@asafarim/envage 0.1.0

package/dist/lib/gitignore.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"gitignore.js","sourceRoot":"","sources":["../../src/lib/gitignore.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AACH,OAAO,EAAE,MAAM,aAAa,CAAC;AAC7B,OAAO,IAAI,MAAM,MAAM,CAAC;AACxB,OAAO,EAAE,QAAQ,EAAE,MAAM,eAAe,CAAC;AAEzC,4CAA4C;AAC5C,MAAM,kBAAkB,GAAG,0BAA0B,CAAC;AACtD,MAAM,gBAAgB,GAAG,sBAAsB,CAAC;AAEhD,MAAM,YAAY,GAAG,GAAG,kBAAkB;;;;;;;;EAQxC,gBAAgB,EAAE,CAAC;AAErB;;;;GAIG;AACH,MAAM,CAAC,KAAK,UAAU,eAAe,CAAC,GAAG,GAAG,OAAO,CAAC,GAAG,EAAE;IACvD,MAAM,aAAa,GAAG,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE,YAAY,CAAC,CAAC;IAEnD,IAAI,QAAQ,GAAG,EAAE,CAAC;IAClB,IAAI,CAAC;QACH,QAAQ,GAAG,MAAM,EAAE,CAAC,QAAQ,CAAC,aAAa,EAAE,OAAO,CAAC,CAAC;IACvD,CAAC;IAAC,MAAM,CAAC;QACP,uCAAuC;IACzC,CAAC;IAED,IAAI,QAAQ,CAAC,QAAQ,CAAC,kBAAkB,CAAC,EAAE,CAAC;QAC1C,4BAA4B;QAC5B,MAAM,QAAQ,GAAG,QAAQ,CAAC,OAAO,CAAC,kBAAkB,CAAC,CAAC;QACtD,MAAM,MAAM,GAAG,QAAQ,CAAC,OAAO,CAAC,gBAAgB,CAAC,CAAC;QAClD,IAAI,MAAM,KAAK,CAAC,CAAC,EAAE,CAAC;YAClB,MAAM,OAAO,GACX,QAAQ,CAAC,KAAK,CAAC,CAAC,EAAE,QAAQ,CAAC;gBAC3B,YAAY;gBACZ,QAAQ,CAAC,KAAK,CAAC,MAAM,GAAG,gBAAgB,CAAC,MAAM,CAAC,CAAC;YACnD,MAAM,EAAE,CAAC,SAAS,CAAC,aAAa,EAAE,OAAO,EAAE,OAAO,CAAC,CAAC;QACtD,CAAC;IACH,CAAC;SAAM,CAAC;QACN,mBAAmB;QACnB,MAAM,SAAS,GAAG,QAAQ,CAAC,QAAQ,CAAC,IAAI,CAAC,IAAI,QAAQ,KAAK,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,IAAI,CAAC;QACzE,MAAM,EAAE,CAAC,SAAS,CAChB,aAAa,EACb,QAAQ,GAAG,SAAS,GAAG,IAAI,GAAG,YAAY,GAAG,IAAI,EACjD,OAAO,CACR,CAAC;IACJ,CAAC;AACH,CAAC;AAED;;;;;;GAMG;AACH,MAAM,UAAU,mBAAmB,CAAC,GAAG,GAAG,OAAO,CAAC,GAAG,EAAE;IACrD,IAAI,CAAC;QACH,MAAM,MAAM,GAAG,QAAQ,CAAC,+BAA+B,EAAE;YACvD,GAAG;YACH,QAAQ,EAAE,OAAO;YACjB,KAAK,EAAE,CAAC,QAAQ,EAAE,MAAM,EAAE,QAAQ,CAAC;SACpC,CAAC,CAAC;QAEH,MAAM,MAAM,GAAG,MAAM,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC,MAAM,CAAC,OAAO,CAAC,CAAC;QAClD,OAAO,MAAM,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE;YACzB,MAAM,IAAI,GAAG,IAAI,CAAC,QAAQ,CAAC,CAAC,CAAC,CAAC;YAC9B,OAAO,IAAI,CAAC,KAAK,CAAC,QAAQ,CAAC,IAAI,CAAC,IAAI,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC;QACxD,CAAC,CAAC,CAAC;IACL,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,EAAE,CAAC;IACZ,CAAC;AACH,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,iBAAiB;IAC/B,OAAO,YAAY,CAAC;AACtB,CAAC"}

package/dist/lib/keygen.d.ts

@@ -0,0 +1,30 @@
+export interface KeyPair {
+    /** Private key string — starts with AGE-SECRET-KEY-1 */
+    identity: string;
+    /** Public key string — starts with age1 */
+    recipient: string;
+}
+/**
+ * Generate a new age X25519 keypair and return the strings.
+ */
+export declare function generateKeyPair(): Promise<KeyPair>;
+/**
+ * Generate a new keypair and write it to disk.
+ *
+ * @param outputFolder  Directory to write key.txt and key.pub (default: ".age")
+ * @param cwd           Base directory (default: process.cwd())
+ */
+export declare function generateKeyPairToFolder(outputFolder?: string, cwd?: string): Promise<{
+    keyFile: string;
+    pubFile: string;
+}>;
+/**
+ * Read the private key (identity) from a key file.
+ * Strips comments and blank lines; returns the first non-comment line.
+ */
+export declare function readIdentityFromFile(keyFile: string): Promise<string>;
+/**
+ * Read the public key (recipient) from a .pub file.
+ */
+export declare function readRecipientFromFile(pubFile: string): Promise<string>;
+//# sourceMappingURL=keygen.d.ts.map

package/dist/lib/keygen.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"keygen.d.ts","sourceRoot":"","sources":["../../src/lib/keygen.ts"],"names":[],"mappings":"AASA,MAAM,WAAW,OAAO;IACtB,wDAAwD;IACxD,QAAQ,EAAE,MAAM,CAAC;IACjB,2CAA2C;IAC3C,SAAS,EAAE,MAAM,CAAC;CACnB;AAED;;GAEG;AACH,wBAAsB,eAAe,IAAI,OAAO,CAAC,OAAO,CAAC,CAIxD;AAED;;;;;GAKG;AACH,wBAAsB,uBAAuB,CAC3C,YAAY,SAAS,EACrB,GAAG,SAAgB,GAClB,OAAO,CAAC;IAAE,OAAO,EAAE,MAAM,CAAC;IAAC,OAAO,EAAE,MAAM,CAAA;CAAE,CAAC,CAmB/C;AAED;;;GAGG;AACH,wBAAsB,oBAAoB,CAAC,OAAO,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC,CAW3E;AAED;;GAEG;AACH,wBAAsB,qBAAqB,CAAC,OAAO,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC,CAW5E"}

package/dist/lib/keygen.js

@@ -0,0 +1,66 @@
+/**
+ * Age keypair generation.
+ * Produces an identity (private key) and recipient (public key)
+ * in the standard age text format.
+ */
+import * as age from "age-encryption";
+import fs from "fs/promises";
+import path from "path";
+/**
+ * Generate a new age X25519 keypair and return the strings.
+ */
+export async function generateKeyPair() {
+    const identity = await age.generateIdentity();
+    const recipient = await age.identityToRecipient(identity);
+    return { identity, recipient };
+}
+/**
+ * Generate a new keypair and write it to disk.
+ *
+ * @param outputFolder  Directory to write key.txt and key.pub (default: ".age")
+ * @param cwd           Base directory (default: process.cwd())
+ */
+export async function generateKeyPairToFolder(outputFolder = ".age", cwd = process.cwd()) {
+    const { identity, recipient } = await generateKeyPair();
+    const absFolder = path.isAbsolute(outputFolder)
+        ? outputFolder
+        : path.join(cwd, outputFolder);
+    await fs.mkdir(absFolder, { recursive: true });
+    const keyFile = path.join(absFolder, "key.txt");
+    const pubFile = path.join(absFolder, "key.pub");
+    const timestamp = new Date().toISOString();
+    const keyContent = `# created: ${timestamp}\n# public key: ${recipient}\n${identity}\n`;
+    await fs.writeFile(keyFile, keyContent, { encoding: "utf-8", mode: 0o600 });
+    await fs.writeFile(pubFile, recipient + "\n", "utf-8");
+    return { keyFile, pubFile };
+}
+/**
+ * Read the private key (identity) from a key file.
+ * Strips comments and blank lines; returns the first non-comment line.
+ */
+export async function readIdentityFromFile(keyFile) {
+    const contents = await fs.readFile(keyFile, "utf-8");
+    const identity = contents
+        .split("\n")
+        .map((l) => l.trim())
+        .find((l) => l && !l.startsWith("#"));
+    if (!identity) {
+        throw new Error(`No valid age identity found in key file: ${keyFile}`);
+    }
+    return identity;
+}
+/**
+ * Read the public key (recipient) from a .pub file.
+ */
+export async function readRecipientFromFile(pubFile) {
+    const contents = await fs.readFile(pubFile, "utf-8");
+    const recipient = contents
+        .split("\n")
+        .map((l) => l.trim())
+        .find((l) => l && !l.startsWith("#"));
+    if (!recipient) {
+        throw new Error(`No valid age recipient found in pub file: ${pubFile}`);
+    }
+    return recipient;
+}
+//# sourceMappingURL=keygen.js.map

package/dist/lib/keygen.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"keygen.js","sourceRoot":"","sources":["../../src/lib/keygen.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AACH,OAAO,KAAK,GAAG,MAAM,gBAAgB,CAAC;AACtC,OAAO,EAAE,MAAM,aAAa,CAAC;AAC7B,OAAO,IAAI,MAAM,MAAM,CAAC;AASxB;;GAEG;AACH,MAAM,CAAC,KAAK,UAAU,eAAe;IACnC,MAAM,QAAQ,GAAG,MAAM,GAAG,CAAC,gBAAgB,EAAE,CAAC;IAC9C,MAAM,SAAS,GAAG,MAAM,GAAG,CAAC,mBAAmB,CAAC,QAAQ,CAAC,CAAC;IAC1D,OAAO,EAAE,QAAQ,EAAE,SAAS,EAAE,CAAC;AACjC,CAAC;AAED;;;;;GAKG;AACH,MAAM,CAAC,KAAK,UAAU,uBAAuB,CAC3C,YAAY,GAAG,MAAM,EACrB,GAAG,GAAG,OAAO,CAAC,GAAG,EAAE;IAEnB,MAAM,EAAE,QAAQ,EAAE,SAAS,EAAE,GAAG,MAAM,eAAe,EAAE,CAAC;IAExD,MAAM,SAAS,GAAG,IAAI,CAAC,UAAU,CAAC,YAAY,CAAC;QAC7C,CAAC,CAAC,YAAY;QACd,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE,YAAY,CAAC,CAAC;IAEjC,MAAM,EAAE,CAAC,KAAK,CAAC,SAAS,EAAE,EAAE,SAAS,EAAE,IAAI,EAAE,CAAC,CAAC;IAE/C,MAAM,OAAO,GAAG,IAAI,CAAC,IAAI,CAAC,SAAS,EAAE,SAAS,CAAC,CAAC;IAChD,MAAM,OAAO,GAAG,IAAI,CAAC,IAAI,CAAC,SAAS,EAAE,SAAS,CAAC,CAAC;IAEhD,MAAM,SAAS,GAAG,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE,CAAC;IAC3C,MAAM,UAAU,GAAG,cAAc,SAAS,mBAAmB,SAAS,KAAK,QAAQ,IAAI,CAAC;IAExF,MAAM,EAAE,CAAC,SAAS,CAAC,OAAO,EAAE,UAAU,EAAE,EAAE,QAAQ,EAAE,OAAO,EAAE,IAAI,EAAE,KAAK,EAAE,CAAC,CAAC;IAC5E,MAAM,EAAE,CAAC,SAAS,CAAC,OAAO,EAAE,SAAS,GAAG,IAAI,EAAE,OAAO,CAAC,CAAC;IAEvD,OAAO,EAAE,OAAO,EAAE,OAAO,EAAE,CAAC;AAC9B,CAAC;AAED;;;GAGG;AACH,MAAM,CAAC,KAAK,UAAU,oBAAoB,CAAC,OAAe;IACxD,MAAM,QAAQ,GAAG,MAAM,EAAE,CAAC,QAAQ,CAAC,OAAO,EAAE,OAAO,CAAC,CAAC;IACrD,MAAM,QAAQ,GAAG,QAAQ;SACtB,KAAK,CAAC,IAAI,CAAC;SACX,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,IAAI,EAAE,CAAC;SACpB,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,UAAU,CAAC,GAAG,CAAC,CAAC,CAAC;IAExC,IAAI,CAAC,QAAQ,EAAE,CAAC;QACd,MAAM,IAAI,KAAK,CAAC,4CAA4C,OAAO,EAAE,CAAC,CAAC;IACzE,CAAC;IACD,OAAO,QAAQ,CAAC;AAClB,CAAC;AAED;;GAEG;AACH,MAAM,CAAC,KAAK,UAAU,qBAAqB,CAAC,OAAe;IACzD,MAAM,QAAQ,GAAG,MAAM,EAAE,CAAC,QAAQ,CAAC,OAAO,EAAE,OAAO,CAAC,CAAC;IACrD,MAAM,SAAS,GAAG,QAAQ;SACvB,KAAK,CAAC,IAAI,CAAC;SACX,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,IAAI,EAAE,CAAC;SACpB,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,UAAU,CAAC,GAAG,CAAC,CAAC,CAAC;IAExC,IAAI,CAAC,SAAS,EAAE,CAAC;QACf,MAAM,IAAI,KAAK,CAAC,6CAA6C,OAAO,EAAE,CAAC,CAAC;IAC1E,CAAC;IACD,OAAO,SAAS,CAAC;AACnB,CAAC"}

package/dist/lib/logger.d.ts

@@ -0,0 +1,21 @@
+export declare const logger: {
+    /** Informational step message */
+    info(msg: string): void;
+    /** Success message */
+    success(msg: string): void;
+    /** Warning message */
+    warn(msg: string): void;
+    /** Error message */
+    error(msg: string): void;
+    /** Bold section header */
+    header(msg: string): void;
+    /** Dimmed detail line */
+    detail(msg: string): void;
+    /** Raw output with no prefix */
+    raw(msg: string): void;
+    /** Lock icon line — used when encrypting */
+    encrypting(from: string, to: string): void;
+    /** Unlock icon line — used when decrypting */
+    decrypting(from: string, to: string): void;
+};
+//# sourceMappingURL=logger.d.ts.map

package/dist/lib/logger.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"logger.d.ts","sourceRoot":"","sources":["../../src/lib/logger.ts"],"names":[],"mappings":"AAMA,eAAO,MAAM,MAAM;IACjB,iCAAiC;cACvB,MAAM,GAAG,IAAI;IAIvB,sBAAsB;iBACT,MAAM,GAAG,IAAI;IAI1B,sBAAsB;cACZ,MAAM,GAAG,IAAI;IAIvB,oBAAoB;eACT,MAAM,GAAG,IAAI;IAIxB,0BAA0B;gBACd,MAAM,GAAG,IAAI;IAIzB,yBAAyB;gBACb,MAAM,GAAG,IAAI;IAIzB,gCAAgC;aACvB,MAAM,GAAG,IAAI;IAItB,4CAA4C;qBAC3B,MAAM,MAAM,MAAM,GAAG,IAAI;IAU1C,8CAA8C;qBAC7B,MAAM,MAAM,MAAM,GAAG,IAAI;CAS3C,CAAC"}

package/dist/lib/logger.js

@@ -0,0 +1,52 @@
+/**
+ * Colorized logger for the envage CLI.
+ * Uses chalk for output — secrets are never logged.
+ */
+import chalk from "chalk";
+export const logger = {
+    /** Informational step message */
+    info(msg) {
+        console.log(chalk.cyan("ℹ") + " " + msg);
+    },
+    /** Success message */
+    success(msg) {
+        console.log(chalk.green("✔") + " " + chalk.green(msg));
+    },
+    /** Warning message */
+    warn(msg) {
+        console.warn(chalk.yellow("⚠") + " " + chalk.yellow(msg));
+    },
+    /** Error message */
+    error(msg) {
+        console.error(chalk.red("✖") + " " + chalk.red(msg));
+    },
+    /** Bold section header */
+    header(msg) {
+        console.log("\n" + chalk.bold(msg));
+    },
+    /** Dimmed detail line */
+    detail(msg) {
+        console.log("  " + chalk.dim(msg));
+    },
+    /** Raw output with no prefix */
+    raw(msg) {
+        console.log(msg);
+    },
+    /** Lock icon line — used when encrypting */
+    encrypting(from, to) {
+        console.log(chalk.blue("🔐") +
+            " Encrypting " +
+            chalk.cyan(from) +
+            " → " +
+            chalk.cyan(to));
+    },
+    /** Unlock icon line — used when decrypting */
+    decrypting(from, to) {
+        console.log(chalk.magenta("🔓") +
+            " Decrypting " +
+            chalk.cyan(from) +
+            " → " +
+            chalk.cyan(to));
+    },
+};
+//# sourceMappingURL=logger.js.map

package/dist/lib/logger.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"logger.js","sourceRoot":"","sources":["../../src/lib/logger.ts"],"names":[],"mappings":"AAAA;;;GAGG;AACH,OAAO,KAAK,MAAM,OAAO,CAAC;AAE1B,MAAM,CAAC,MAAM,MAAM,GAAG;IACpB,iCAAiC;IACjC,IAAI,CAAC,GAAW;QACd,OAAO,CAAC,GAAG,CAAC,KAAK,CAAC,IAAI,CAAC,GAAG,CAAC,GAAG,GAAG,GAAG,GAAG,CAAC,CAAC;IAC3C,CAAC;IAED,sBAAsB;IACtB,OAAO,CAAC,GAAW;QACjB,OAAO,CAAC,GAAG,CAAC,KAAK,CAAC,KAAK,CAAC,GAAG,CAAC,GAAG,GAAG,GAAG,KAAK,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC;IACzD,CAAC;IAED,sBAAsB;IACtB,IAAI,CAAC,GAAW;QACd,OAAO,CAAC,IAAI,CAAC,KAAK,CAAC,MAAM,CAAC,GAAG,CAAC,GAAG,GAAG,GAAG,KAAK,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,CAAC;IAC5D,CAAC;IAED,oBAAoB;IACpB,KAAK,CAAC,GAAW;QACf,OAAO,CAAC,KAAK,CAAC,KAAK,CAAC,GAAG,CAAC,GAAG,CAAC,GAAG,GAAG,GAAG,KAAK,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC,CAAC;IACvD,CAAC;IAED,0BAA0B;IAC1B,MAAM,CAAC,GAAW;QAChB,OAAO,CAAC,GAAG,CAAC,IAAI,GAAG,KAAK,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,CAAC;IACtC,CAAC;IAED,yBAAyB;IACzB,MAAM,CAAC,GAAW;QAChB,OAAO,CAAC,GAAG,CAAC,IAAI,GAAG,KAAK,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC,CAAC;IACrC,CAAC;IAED,gCAAgC;IAChC,GAAG,CAAC,GAAW;QACb,OAAO,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC;IACnB,CAAC;IAED,4CAA4C;IAC5C,UAAU,CAAC,IAAY,EAAE,EAAU;QACjC,OAAO,CAAC,GAAG,CACT,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC;YACd,cAAc;YACd,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC;YAChB,KAAK;YACL,KAAK,CAAC,IAAI,CAAC,EAAE,CAAC,CACjB,CAAC;IACJ,CAAC;IAED,8CAA8C;IAC9C,UAAU,CAAC,IAAY,EAAE,EAAU;QACjC,OAAO,CAAC,GAAG,CACT,KAAK,CAAC,OAAO,CAAC,IAAI,CAAC;YACjB,cAAc;YACd,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC;YAChB,KAAK;YACL,KAAK,CAAC,IAAI,CAAC,EAAE,CAAC,CACjB,CAAC;IACJ,CAAC;CACF,CAAC"}

package/dist/lib/status.d.ts

@@ -0,0 +1,14 @@
+import type { EnvStatus, EnvageConfig } from "../types.js";
+/**
+ * Check a single folder + env combination.
+ */
+export declare function checkEnvStatus(folder: string, env: string): Promise<EnvStatus>;
+/**
+ * Check all folder + env combinations defined in a config.
+ */
+export declare function getEnvStatus(config: EnvageConfig, cwd?: string): Promise<EnvStatus[]>;
+/**
+ * Check a single folder across all envs in a config.
+ */
+export declare function getFolderStatus(folder: string, config: EnvageConfig): Promise<EnvStatus[]>;
+//# sourceMappingURL=status.d.ts.map

package/dist/lib/status.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"status.d.ts","sourceRoot":"","sources":["../../src/lib/status.ts"],"names":[],"mappings":"AAKA,OAAO,KAAK,EAAE,SAAS,EAAE,YAAY,EAAE,MAAM,aAAa,CAAC;AAE3D;;GAEG;AACH,wBAAsB,cAAc,CAClC,MAAM,EAAE,MAAM,EACd,GAAG,EAAE,MAAM,GACV,OAAO,CAAC,SAAS,CAAC,CAUpB;AAED;;GAEG;AACH,wBAAsB,YAAY,CAChC,MAAM,EAAE,YAAY,EACpB,GAAG,SAAgB,GAClB,OAAO,CAAC,SAAS,EAAE,CAAC,CAWtB;AAED;;GAEG;AACH,wBAAsB,eAAe,CACnC,MAAM,EAAE,MAAM,EACd,MAAM,EAAE,YAAY,GACnB,OAAO,CAAC,SAAS,EAAE,CAAC,CAQtB"}

package/dist/lib/status.js

@@ -0,0 +1,50 @@
+/**
+ * Scans folders and reports on the encrypted/decrypted state of env files.
+ */
+import fs from "fs/promises";
+import path from "path";
+/**
+ * Check a single folder + env combination.
+ */
+export async function checkEnvStatus(folder, env) {
+    const decryptedPath = path.join(folder, `.env.${env}`);
+    const encryptedPath = path.join(folder, `.env.${env}.age`);
+    const [decrypted, encrypted] = await Promise.all([
+        fileExists(decryptedPath),
+        fileExists(encryptedPath),
+    ]);
+    return { folder, env, decrypted, encrypted, decryptedPath, encryptedPath };
+}
+/**
+ * Check all folder + env combinations defined in a config.
+ */
+export async function getEnvStatus(config, cwd = process.cwd()) {
+    const results = [];
+    for (const app of config.apps) {
+        const absFolder = path.isAbsolute(app) ? app : path.resolve(cwd, app);
+        for (const env of config.envs) {
+            results.push(await checkEnvStatus(absFolder, env));
+        }
+    }
+    return results;
+}
+/**
+ * Check a single folder across all envs in a config.
+ */
+export async function getFolderStatus(folder, config) {
+    const absFolder = path.isAbsolute(folder)
+        ? folder
+        : path.resolve(process.cwd(), folder);
+    return Promise.all(config.envs.map((env) => checkEnvStatus(absFolder, env)));
+}
+/** Helper: check if a file exists */
+async function fileExists(filePath) {
+    try {
+        await fs.access(filePath);
+        return true;
+    }
+    catch {
+        return false;
+    }
+}
+//# sourceMappingURL=status.js.map

package/dist/lib/status.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"status.js","sourceRoot":"","sources":["../../src/lib/status.ts"],"names":[],"mappings":"AAAA;;GAEG;AACH,OAAO,EAAE,MAAM,aAAa,CAAC;AAC7B,OAAO,IAAI,MAAM,MAAM,CAAC;AAGxB;;GAEG;AACH,MAAM,CAAC,KAAK,UAAU,cAAc,CAClC,MAAc,EACd,GAAW;IAEX,MAAM,aAAa,GAAG,IAAI,CAAC,IAAI,CAAC,MAAM,EAAE,QAAQ,GAAG,EAAE,CAAC,CAAC;IACvD,MAAM,aAAa,GAAG,IAAI,CAAC,IAAI,CAAC,MAAM,EAAE,QAAQ,GAAG,MAAM,CAAC,CAAC;IAE3D,MAAM,CAAC,SAAS,EAAE,SAAS,CAAC,GAAG,MAAM,OAAO,CAAC,GAAG,CAAC;QAC/C,UAAU,CAAC,aAAa,CAAC;QACzB,UAAU,CAAC,aAAa,CAAC;KAC1B,CAAC,CAAC;IAEH,OAAO,EAAE,MAAM,EAAE,GAAG,EAAE,SAAS,EAAE,SAAS,EAAE,aAAa,EAAE,aAAa,EAAE,CAAC;AAC7E,CAAC;AAED;;GAEG;AACH,MAAM,CAAC,KAAK,UAAU,YAAY,CAChC,MAAoB,EACpB,GAAG,GAAG,OAAO,CAAC,GAAG,EAAE;IAEnB,MAAM,OAAO,GAAgB,EAAE,CAAC;IAEhC,KAAK,MAAM,GAAG,IAAI,MAAM,CAAC,IAAI,EAAE,CAAC;QAC9B,MAAM,SAAS,GAAG,IAAI,CAAC,UAAU,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,IAAI,CAAC,OAAO,CAAC,GAAG,EAAE,GAAG,CAAC,CAAC;QACtE,KAAK,MAAM,GAAG,IAAI,MAAM,CAAC,IAAI,EAAE,CAAC;YAC9B,OAAO,CAAC,IAAI,CAAC,MAAM,cAAc,CAAC,SAAS,EAAE,GAAG,CAAC,CAAC,CAAC;QACrD,CAAC;IACH,CAAC;IAED,OAAO,OAAO,CAAC;AACjB,CAAC;AAED;;GAEG;AACH,MAAM,CAAC,KAAK,UAAU,eAAe,CACnC,MAAc,EACd,MAAoB;IAEpB,MAAM,SAAS,GAAG,IAAI,CAAC,UAAU,CAAC,MAAM,CAAC;QACvC,CAAC,CAAC,MAAM;QACR,CAAC,CAAC,IAAI,CAAC,OAAO,CAAC,OAAO,CAAC,GAAG,EAAE,EAAE,MAAM,CAAC,CAAC;IAExC,OAAO,OAAO,CAAC,GAAG,CAChB,MAAM,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,GAAG,EAAE,EAAE,CAAC,cAAc,CAAC,SAAS,EAAE,GAAG,CAAC,CAAC,CACzD,CAAC;AACJ,CAAC;AAED,qCAAqC;AACrC,KAAK,UAAU,UAAU,CAAC,QAAgB;IACxC,IAAI,CAAC;QACH,MAAM,EAAE,CAAC,MAAM,CAAC,QAAQ,CAAC,CAAC;QAC1B,OAAO,IAAI,CAAC;IACd,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,KAAK,CAAC;IACf,CAAC;AACH,CAAC"}

package/dist/types.d.ts

@@ -0,0 +1,40 @@
+/** Status of a single env/environment slot within a folder. */
+export interface EnvStatus {
+    /** The app folder path (e.g. "apps/web") */
+    folder: string;
+    /** The environment name (e.g. "dev", "prod") */
+    env: string;
+    /** Whether the plaintext .env.<env> file exists */
+    decrypted: boolean;
+    /** Whether the encrypted .env.<env>.age file exists */
+    encrypted: boolean;
+    /** Full path to the plaintext file */
+    decryptedPath: string;
+    /** Full path to the encrypted file */
+    encryptedPath: string;
+}
+/** Shape of envage.config.json */
+export interface EnvageConfig {
+    /** App/package folder paths relative to cwd (e.g. ["apps/web", "packages/api"]) */
+    apps: string[];
+    /** Environment names to manage (e.g. ["dev", "staging", "prod"]) */
+    envs: string[];
+    /** Path to the age private key file (default: ".age/key.txt") */
+    keyFile: string;
+    /** Path to the age public key file (default: ".age/key.pub") */
+    keyPubFile?: string;
+}
+/** Options for encryptEnv / decryptEnv */
+export interface EnvOptions {
+    /** App/package folder path */
+    folder: string;
+    /** Environment name */
+    env: string;
+    /** Path to age key file (for key-based encryption) */
+    keyFile?: string;
+    /** Passphrase (for passphrase-based encryption) */
+    passphrase?: string;
+}
+/** Default config values */
+export declare const DEFAULT_CONFIG: EnvageConfig;
+//# sourceMappingURL=types.d.ts.map

package/dist/types.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"types.d.ts","sourceRoot":"","sources":["../src/types.ts"],"names":[],"mappings":"AAAA,+DAA+D;AAC/D,MAAM,WAAW,SAAS;IACxB,4CAA4C;IAC5C,MAAM,EAAE,MAAM,CAAC;IACf,gDAAgD;IAChD,GAAG,EAAE,MAAM,CAAC;IACZ,mDAAmD;IACnD,SAAS,EAAE,OAAO,CAAC;IACnB,uDAAuD;IACvD,SAAS,EAAE,OAAO,CAAC;IACnB,sCAAsC;IACtC,aAAa,EAAE,MAAM,CAAC;IACtB,sCAAsC;IACtC,aAAa,EAAE,MAAM,CAAC;CACvB;AAED,kCAAkC;AAClC,MAAM,WAAW,YAAY;IAC3B,mFAAmF;IACnF,IAAI,EAAE,MAAM,EAAE,CAAC;IACf,oEAAoE;IACpE,IAAI,EAAE,MAAM,EAAE,CAAC;IACf,iEAAiE;IACjE,OAAO,EAAE,MAAM,CAAC;IAChB,gEAAgE;IAChE,UAAU,CAAC,EAAE,MAAM,CAAC;CACrB;AAED,0CAA0C;AAC1C,MAAM,WAAW,UAAU;IACzB,8BAA8B;IAC9B,MAAM,EAAE,MAAM,CAAC;IACf,uBAAuB;IACvB,GAAG,EAAE,MAAM,CAAC;IACZ,sDAAsD;IACtD,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,mDAAmD;IACnD,UAAU,CAAC,EAAE,MAAM,CAAC;CACrB;AAED,4BAA4B;AAC5B,eAAO,MAAM,cAAc,EAAE,YAK5B,CAAC"}

package/dist/types.js

@@ -0,0 +1,8 @@
+/** Default config values */
+export const DEFAULT_CONFIG = {
+    apps: [],
+    envs: ["dev", "staging", "prod"],
+    keyFile: ".age/key.txt",
+    keyPubFile: ".age/key.pub",
+};
+//# sourceMappingURL=types.js.map

package/dist/types.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"types.js","sourceRoot":"","sources":["../src/types.ts"],"names":[],"mappings":"AAwCA,4BAA4B;AAC5B,MAAM,CAAC,MAAM,cAAc,GAAiB;IAC1C,IAAI,EAAE,EAAE;IACR,IAAI,EAAE,CAAC,KAAK,EAAE,SAAS,EAAE,MAAM,CAAC;IAChC,OAAO,EAAE,cAAc;IACvB,UAAU,EAAE,cAAc;CAC3B,CAAC"}

package/package.json

@@ -0,0 +1,65 @@
+{
+  "name": "@asafarim/envage",
+  "version": "0.1.0",
+  "description": "Secure, age-based encryption/decryption for .env files across multiple environments and monorepo app folders",
+  "type": "module",
+  "main": "./dist/index.js",
+  "types": "./dist/index.d.ts",
+  "exports": {
+    ".": {
+      "import": "./dist/index.js",
+      "types": "./dist/index.d.ts"
+    }
+  },
+  "bin": {
+    "envage": "./bin/envage.js"
+  },
+  "files": [
+    "dist",
+    "bin",
+    "README.md"
+  ],
+  "keywords": [
+    "age",
+    "encryption",
+    "env",
+    "dotenv",
+    "monorepo",
+    "secrets",
+    "cli"
+  ],
+  "author": "Ali Safarim <asafarim@gmail.com>",
+  "license": "MIT",
+  "dependencies": {
+    "age-encryption": "^0.3.0",
+    "chalk": "^5.3.0",
+    "commander": "^12.1.0"
+  },
+  "devDependencies": {
+    "@types/jest": "^29.5.12",
+    "@types/node": "^20.14.0",
+    "jest": "^29.7.0",
+    "ts-jest": "^29.1.5",
+    "typescript": "^5.5.3"
+  },
+  "engines": {
+    "node": ">=20.0.0"
+  },
+  "repository": {
+    "type": "git",
+    "url": "https://github.com/AliSafari-IT/envage.git"
+  },
+  "bugs": {
+    "url": "https://github.com/AliSafari-IT/envage/issues"
+  },
+  "homepage": "https://AliSafari-IT.github.io/envage",
+  "scripts": {
+    "build": "tsc",
+    "dev": "tsc --watch",
+    "test": "node --experimental-vm-modules node_modules/jest/bin/jest.js --config jest.config.cjs",
+    "test:watch": "node --experimental-vm-modules node_modules/jest/bin/jest.js --config jest.config.cjs --watch",
+    "test:coverage": "node --experimental-vm-modules node_modules/jest/bin/jest.js --config jest.config.cjs --coverage",
+    "lint": "tsc --noEmit",
+    "typecheck": "tsc --noEmit"
+  }
+}