config))
+
+        # removes "---\n" in the very beginning
+        merged_config_as_string = @merged_config.deep_stringify_keys.to_yaml[4..]
+        rewrite_config_for(env, merged_config_as_string)
+        puts "✅ Merged config for #{env} has been saved"
+      end
+    end
+
+    private
+
+    def config_to_compare_for(environment, encripted_file_content)
+      deserialize(decript(key_for(environment), encripted_file_content)).deep_symbolize_keys
+    end
+
+    def key_for(environment)
+      Pathname.new("config/credentials/#{environment}.key").binread.strip
+    end
+
+    def decript(key, content)
+      ActiveSupport::MessageEncryptor.new([key].pack("H*"), cipher: "aes-128-gcm")
+        .decrypt_and_verify(content)
+    end
+
+    def deserialize(raw_config)
+      # rubocop:disable Security/YAMLLoad
+      YAML.respond_to?(:unsafe_load) ? YAML.unsafe_load(raw_config) : YAML.load(raw_config)
+      # rubocop:enable Security/YAMLLoad
+    end
+
+    def deep_print_diff(diff, key_path = [])
+      if diff.empty?
+        puts pastel.green "\t✅ No differences"
+        return
+      end
+
+      diff.each do |current_key, values|
+        if values.is_a?(Hash)
+          values.each { |k, val| deep_print_diff({k => val}, key_path + [current_key]) }
+        elsif values.is_a?(Array)
+          prev_value, current_value = values
+          print_diff_row(key_path + [current_key], prev_value, current_value)
+        end
+      end
+    end
+
+    def print_diff_row(key_path, prev_value, current_value)
+      if prev_value == HashDiff::NO_VALUE
+        if current_value.is_a?(Hash)
+          current_value.each { |value_key, value| print_diff_row(key_path + [value_key], prev_value, value) }
+        else
+          puts "\tADDED #{pastel.cyan("THEIR")} new key #{pastel.blue(key_path.join("."))}: #{pastel.yellow(current_value.inspect)}"
+        end
+      elsif current_value == HashDiff::NO_VALUE
+        if prev_value.is_a?(Hash)
+          prev_value.each { |value_key, value| print_diff_row(key_path + [value_key], value, current_value) }
+        else
+          puts "\tADDED #{pastel.cyan("OUR")} new key #{pastel.blue(key_path.join("."))}: #{pastel.yellow(prev_value.inspect)}"
+        end
+      else # Changed
+        puts "\t❗️ The key #{pastel.blue(key_path.join("."))} changed in both branches, their: #{pastel.yellow(prev_value.inspect)}, our: #{pastel.yellow(current_value.inspect)}"
+        puts "Which one should we use? Please type `their` or `our` to apply particular change or enter to abort."
+        print "> "
+        value_to_use = $stdin.gets.chomp
+        merge_input_handler(value_to_use, key_path, prev_value, current_value)
+      end
+    end
+
+    def merge_input_handler(input_value, key_path, their, our)
+      if input_value == "their"
+        deep_set!(@merged_config, key_path, their)
+        puts "✅ #{pastel.blue(key_path.join("."))} set as #{pastel.yellow(their.inspect)}"
+      elsif input_value == "our"
+        deep_set!(@merged_config, key_path, our)
+        puts "✅ #{pastel.blue(key_path.join("."))} set as #{pastel.yellow(our.inspect)}"
+      else
+        abort("❌ Merge aborted. Config did not save.")
+      end
+    end
+
+    def deep_set!(obj, keys, value)
+      key = keys.first
+      if keys.length == 1
+        obj[key] = value
+      else
+        obj[key] = {} unless obj[key]
+        deep_set!(obj[key], keys.slice(1..-1), value)
+      end
+    end
+
+    def rewrite_config_for(environment, new_config)
+      ActiveSupport::EncryptedFile.new(
+        content_path: "config/credentials/#{environment}.yml.enc",
+        key_path: "config/credentials/#{environment}.key",
+        env_key: "RAILS_MASTER_KEY",
+        raise_if_missing_key: true
+      ).write(new_config)
+    end
+  end
+end

data/lib/rails_credentials_manager/diff.rb

@@ -0,0 +1,79 @@
+require "tty-command"
+
+module RailsCredentialsManager
+  class Diff < RailsCredentialsManager::Base
+    def perform(branch_to_compare)
+      cmd = TTY::Command.new(pty: true, printer: :null)
+
+      configs.each do |env, config|
+        puts pastel.green("#{env}:")
+
+        result = cmd.run!("echo `git show origin/#{branch_to_compare}:config/credentials/#{env}.yml.enc`")
+        encripted_file_content = result.out.strip
+
+        if encripted_file_content.blank?
+          puts "❗️ Can not find #{env} credentials file in origin/#{branch_to_compare} branch"
+          next
+        end
+        branch_config = config_to_compare_for(env, encripted_file_content)
+
+        deep_print_diff(HashDiff.diff(branch_config, config))
+      end
+    end
+
+    private
+
+    def config_to_compare_for(environment, encripted_file_content)
+      deserialize(decript(key_for(environment), encripted_file_content)).deep_symbolize_keys
+    end
+
+    def key_for(environment)
+      Pathname.new("config/credentials/#{environment}.key").binread.strip
+    end
+
+    def decript(key, content)
+      ActiveSupport::MessageEncryptor.new([key].pack("H*"), cipher: "aes-128-gcm")
+        .decrypt_and_verify(content)
+    end
+
+    def deserialize(raw_config)
+      # rubocop:disable Security/YAMLLoad
+      YAML.respond_to?(:unsafe_load) ? YAML.unsafe_load(raw_config) : YAML.load(raw_config)
+      # rubocop:enable Security/YAMLLoad
+    end
+
+    def deep_print_diff(diff, key_path = [])
+      if diff.empty?
+        puts pastel.green "\t✅ No differences"
+        return
+      end
+
+      diff.each do |current_key, values|
+        if values.is_a?(Hash)
+          values.each { |k, val| deep_print_diff({k => val}, key_path + [current_key]) }
+        elsif values.is_a?(Array)
+          prev_value, current_value = values
+          print_diff_row(key_path + [current_key], prev_value, current_value)
+        end
+      end
+    end
+
+    def print_diff_row(key_path, prev_value, current_value)
+      if prev_value == HashDiff::NO_VALUE
+        if current_value.is_a?(Hash)
+          current_value.each { |value_key, value| print_diff_row(key_path + [value_key], prev_value, value) }
+        else
+          puts pastel.bright_green("\t#{key_path.join(".")}:\t ADDED: #{current_value.inspect}")
+        end
+      elsif current_value == HashDiff::NO_VALUE
+        if prev_value.is_a?(Hash)
+          prev_value.each { |value_key, value| print_diff_row(key_path + [value_key], value, current_value) }
+        else
+          puts pastel.bright_red("\t#{key_path.join(".")}:\tREMOVED: was #{prev_value.inspect}")
+        end
+      else # Changed
+        puts pastel.bright_cyan("\t#{key_path.join(".")}:\tCHANGED: #{prev_value.inspect} => #{current_value.inspect}")
+      end
+    end
+  end
+end

data/lib/rails_credentials_manager/get.rb

@@ -0,0 +1,18 @@
+module RailsCredentialsManager
+  class Get < RailsCredentialsManager::Base
+    def perform(keys)
+      abort pastel.red("At least one key required") if keys.empty?
+
+      keys_with_path = keys.index_with { |key| key.split(".").map(&:to_sym) }
+
+      configs.each do |env, config|
+        puts pastel.green("#{env}:")
+
+        keys_with_path.each do |full_key, key_path|
+          value = config_has_keys?(config, key_path) ? configs[env].dig(*key_path) : "not set"
+          print_key_and_value(full_key, value)
+        end
+      end
+    end
+  end
+end

data/lib/rails_credentials_manager/list.rb

@@ -0,0 +1,26 @@
+module RailsCredentialsManager
+  class List < RailsCredentialsManager::Base
+    def perform
+      configs.each do |env, config|
+        puts pastel.green("#{env}:")
+
+        config.each do |key, value|
+          deep_print_key_and_value(value, [key])
+        end
+      end
+    end
+
+    private
+
+    def deep_print_key_and_value(object, key_path)
+      object.each do |current_key, value|
+        if value.is_a?(Hash)
+          value.each { |k, val| deep_print_key_and_value({k => val}, key_path + [current_key]) }
+        else
+          full_key = (key_path + [current_key]).join(".")
+          print_key_and_value(full_key, value)
+        end
+      end
+    end
+  end
+end

data/lib/rails_credentials_manager/set.rb

@@ -0,0 +1,60 @@
+module EaRailsCredentialsManagerrl
+  class Set < RailsCredentialsManager::Base
+    def perform(key, new_value)
+      key_with_path = key.split(".").map(&:to_sym)
+      new_value = normalize_new_value(new_value)
+
+      configs.each do |env, config|
+        puts pastel.green("#{env}:")
+        update_config = true
+
+        if config_has_keys?(config, key_with_path)
+          previous_value = configs[env].dig(*key_with_path)
+          if previous_value == new_value
+            value = "NOT CHANGED. The value already the same: #{new_value.inspect}"
+            update_config = false
+          else
+            value = "CHANGED: #{new_value.inspect}; previous value: #{previous_value.inspect}"
+          end
+        else
+          value = "ADDED: #{new_value}"
+        end
+
+        print_key_and_value(key, value)
+
+        if update_config
+          updated_config = config.dup
+          deep_set!(updated_config, key_with_path, new_value)
+          # removes "---\n" in the very beginning
+          config_as_string = updated_config.deep_stringify_keys.to_yaml[4..]
+          rewrite_config_for(env, config_as_string)
+        end
+      end
+    end
+
+    def rewrite_config_for(environment, new_config)
+      ActiveSupport::EncryptedConfiguration.new(
+        config_path: "config/credentials/#{environment}.yml.enc",
+        key_path: "config/credentials/#{environment}.key",
+        env_key: "RAILS_MASTER_KEY",
+        raise_if_missing_key: true
+      ).write(new_config)
+    end
+
+    def deep_set!(obj, keys, value)
+      key = keys.first
+      if keys.length == 1
+        obj[key] = value
+      else
+        obj[key] = {} unless obj[key]
+        deep_set!(obj[key], keys.slice(1..-1), value)
+      end
+    end
+
+    def normalize_new_value(new_value)
+      return if new_value.in?(%w[nil null])
+
+      new_value
+    end
+  end
+end

data/lib/rails_credentials_manager/version.rb

@@ -0,0 +1,3 @@
+module RailsCredentialsManager
+  VERSION = "0.0.1-alpha".freeze
+end

data/lib/rails_credentials_manager.rb

@@ -0,0 +1,29 @@
+require "active_support"
+require "active_support/core_ext"
+require "active_support/encrypted_configuration"
+require "dry/cli"
+require "pastel"
+require "hash_diff"
+
+require_relative "rails_credentials_manager/base"
+require_relative "rails_credentials_manager/commands"
+require_relative "rails_credentials_manager/get"
+require_relative "rails_credentials_manager/list"
+require_relative "rails_credentials_manager/set"
+require_relative "rails_credentials_manager/diff"
+require_relative "rails_credentials_manager/conflicts"
+require_relative "rails_credentials_manager/version"
+
+module RailsCredentialsManager
+  module CLI
+    module Commands
+      extend Dry::CLI::Registry
+
+      register "get", Get
+      register "list", List
+      register "set", Set
+      register "diff", Diff
+      register "conflicts", Conflicts
+    end
+  end
+end

data/rails_credentials_manager.gemspec

@@ -0,0 +1,37 @@
+require_relative "lib/rails_credentials_manager/version"
+
+Gem::Specification.new do |spec|
+  spec.name = "rails_credentials_manager"
+  spec.version = RailsCredentialsManager::VERSION
+  spec.authors = ["Sergey Andronov"]
+  spec.email = ["dev@uscreen.tv"]
+
+  spec.summary = "The tool what you miss for managing Rails credentials"
+  spec.description = "The tool what you miss for managing Rails credentials"
+  spec.homepage = "https://github.com/Uscreen-video/rails_credentials_manager"
+  spec.license = "MIT"
+  spec.required_ruby_version = ">= 2.7.0"
+
+  spec.metadata["homepage_uri"] = spec.homepage
+  spec.metadata["source_code_uri"] = spec.homepage
+  spec.metadata["changelog_uri"] = "https://github.com/Uscreen-video/rails_credentials_manager/blob/main/CHANGELOG.md"
+
+  # Specify which files should be added to the gem when it is released.
+  # The `git ls-files -z` loads the files in the RubyGem that have been added into git.
+  spec.files = Dir.chdir(File.expand_path(__dir__)) do
+    `git ls-files -z`.split("\x0").reject do |f|
+      (f == __FILE__) || f.match(%r{\A(?:(?:test|spec|features)/|\.(?:git|travis|circleci)|appveyor)})
+    end
+  end
+  spec.executables = %w[rails_credentials_manager rcm]
+  spec.require_paths = ["lib"]
+
+  spec.add_dependency "activesupport", ">= 6.0"
+  spec.add_dependency "dry-cli", "~> 0.7"
+  spec.add_dependency "tty-command", "~> 0.10"
+  spec.add_dependency "pastel", "~> 0.8"
+  spec.add_dependency "hash_diff", "~> 1.0"
+
+  spec.add_development_dependency "rspec", "~> 3.0"
+  spec.add_development_dependency "standard", "~> 1.13"
+end

metadata

@@ -0,0 +1,168 @@
+--- !ruby/object:Gem::Specification
+name: rails_credentials_manager
+version: !ruby/object:Gem::Version
+  version: 0.0.1.pre.alpha
+platform: ruby
+authors:
+- Sergey Andronov
+autorequire:
+bindir: bin
+cert_chain: []
+date: 2022-07-26 00:00:00.000000000 Z
+dependencies:
+- !ruby/object:Gem::Dependency
+  name: activesupport
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '6.0'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '6.0'
+- !ruby/object:Gem::Dependency
+  name: dry-cli
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '0.7'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '0.7'
+- !ruby/object:Gem::Dependency
+  name: tty-command
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '0.10'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '0.10'
+- !ruby/object:Gem::Dependency
+  name: pastel
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '0.8'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '0.8'
+- !ruby/object:Gem::Dependency
+  name: hash_diff
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '1.0'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '1.0'
+- !ruby/object:Gem::Dependency
+  name: rspec
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '3.0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '3.0'
+- !ruby/object:Gem::Dependency
+  name: standard
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '1.13'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '1.13'
+description: The tool what you miss for managing Rails credentials
+email:
+- dev@uscreen.tv
+executables:
+- rails_credentials_manager
+- rcm
+extensions: []
+extra_rdoc_files: []
+files:
+- ".rspec"
+- ".vscode/settings.json"
+- CHANGELOG.md
+- Gemfile
+- Gemfile.lock
+- LICENSE.txt
+- README.md
+- Rakefile
+- bin/console
+- bin/rails_credentials_manager
+- bin/rcm
+- bin/setup
+- lib/rails_credentials_manager.rb
+- lib/rails_credentials_manager/base.rb
+- lib/rails_credentials_manager/commands.rb
+- lib/rails_credentials_manager/conflicts.rb
+- lib/rails_credentials_manager/diff.rb
+- lib/rails_credentials_manager/get.rb
+- lib/rails_credentials_manager/list.rb
+- lib/rails_credentials_manager/set.rb
+- lib/rails_credentials_manager/version.rb
+- rails_credentials_manager.gemspec
+homepage: https://github.com/Uscreen-video/rails_credentials_manager
+licenses:
+- MIT
+metadata:
+  homepage_uri: https://github.com/Uscreen-video/rails_credentials_manager
+  source_code_uri: https://github.com/Uscreen-video/rails_credentials_manager
+  changelog_uri: https://github.com/Uscreen-video/rails_credentials_manager/blob/main/CHANGELOG.md
+post_install_message:
+rdoc_options: []
+require_paths:
+- lib
+required_ruby_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      version: 2.7.0
+required_rubygems_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">"
+    - !ruby/object:Gem::Version
+      version: 1.3.1
+requirements: []
+rubygems_version: 3.1.6
+signing_key:
+specification_version: 4
+summary: The tool what you miss for managing Rails credentials
+test_files: []