@chriscode/hush 4.2.0 → 5.0.1

package/dist/core/template.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"template.d.ts","sourceRoot":"","sources":["../../src/core/template.ts"],"names":[],"mappings":"AAIA,OAAO,EAAmB,KAAK,kBAAkB,EAAE,MAAM,kBAAkB,CAAC;AAC5E,OAAO,KAAK,EAAE,MAAM,EAAE,WAAW,EAAE,MAAM,aAAa,CAAC;AASvD,MAAM,WAAW,mBAAmB;IAClC,WAAW,EAAE,OAAO,CAAC;IACrB,WAAW,EAAE,MAAM,CAAC;IACpB,IAAI,EAAE,MAAM,EAAE,CAAC;IACf,KAAK,EAAE,MAAM,EAAE,CAAC;CACjB;AAED,wBAAgB,kBAAkB,CAChC,UAAU,EAAE,MAAM,EAClB,GAAG,EAAE,WAAW,GACf,mBAAmB,CAqCrB;AAED,wBAAgB,mBAAmB,CACjC,YAAY,EAAE,MAAM,EAAE,EACtB,WAAW,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,EACnC,OAAO,GAAE,kBAAuB,GAC/B,MAAM,EAAE,CAQV"}
+{"version":3,"file":"template.d.ts","sourceRoot":"","sources":["../../src/core/template.ts"],"names":[],"mappings":"AAGA,OAAO,EAAmB,KAAK,kBAAkB,EAAE,MAAM,kBAAkB,CAAC;AAC5E,OAAO,KAAK,EAAE,MAAM,EAAE,WAAW,EAAE,WAAW,EAAE,MAAM,aAAa,CAAC;AASpE,MAAM,WAAW,mBAAmB;IAClC,WAAW,EAAE,OAAO,CAAC;IACrB,WAAW,EAAE,MAAM,CAAC;IACpB,IAAI,EAAE,MAAM,EAAE,CAAC;IACf,KAAK,EAAE,MAAM,EAAE,CAAC;CACjB;AAED,wBAAgB,kBAAkB,CAChC,UAAU,EAAE,MAAM,EAClB,GAAG,EAAE,WAAW,EAChB,EAAE,EAAE,WAAW,CAAC,IAAI,CAAC,GACpB,mBAAmB,CAqCrB;AAED,wBAAgB,mBAAmB,CACjC,YAAY,EAAE,MAAM,EAAE,EACtB,WAAW,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,EACnC,OAAO,GAAE,kBAAuB,GAC/B,MAAM,EAAE,CAQV"}

package/dist/core/template.js

@@ -1,31 +1,30 @@
-import { existsSync, readFileSync } from 'node:fs';
 import { join } from 'node:path';
 import { parseEnvContent } from './parse.js';
 import { mergeVars } from './merge.js';
 import { interpolateVars } from './interpolate.js';
 const TEMPLATE_FILES = {
-    base: '.env',
-    development: '.env.development',
-    production: '.env.production',
-    local: '.env.local',
+    base: '.hush',
+    development: '.hush.development',
+    production: '.hush.production',
+    local: '.hush.local',
 };
-export function loadLocalTemplates(contextDir, env) {
+export function loadLocalTemplates(contextDir, env, fs) {
     const files = [];
     const varSources = [];
     const basePath = join(contextDir, TEMPLATE_FILES.base);
-    if (existsSync(basePath)) {
+    if (fs.existsSync(basePath)) {
         files.push(TEMPLATE_FILES.base);
-        varSources.push(parseEnvContent(readFileSync(basePath, 'utf-8')));
+        varSources.push(parseEnvContent(fs.readFileSync(basePath, 'utf-8')));
     }
     const envPath = join(contextDir, TEMPLATE_FILES[env]);
-    if (existsSync(envPath)) {
+    if (fs.existsSync(envPath)) {
         files.push(TEMPLATE_FILES[env]);
-        varSources.push(parseEnvContent(readFileSync(envPath, 'utf-8')));
+        varSources.push(parseEnvContent(fs.readFileSync(envPath, 'utf-8')));
     }
     const localPath = join(contextDir, TEMPLATE_FILES.local);
-    if (existsSync(localPath)) {
+    if (fs.existsSync(localPath)) {
         files.push(TEMPLATE_FILES.local);
-        varSources.push(parseEnvContent(readFileSync(localPath, 'utf-8')));
+        varSources.push(parseEnvContent(fs.readFileSync(localPath, 'utf-8')));
     }
     if (varSources.length === 0) {
         return {

package/dist/lib/age.js

@@ -1,5 +1,5 @@
 import { execSync } from 'node:child_process';
-import { existsSync, mkdirSync, readFileSync, readdirSync, writeFileSync } from 'node:fs';
+import { fs } from './fs.js';
 import { join, dirname } from 'node:path';
 import { homedir } from 'node:os';
 const KEYS_DIR = join(homedir(), '.config', 'sops', 'age', 'keys');
@@ -30,29 +30,29 @@ export function keyPath(project) {
     return join(KEYS_DIR, `${project.replace(/\//g, '-')}.txt`);
 }
 export function keyExists(project) {
-    return existsSync(keyPath(project));
+    return fs.existsSync(keyPath(project));
 }
 export function keySave(project, key) {
     const path = keyPath(project);
-    mkdirSync(dirname(path), { recursive: true });
-    writeFileSync(path, `# project: ${project}\n# public key: ${key.public}\n${key.private}\n`, { mode: 0o600 });
+    fs.mkdirSync(dirname(path), { recursive: true });
+    fs.writeFileSync(path, `# project: ${project}\n# public key: ${key.public}\n${key.private}\n`, { mode: 0o600 });
 }
 export function keyLoad(project) {
     const path = keyPath(project);
-    if (!existsSync(path))
+    if (!fs.existsSync(path))
         return null;
-    const content = readFileSync(path, 'utf-8');
+    const content = fs.readFileSync(path, 'utf-8');
     const pub = content.match(/# public key: (age1[a-z0-9]+)/)?.[1];
     const priv = content.match(/(AGE-SECRET-KEY-[A-Z0-9]+)/)?.[1];
     return pub && priv ? { private: priv, public: pub } : null;
 }
 export function keysList() {
-    if (!existsSync(KEYS_DIR))
+    if (!fs.existsSync(KEYS_DIR))
         return [];
-    return readdirSync(KEYS_DIR)
+    return fs.readdirSync(KEYS_DIR)
         .filter(f => f.endsWith('.txt'))
         .map(f => {
-        const content = readFileSync(join(KEYS_DIR, f), 'utf-8');
+        const content = fs.readFileSync(join(KEYS_DIR, f), 'utf-8');
         const project = content.match(/# project: (.+)/)?.[1] ?? content.match(/# repo: (.+)/)?.[1];
         const pub = content.match(/# public key: (age1[a-z0-9]+)/)?.[1];
         return project && pub ? { project, public: pub } : null;

package/dist/lib/fs.d.ts

@@ -0,0 +1,25 @@
+import { type PathLike, type WriteFileOptions } from 'node:fs';
+/**
+ * Filesystem wrapper to allow for easier testing and isolation of side effects.
+ * All core logic and commands should use these instead of direct node:fs calls.
+ */
+export declare const fs: {
+    existsSync: (path: PathLike) => boolean;
+    readFileSync: (path: PathLike, options?: {
+        encoding?: BufferEncoding;
+        flag?: string;
+    } | BufferEncoding) => string | Buffer;
+    writeFileSync: (path: PathLike, data: string | Uint8Array, options?: WriteFileOptions) => void;
+    mkdirSync: (path: PathLike, options?: {
+        recursive?: boolean;
+        mode?: number;
+    }) => string | undefined;
+    readdirSync: (path: PathLike, options?: {
+        recursive?: boolean;
+    }) => string[];
+    unlinkSync: (path: PathLike) => void;
+    statSync: (path: PathLike) => import("fs").Stats;
+    fstatSync: (fd: number) => import("fs").Stats;
+    renameSync: (oldPath: PathLike, newPath: PathLike) => void;
+};
+//# sourceMappingURL=fs.d.ts.map

package/dist/lib/fs.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"fs.d.ts","sourceRoot":"","sources":["../../src/lib/fs.ts"],"names":[],"mappings":"AAAA,OAAO,EAUL,KAAK,QAAQ,EACb,KAAK,gBAAgB,EACtB,MAAM,SAAS,CAAC;AAEjB;;;GAGG;AAEH,eAAO,MAAM,EAAE;uBACM,QAAQ,KAAG,OAAO;yBAIhB,QAAQ,YAAY;QAAE,QAAQ,CAAC,EAAE,cAAc,CAAC;QAAC,IAAI,CAAC,EAAE,MAAM,CAAA;KAAE,GAAG,cAAc,KAAG,MAAM,GAAG,MAAM;0BAKlG,QAAQ,QAAQ,MAAM,GAAG,UAAU,YAAY,gBAAgB,KAAG,IAAI;sBAI1E,QAAQ,YAAY;QAAE,SAAS,CAAC,EAAE,OAAO,CAAC;QAAC,IAAI,CAAC,EAAE,MAAM,CAAA;KAAE,KAAG,MAAM,GAAG,SAAS;wBAI7E,QAAQ,YAAY;QAAE,SAAS,CAAC,EAAE,OAAO,CAAA;KAAE,KAAG,MAAM,EAAE;uBAKvD,QAAQ,KAAG,IAAI;qBAIjB,QAAQ;oBAIT,MAAM;0BAIA,QAAQ,WAAW,QAAQ,KAAG,IAAI;CAGzD,CAAC"}

package/dist/lib/fs.js

@@ -0,0 +1,36 @@
+import { existsSync as nodeExistsSync, readFileSync as nodeReadFileSync, writeFileSync as nodeWriteFileSync, mkdirSync as nodeMkdirSync, readdirSync as nodeReaddirSync, unlinkSync as nodeUnlinkSync, statSync as nodeStatSync, fstatSync as nodeFstatSync, renameSync as nodeRenameSync, } from 'node:fs';
+/**
+ * Filesystem wrapper to allow for easier testing and isolation of side effects.
+ * All core logic and commands should use these instead of direct node:fs calls.
+ */
+export const fs = {
+    existsSync: (path) => {
+        return nodeExistsSync(path);
+    },
+    readFileSync: (path, options) => {
+        // @ts-ignore - handled by overloads in node:fs
+        return nodeReadFileSync(path, options);
+    },
+    writeFileSync: (path, data, options) => {
+        nodeWriteFileSync(path, data, options);
+    },
+    mkdirSync: (path, options) => {
+        return nodeMkdirSync(path, options);
+    },
+    readdirSync: (path, options) => {
+        // @ts-ignore - handled by node:fs
+        return nodeReaddirSync(path, options);
+    },
+    unlinkSync: (path) => {
+        nodeUnlinkSync(path);
+    },
+    statSync: (path) => {
+        return nodeStatSync(path);
+    },
+    fstatSync: (fd) => {
+        return nodeFstatSync(fd);
+    },
+    renameSync: (oldPath, newPath) => {
+        nodeRenameSync(oldPath, newPath);
+    }
+};

package/dist/lib/onepassword.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"onepassword.d.ts","sourceRoot":"","sources":["../../src/lib/onepassword.ts"],"names":[],"mappings":"AAEA,eAAO,MAAM,cAAc,qBAAqB,CAAC;AAUjD,wBAAgB,WAAW,IAAI,OAAO,CAOrC;AAED,wBAAgB,WAAW,IAAI,OAAO,CAOrC;AAED,wBAAgB,QAAQ,CAAC,OAAO,EAAE,MAAM,EAAE,KAAK,CAAC,EAAE,MAAM,GAAG,MAAM,GAAG,IAAI,CASvE;AAED,wBAAgB,UAAU,CAAC,OAAO,EAAE,MAAM,EAAE,UAAU,EAAE,MAAM,EAAE,SAAS,EAAE,MAAM,EAAE,KAAK,CAAC,EAAE,MAAM,GAAG,IAAI,CAiBvG;AAED,wBAAgB,UAAU,CAAC,KAAK,CAAC,EAAE,MAAM,GAAG,MAAM,EAAE,CAYnD"}
+{"version":3,"file":"onepassword.d.ts","sourceRoot":"","sources":["../../src/lib/onepassword.ts"],"names":[],"mappings":"AAGA,eAAO,MAAM,cAAc,qBAAqB,CAAC;AA8CjD,wBAAgB,WAAW,IAAI,OAAO,CAOrC;AAED,wBAAgB,WAAW,IAAI,OAAO,CAOrC;AAED,wBAAgB,QAAQ,CAAC,OAAO,EAAE,MAAM,EAAE,KAAK,CAAC,EAAE,MAAM,GAAG,MAAM,GAAG,IAAI,CASvE;AAED,wBAAgB,UAAU,CAAC,OAAO,EAAE,MAAM,EAAE,UAAU,EAAE,MAAM,EAAE,SAAS,EAAE,MAAM,EAAE,KAAK,CAAC,EAAE,MAAM,GAAG,IAAI,CAiBvG;AAED,wBAAgB,UAAU,CAAC,KAAK,CAAC,EAAE,MAAM,GAAG,MAAM,EAAE,CAYnD"}

package/dist/lib/onepassword.js

@@ -1,6 +1,43 @@
 import { execSync } from 'node:child_process';
+import { platform } from 'node:os';
 export const OP_ITEM_PREFIX = 'SOPS Key - hush/';
-function opExec(command) {
+function showBiometricNotification(reason) {
+    const title = 'Hush - 1Password';
+    const message = `${reason}\n\n1Password biometric prompt will appear next.`;
+    try {
+        switch (platform()) {
+            case 'darwin': {
+                const script = `display dialog "${message}" with title "${title}" buttons {"Continue"} default button "Continue" with icon note`;
+                execSync(`osascript -e '${script}'`, { stdio: 'pipe' });
+                break;
+            }
+            case 'win32': {
+                const psScript = `
+          Add-Type -AssemblyName System.Windows.Forms
+          [System.Windows.Forms.MessageBox]::Show("${message}", "${title}", "OK", "Information")
+        `;
+                execSync(`powershell -Command "${psScript}"`, { stdio: 'pipe' });
+                break;
+            }
+            case 'linux': {
+                try {
+                    execSync(`zenity --info --title="${title}" --text="${message}"`, { stdio: 'pipe' });
+                }
+                catch {
+                    execSync(`kdialog --msgbox "${message}" --title "${title}"`, { stdio: 'pipe' });
+                }
+                break;
+            }
+        }
+    }
+    catch {
+        // If GUI fails, fall through silently - better to continue than block
+    }
+}
+function opExec(command, reason) {
+    if (reason) {
+        showBiometricNotification(reason);
+    }
     return execSync(`op signin && ${command}`, {
         encoding: 'utf-8',
         stdio: 'pipe',
@@ -29,7 +66,7 @@ export function opGetKey(project, vault) {
     try {
         const vaultArgs = vault ? ['--vault', vault] : [];
         const command = ['op', 'item', 'get', `${OP_ITEM_PREFIX}${project}`, ...vaultArgs, '--fields', 'password', '--reveal'].join(' ');
-        const result = opExec(command);
+        const result = opExec(command, `Retrieving encryption key for "${project}" from 1Password.`);
         return result.trim() || null;
     }
     catch {
@@ -47,7 +84,7 @@ export function opStoreKey(project, privateKey, publicKey, vault) {
         `"public_key[text]=${publicKey}"`,
     ].join(' ');
     try {
-        opExec(command);
+        opExec(command, `Backing up encryption key for "${project}" to 1Password.`);
     }
     catch (err) {
         const message = err instanceof Error ? err.message : 'Failed to store in 1Password';
@@ -58,7 +95,7 @@ export function opListKeys(vault) {
     try {
         const vaultArgs = vault ? ['--vault', vault] : [];
         const command = ['op', 'item', 'list', '--categories', 'password', ...vaultArgs, '--format', 'json'].join(' ');
-        const result = opExec(command);
+        const result = opExec(command, 'Listing Hush encryption keys stored in 1Password.');
         const items = JSON.parse(result);
         return items
             .filter(i => i.title.startsWith(OP_ITEM_PREFIX))

package/dist/types.d.ts

@@ -50,6 +50,7 @@ export interface SetOptions {
     root: string;
     file?: 'shared' | 'development' | 'production' | 'local';
     key?: string;
+    value?: string;
     gui?: boolean;
 }
 export interface RunOptions {
@@ -119,4 +120,94 @@ export interface TraceOptions {
 }
 export declare const DEFAULT_SOURCES: SourceFiles;
 export declare const FORMAT_OUTPUT_FILES: Record<OutputFormat, Record<Environment, string>>;
+export interface HushContext {
+    fs: {
+        existsSync(path: string): boolean;
+        readFileSync(path: string, options?: {
+            encoding?: BufferEncoding;
+            flag?: string;
+        } | BufferEncoding): string | Buffer;
+        writeFileSync(path: string, data: string | Uint8Array, options?: {
+            encoding?: BufferEncoding;
+            mode?: number;
+            flag?: string;
+        } | BufferEncoding | null): void;
+        mkdirSync(path: string, options?: {
+            recursive?: boolean;
+            mode?: number;
+        }): string | undefined;
+        readdirSync(path: string, options?: {
+            recursive?: boolean;
+            withFileTypes?: boolean;
+        }): (string | {
+            name: string;
+            isDirectory(): boolean;
+        })[];
+        unlinkSync(path: string): void;
+        statSync(path: string): {
+            isDirectory(): boolean;
+            mtime: Date;
+        };
+        renameSync(oldPath: string, newPath: string): void;
+    };
+    path: {
+        join(...paths: string[]): string;
+    };
+    exec: {
+        spawnSync(command: string, args: string[], options?: any): {
+            status: number | null;
+            stdout: string | Buffer;
+            stderr: string | Buffer;
+            error?: Error;
+        };
+        execSync(command: string, options?: any): string | Buffer;
+    };
+    logger: {
+        log(message: string): void;
+        error(message: string): void;
+        warn(message: string): void;
+        info(message: string): void;
+    };
+    process: {
+        cwd(): string;
+        exit(code: number): never;
+        env: NodeJS.ProcessEnv;
+        stdin: NodeJS.ReadStream;
+        stdout: NodeJS.WriteStream;
+    };
+    config: {
+        loadConfig(root: string): HushConfig;
+        findProjectRoot(startDir: string): {
+            configPath: string;
+            projectRoot: string;
+        } | null;
+    };
+    age: {
+        ageAvailable(): boolean;
+        ageGenerate(): {
+            private: string;
+            public: string;
+        };
+        keyExists(project: string): boolean;
+        keySave(project: string, key: {
+            private: string;
+            public: string;
+        }): void;
+        keyPath(project: string): string;
+        keyLoad(project: string): {
+            private: string;
+            public: string;
+        } | null;
+        agePublicFromPrivate(privateKey: string): string;
+    };
+    onepassword: {
+        opAvailable(): boolean;
+        opGetKey(project: string): string | null;
+        opStoreKey(project: string, privateKey: string, publicKey: string): void;
+    };
+    sops: {
+        decrypt(path: string): string;
+        isSopsInstalled(): boolean;
+    };
+}
 //# sourceMappingURL=types.d.ts.map

package/dist/types.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"types.d.ts","sourceRoot":"","sources":["../src/types.ts"],"names":[],"mappings":"AAAA,MAAM,MAAM,YAAY,GAAG,QAAQ,GAAG,UAAU,GAAG,MAAM,GAAG,OAAO,GAAG,MAAM,CAAC;AAC7E,MAAM,MAAM,WAAW,GAAG,aAAa,GAAG,YAAY,CAAC;AACvD,MAAM,MAAM,mBAAmB,GAAG,oBAAoB,GAAG,kBAAkB,CAAC;AAE5E,MAAM,WAAW,2BAA2B;IAC1C,IAAI,EAAE,oBAAoB,CAAC;CAC5B;AAED,MAAM,WAAW,yBAAyB;IACxC,IAAI,EAAE,kBAAkB,CAAC;IACzB,OAAO,EAAE,MAAM,CAAC;CACjB;AAED,MAAM,MAAM,UAAU,GAAG,2BAA2B,GAAG,yBAAyB,CAAC;AAEjF,MAAM,WAAW,MAAM;IACrB,IAAI,EAAE,MAAM,CAAC;IACb,IAAI,EAAE,MAAM,CAAC;IACb,MAAM,EAAE,YAAY,CAAC;IACrB,OAAO,CAAC,EAAE,MAAM,EAAE,CAAC;IACnB,OAAO,CAAC,EAAE,MAAM,EAAE,CAAC;IACnB,OAAO,CAAC,EAAE,UAAU,CAAC;CACtB;AAED,MAAM,WAAW,WAAW;IAC1B,MAAM,EAAE,MAAM,CAAC;IACf,WAAW,EAAE,MAAM,CAAC;IACpB,UAAU,EAAE,MAAM,CAAC;IACnB,KAAK,EAAE,MAAM,CAAC;CACf;AAED,MAAM,WAAW,UAAU;IACzB,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,OAAO,EAAE,WAAW,CAAC;IACrB,OAAO,EAAE,MAAM,EAAE,CAAC;CACnB;AAED,eAAO,MAAM,sBAAsB,IAAI,CAAC;AAExC,MAAM,WAAW,MAAM;IACrB,GAAG,EAAE,MAAM,CAAC;IACZ,KAAK,EAAE,MAAM,CAAC;CACf;AAED,MAAM,WAAW,cAAc;IAC7B,IAAI,EAAE,MAAM,CAAC;CACd;AAED,MAAM,WAAW,cAAc;IAC7B,IAAI,EAAE,MAAM,CAAC;IACb,GAAG,EAAE,WAAW,CAAC;IACjB,KAAK,EAAE,OAAO,CAAC;CAChB;AAED,MAAM,WAAW,WAAW;IAC1B,IAAI,EAAE,MAAM,CAAC;IACb,IAAI,CAAC,EAAE,QAAQ,GAAG,aAAa,GAAG,YAAY,GAAG,OAAO,CAAC;CAC1D;AAED,MAAM,WAAW,UAAU;IACzB,IAAI,EAAE,MAAM,CAAC;IACb,IAAI,CAAC,EAAE,QAAQ,GAAG,aAAa,GAAG,YAAY,GAAG,OAAO,CAAC;IACzD,GAAG,CAAC,EAAE,MAAM,CAAC;IACb,GAAG,CAAC,EAAE,OAAO,CAAC;CACf;AAED,MAAM,WAAW,UAAU;IACzB,IAAI,EAAE,MAAM,CAAC;IACb,GAAG,EAAE,WAAW,CAAC;IACjB,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,OAAO,EAAE,MAAM,EAAE,CAAC;CACnB;AAED,MAAM,WAAW,WAAW;IAC1B,IAAI,EAAE,MAAM,CAAC;IACb,MAAM,EAAE,OAAO,CAAC;IAChB,OAAO,EAAE,OAAO,CAAC;IACjB,MAAM,CAAC,EAAE,MAAM,CAAC;CACjB;AAED,MAAM,WAAW,aAAa;IAC5B,IAAI,EAAE,MAAM,CAAC;CACd;AAED,MAAM,WAAW,WAAW;IAC1B,IAAI,EAAE,MAAM,CAAC;CACd;AAED,MAAM,WAAW,WAAW;IAC1B,IAAI,EAAE,MAAM,CAAC;IACb,GAAG,EAAE,WAAW,CAAC;CAClB;AAED,MAAM,WAAW,YAAY;IAC3B,IAAI,EAAE,MAAM,CAAC;IACb,IAAI,EAAE,OAAO,CAAC;IACd,IAAI,EAAE,OAAO,CAAC;IACd,KAAK,EAAE,OAAO,CAAC;IACf,WAAW,EAAE,OAAO,CAAC;IACrB,aAAa,EAAE,OAAO,CAAC;IACvB,cAAc,CAAC,EAAE,OAAO,CAAC;CAC1B;AAED,MAAM,MAAM,cAAc,GAAG,gBAAgB,GAAG,mBAAmB,GAAG,gBAAgB,GAAG,oBAAoB,CAAC;AAE9G,MAAM,WAAW,eAAe;IAC9B,MAAM,EAAE,MAAM,CAAC;IACf,SAAS,EAAE,MAAM,CAAC;IAClB,MAAM,EAAE,OAAO,CAAC;IAChB,KAAK,EAAE,MAAM,EAAE,CAAC;IAChB,OAAO,EAAE,MAAM,EAAE,CAAC;IAClB,OAAO,EAAE,MAAM,EAAE,CAAC;IAClB,KAAK,CAAC,EAAE,cAAc,CAAC;CACxB;AAED,MAAM,WAAW,mBAAmB;IAClC,IAAI,EAAE,MAAM,CAAC;IACb,QAAQ,EAAE,MAAM,CAAC;CAClB;AAED,MAAM,WAAW,WAAW;IAC1B,MAAM,EAAE,IAAI,GAAG,OAAO,GAAG,OAAO,GAAG,WAAW,CAAC;IAC/C,KAAK,EAAE,eAAe,EAAE,CAAC;IACzB,cAAc,CAAC,EAAE,mBAAmB,EAAE,CAAC;CACxC;AAED,MAAM,WAAW,YAAY;IAC3B,IAAI,EAAE,MAAM,CAAC;IACb,MAAM,CAAC,EAAE,OAAO,CAAC;IACjB,KAAK,CAAC,EAAE,OAAO,CAAC;CACjB;AAED,MAAM,WAAW,cAAc;IAC7B,IAAI,EAAE,MAAM,CAAC;IACb,GAAG,EAAE,WAAW,CAAC;IACjB,MAAM,EAAE,MAAM,CAAC;CAChB;AAED,MAAM,WAAW,YAAY;IAC3B,IAAI,EAAE,MAAM,CAAC;IACb,GAAG,EAAE,WAAW,CAAC;IACjB,GAAG,EAAE,MAAM,CAAC;CACb;AAED,eAAO,MAAM,eAAe,EAAE,WAK7B,CAAC;AAEF,eAAO,MAAM,mBAAmB,EAAE,MAAM,CAAC,YAAY,EAAE,MAAM,CAAC,WAAW,EAAE,MAAM,CAAC,CAqBjF,CAAC"}
+{"version":3,"file":"types.d.ts","sourceRoot":"","sources":["../src/types.ts"],"names":[],"mappings":"AAAA,MAAM,MAAM,YAAY,GAAG,QAAQ,GAAG,UAAU,GAAG,MAAM,GAAG,OAAO,GAAG,MAAM,CAAC;AAC7E,MAAM,MAAM,WAAW,GAAG,aAAa,GAAG,YAAY,CAAC;AACvD,MAAM,MAAM,mBAAmB,GAAG,oBAAoB,GAAG,kBAAkB,CAAC;AAE5E,MAAM,WAAW,2BAA2B;IAC1C,IAAI,EAAE,oBAAoB,CAAC;CAC5B;AAED,MAAM,WAAW,yBAAyB;IACxC,IAAI,EAAE,kBAAkB,CAAC;IACzB,OAAO,EAAE,MAAM,CAAC;CACjB;AAED,MAAM,MAAM,UAAU,GAAG,2BAA2B,GAAG,yBAAyB,CAAC;AAEjF,MAAM,WAAW,MAAM;IACrB,IAAI,EAAE,MAAM,CAAC;IACb,IAAI,EAAE,MAAM,CAAC;IACb,MAAM,EAAE,YAAY,CAAC;IACrB,OAAO,CAAC,EAAE,MAAM,EAAE,CAAC;IACnB,OAAO,CAAC,EAAE,MAAM,EAAE,CAAC;IACnB,OAAO,CAAC,EAAE,UAAU,CAAC;CACtB;AAED,MAAM,WAAW,WAAW;IAC1B,MAAM,EAAE,MAAM,CAAC;IACf,WAAW,EAAE,MAAM,CAAC;IACpB,UAAU,EAAE,MAAM,CAAC;IACnB,KAAK,EAAE,MAAM,CAAC;CACf;AAED,MAAM,WAAW,UAAU;IACzB,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,OAAO,EAAE,WAAW,CAAC;IACrB,OAAO,EAAE,MAAM,EAAE,CAAC;CACnB;AAED,eAAO,MAAM,sBAAsB,IAAI,CAAC;AAExC,MAAM,WAAW,MAAM;IACrB,GAAG,EAAE,MAAM,CAAC;IACZ,KAAK,EAAE,MAAM,CAAC;CACf;AAED,MAAM,WAAW,cAAc;IAC7B,IAAI,EAAE,MAAM,CAAC;CACd;AAED,MAAM,WAAW,cAAc;IAC7B,IAAI,EAAE,MAAM,CAAC;IACb,GAAG,EAAE,WAAW,CAAC;IACjB,KAAK,EAAE,OAAO,CAAC;CAChB;AAED,MAAM,WAAW,WAAW;IAC1B,IAAI,EAAE,MAAM,CAAC;IACb,IAAI,CAAC,EAAE,QAAQ,GAAG,aAAa,GAAG,YAAY,GAAG,OAAO,CAAC;CAC1D;AAED,MAAM,WAAW,UAAU;IACzB,IAAI,EAAE,MAAM,CAAC;IACb,IAAI,CAAC,EAAE,QAAQ,GAAG,aAAa,GAAG,YAAY,GAAG,OAAO,CAAC;IACzD,GAAG,CAAC,EAAE,MAAM,CAAC;IACb,KAAK,CAAC,EAAE,MAAM,CAAC;IACf,GAAG,CAAC,EAAE,OAAO,CAAC;CACf;AAED,MAAM,WAAW,UAAU;IACzB,IAAI,EAAE,MAAM,CAAC;IACb,GAAG,EAAE,WAAW,CAAC;IACjB,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,OAAO,EAAE,MAAM,EAAE,CAAC;CACnB;AAED,MAAM,WAAW,WAAW;IAC1B,IAAI,EAAE,MAAM,CAAC;IACb,MAAM,EAAE,OAAO,CAAC;IAChB,OAAO,EAAE,OAAO,CAAC;IACjB,MAAM,CAAC,EAAE,MAAM,CAAC;CACjB;AAED,MAAM,WAAW,aAAa;IAC5B,IAAI,EAAE,MAAM,CAAC;CACd;AAED,MAAM,WAAW,WAAW;IAC1B,IAAI,EAAE,MAAM,CAAC;CACd;AAED,MAAM,WAAW,WAAW;IAC1B,IAAI,EAAE,MAAM,CAAC;IACb,GAAG,EAAE,WAAW,CAAC;CAClB;AAED,MAAM,WAAW,YAAY;IAC3B,IAAI,EAAE,MAAM,CAAC;IACb,IAAI,EAAE,OAAO,CAAC;IACd,IAAI,EAAE,OAAO,CAAC;IACd,KAAK,EAAE,OAAO,CAAC;IACf,WAAW,EAAE,OAAO,CAAC;IACrB,aAAa,EAAE,OAAO,CAAC;IACvB,cAAc,CAAC,EAAE,OAAO,CAAC;CAC1B;AAED,MAAM,MAAM,cAAc,GAAG,gBAAgB,GAAG,mBAAmB,GAAG,gBAAgB,GAAG,oBAAoB,CAAC;AAE9G,MAAM,WAAW,eAAe;IAC9B,MAAM,EAAE,MAAM,CAAC;IACf,SAAS,EAAE,MAAM,CAAC;IAClB,MAAM,EAAE,OAAO,CAAC;IAChB,KAAK,EAAE,MAAM,EAAE,CAAC;IAChB,OAAO,EAAE,MAAM,EAAE,CAAC;IAClB,OAAO,EAAE,MAAM,EAAE,CAAC;IAClB,KAAK,CAAC,EAAE,cAAc,CAAC;CACxB;AAED,MAAM,WAAW,mBAAmB;IAClC,IAAI,EAAE,MAAM,CAAC;IACb,QAAQ,EAAE,MAAM,CAAC;CAClB;AAED,MAAM,WAAW,WAAW;IAC1B,MAAM,EAAE,IAAI,GAAG,OAAO,GAAG,OAAO,GAAG,WAAW,CAAC;IAC/C,KAAK,EAAE,eAAe,EAAE,CAAC;IACzB,cAAc,CAAC,EAAE,mBAAmB,EAAE,CAAC;CACxC;AAED,MAAM,WAAW,YAAY;IAC3B,IAAI,EAAE,MAAM,CAAC;IACb,MAAM,CAAC,EAAE,OAAO,CAAC;IACjB,KAAK,CAAC,EAAE,OAAO,CAAC;CACjB;AAED,MAAM,WAAW,cAAc;IAC7B,IAAI,EAAE,MAAM,CAAC;IACb,GAAG,EAAE,WAAW,CAAC;IACjB,MAAM,EAAE,MAAM,CAAC;CAChB;AAED,MAAM,WAAW,YAAY;IAC3B,IAAI,EAAE,MAAM,CAAC;IACb,GAAG,EAAE,WAAW,CAAC;IACjB,GAAG,EAAE,MAAM,CAAC;CACb;AAED,eAAO,MAAM,eAAe,EAAE,WAK7B,CAAC;AAEF,eAAO,MAAM,mBAAmB,EAAE,MAAM,CAAC,YAAY,EAAE,MAAM,CAAC,WAAW,EAAE,MAAM,CAAC,CAqBjF,CAAC;AAEF,MAAM,WAAW,WAAW;IAC1B,EAAE,EAAE;QACF,UAAU,CAAC,IAAI,EAAE,MAAM,GAAG,OAAO,CAAC;QAClC,YAAY,CAAC,IAAI,EAAE,MAAM,EAAE,OAAO,CAAC,EAAE;YAAE,QAAQ,CAAC,EAAE,cAAc,CAAC;YAAC,IAAI,CAAC,EAAE,MAAM,CAAA;SAAE,GAAG,cAAc,GAAG,MAAM,GAAG,MAAM,CAAC;QACrH,aAAa,CAAC,IAAI,EAAE,MAAM,EAAE,IAAI,EAAE,MAAM,GAAG,UAAU,EAAE,OAAO,CAAC,EAAE;YAAE,QAAQ,CAAC,EAAE,cAAc,CAAC;YAAC,IAAI,CAAC,EAAE,MAAM,CAAC;YAAC,IAAI,CAAC,EAAE,MAAM,CAAA;SAAE,GAAG,cAAc,GAAG,IAAI,GAAG,IAAI,CAAC;QAC5J,SAAS,CAAC,IAAI,EAAE,MAAM,EAAE,OAAO,CAAC,EAAE;YAAE,SAAS,CAAC,EAAE,OAAO,CAAC;YAAC,IAAI,CAAC,EAAE,MAAM,CAAA;SAAE,GAAG,MAAM,GAAG,SAAS,CAAC;QAC9F,WAAW,CAAC,IAAI,EAAE,MAAM,EAAE,OAAO,CAAC,EAAE;YAAE,SAAS,CAAC,EAAE,OAAO,CAAC;YAAC,aAAa,CAAC,EAAE,OAAO,CAAA;SAAE,GAAG,CAAC,MAAM,GAAG;YAAE,IAAI,EAAE,MAAM,CAAC;YAAC,WAAW,IAAI,OAAO,CAAA;SAAE,CAAC,EAAE,CAAC;QAC7I,UAAU,CAAC,IAAI,EAAE,MAAM,GAAG,IAAI,CAAC;QAC/B,QAAQ,CAAC,IAAI,EAAE,MAAM,GAAG;YAAE,WAAW,IAAI,OAAO,CAAC;YAAC,KAAK,EAAE,IAAI,CAAA;SAAE,CAAC;QAChE,UAAU,CAAC,OAAO,EAAE,MAAM,EAAE,OAAO,EAAE,MAAM,GAAG,IAAI,CAAC;KACpD,CAAC;IACF,IAAI,EAAE;QACJ,IAAI,CAAC,GAAG,KAAK,EAAE,MAAM,EAAE,GAAG,MAAM,CAAC;KAClC,CAAC;IACF,IAAI,EAAE;QACJ,SAAS,CAAC,OAAO,EAAE,MAAM,EAAE,IAAI,EAAE,MAAM,EAAE,EAAE,OAAO,CAAC,EAAE,GAAG,GAAG;YAAE,MAAM,EAAE,MAAM,GAAG,IAAI,CAAC;YAAC,MAAM,EAAE,MAAM,GAAG,MAAM,CAAC;YAAC,MAAM,EAAE,MAAM,GAAG,MAAM,CAAC;YAAC,KAAK,CAAC,EAAE,KAAK,CAAA;SAAE,CAAC;QACtJ,QAAQ,CAAC,OAAO,EAAE,MAAM,EAAE,OAAO,CAAC,EAAE,GAAG,GAAG,MAAM,GAAG,MAAM,CAAC;KAC3D,CAAC;IACF,MAAM,EAAE;QACN,GAAG,CAAC,OAAO,EAAE,MAAM,GAAG,IAAI,CAAC;QAC3B,KAAK,CAAC,OAAO,EAAE,MAAM,GAAG,IAAI,CAAC;QAC7B,IAAI,CAAC,OAAO,EAAE,MAAM,GAAG,IAAI,CAAC;QAC5B,IAAI,CAAC,OAAO,EAAE,MAAM,GAAG,IAAI,CAAC;KAC7B,CAAC;IACF,OAAO,EAAE;QACP,GAAG,IAAI,MAAM,CAAC;QACd,IAAI,CAAC,IAAI,EAAE,MAAM,GAAG,KAAK,CAAC;QAC1B,GAAG,EAAE,MAAM,CAAC,UAAU,CAAC;QACvB,KAAK,EAAE,MAAM,CAAC,UAAU,CAAC;QACzB,MAAM,EAAE,MAAM,CAAC,WAAW,CAAC;KAC5B,CAAC;IACF,MAAM,EAAE;QACN,UAAU,CAAC,IAAI,EAAE,MAAM,GAAG,UAAU,CAAC;QACrC,eAAe,CAAC,QAAQ,EAAE,MAAM,GAAG;YAAE,UAAU,EAAE,MAAM,CAAC;YAAC,WAAW,EAAE,MAAM,CAAA;SAAE,GAAG,IAAI,CAAC;KACvF,CAAC;IACF,GAAG,EAAE;QACH,YAAY,IAAI,OAAO,CAAC;QACxB,WAAW,IAAI;YAAE,OAAO,EAAE,MAAM,CAAC;YAAC,MAAM,EAAE,MAAM,CAAA;SAAE,CAAC;QACnD,SAAS,CAAC,OAAO,EAAE,MAAM,GAAG,OAAO,CAAC;QACpC,OAAO,CAAC,OAAO,EAAE,MAAM,EAAE,GAAG,EAAE;YAAE,OAAO,EAAE,MAAM,CAAC;YAAC,MAAM,EAAE,MAAM,CAAA;SAAE,GAAG,IAAI,CAAC;QACzE,OAAO,CAAC,OAAO,EAAE,MAAM,GAAG,MAAM,CAAC;QACjC,OAAO,CAAC,OAAO,EAAE,MAAM,GAAG;YAAE,OAAO,EAAE,MAAM,CAAC;YAAC,MAAM,EAAE,MAAM,CAAA;SAAE,GAAG,IAAI,CAAC;QACrE,oBAAoB,CAAC,UAAU,EAAE,MAAM,GAAG,MAAM,CAAC;KAClD,CAAC;IACF,WAAW,EAAE;QACX,WAAW,IAAI,OAAO,CAAC;QACvB,QAAQ,CAAC,OAAO,EAAE,MAAM,GAAG,MAAM,GAAG,IAAI,CAAC;QACzC,UAAU,CAAC,OAAO,EAAE,MAAM,EAAE,UAAU,EAAE,MAAM,EAAE,SAAS,EAAE,MAAM,GAAG,IAAI,CAAC;KAC1E,CAAC;IACF,IAAI,EAAE;QACJ,OAAO,CAAC,IAAI,EAAE,MAAM,GAAG,MAAM,CAAC;QAC9B,eAAe,IAAI,OAAO,CAAC;KAC5B,CAAC;CACH"}

package/dist/types.js

@@ -1,9 +1,9 @@
 export const CURRENT_SCHEMA_VERSION = 2;
 export const DEFAULT_SOURCES = {
-    shared: '.env',
-    development: '.env.development',
-    production: '.env.production',
-    local: '.env.local',
+    shared: '.hush',
+    development: '.hush.development',
+    production: '.hush.production',
+    local: '.hush.local',
 };
 export const FORMAT_OUTPUT_FILES = {
     dotenv: {

package/dist/utils/version-check.js

@@ -1,4 +1,4 @@
-import { existsSync, mkdirSync, readFileSync } from 'node:fs';
+import { fs } from '../lib/fs.js';
 import { join } from 'node:path';
 import { homedir } from 'node:os';
 import { spawn } from 'node:child_process';
@@ -8,13 +8,13 @@ const CACHE_FILE = join(CONFIG_DIR, 'update-check.json');
 const CHECK_INTERVAL_MS = 1000 * 60 * 60 * 24;
 export function checkForUpdate(currentVersion) {
     try {
-        if (!existsSync(CONFIG_DIR)) {
-            mkdirSync(CONFIG_DIR, { recursive: true });
+        if (!fs.existsSync(CONFIG_DIR)) {
+            fs.mkdirSync(CONFIG_DIR, { recursive: true });
         }
         let cache = null;
-        if (existsSync(CACHE_FILE)) {
+        if (fs.existsSync(CACHE_FILE)) {
             try {
-                cache = JSON.parse(readFileSync(CACHE_FILE, 'utf-8'));
+                cache = JSON.parse(fs.readFileSync(CACHE_FILE, 'utf-8'));
             }
             catch {
             }

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@chriscode/hush",
-  "version": "4.2.0",
+  "version": "5.0.1",
   "description": "SOPS-based secrets management for monorepos. Encrypt once, decrypt everywhere.",
   "type": "module",
   "bin": {
@@ -52,8 +52,9 @@
   },
   "devDependencies": {
     "@types/node": "^20.11.0",
+    "@vitest/coverage-v8": "^4.0.17",
     "typescript": "^5.8.3",
-    "vitest": "^2.0.0"
+    "vitest": "^4.0.17"
   },
   "files": [
     "dist",