@dotenvage/node 0.1.5

package/nextjs/wrapper.mjs

@@ -0,0 +1,87 @@
+#!/usr/bin/env node
+/**
+ * Wrapper script for Next.js that loads encrypted environment variables
+ * before Next.js starts.
+ *
+ * IMPORTANT: This works because @next/env does NOT overwrite existing process.env values.
+ * Flow:
+ * 1. This script loads encrypted .env files and decrypts them into process.env
+ * 2. Next.js starts and @next/env runs to load .env files
+ * 3. @next/env sees existing values in process.env and preserves them (doesn't overwrite)
+ * 4. Result: Decrypted values from dotenvage are used, not encrypted values from .env files
+ *
+ * Usage:
+ *   node @dotenvage/node/nextjs/wrapper.mjs dev
+ *   node @dotenvage/node/nextjs/wrapper.mjs build
+ *
+ * Or via package.json scripts:
+ *   "dev": "node @dotenvage/node/nextjs/wrapper.mjs dev"
+ *   "build": "node @dotenvage/node/nextjs/wrapper.mjs build"
+ */
+
+// Load encrypted environment variables BEFORE Next.js starts
+try {
+  // Load env vars first (synchronously via side-effect)
+  await import("./preinit.mjs");
+
+  // Now import Node.js modules
+  const childProcess = await import("child_process");
+  const fsModule = await import("fs/promises");
+  const pathModule = await import("path");
+
+  // Detect package manager by checking for lock files
+  const cwd = process.cwd();
+  const packageManager = await (async () => {
+    try {
+      const pnpmLock = await fsModule
+        .access(pathModule.join(cwd, "pnpm-lock.yaml"))
+        .then(() => true)
+        .catch(() => false);
+      if (pnpmLock) return "pnpm";
+
+      const yarnLock = await fsModule
+        .access(pathModule.join(cwd, "yarn.lock"))
+        .then(() => true)
+        .catch(() => false);
+      if (yarnLock) return "yarn";
+
+      const packageLock = await fsModule
+        .access(pathModule.join(cwd, "package-lock.json"))
+        .then(() => true)
+        .catch(() => false);
+      if (packageLock) return "npm";
+
+      // Default to npm if no lock file found
+      return "npm";
+    } catch {
+      return "npm";
+    }
+  })();
+
+  // Forward all command-line arguments to Next.js
+  const args = process.argv.slice(2);
+
+  // Use package manager exec to ensure we use the correct Next.js binary
+  // This works with all package managers and handles path resolution automatically
+  const child = childProcess.spawn(
+    packageManager,
+    ["exec", "next", ...args],
+    {
+      stdio: "inherit",
+      cwd: cwd,
+      env: process.env, // Pass through all environment variables (including decrypted ones)
+    }
+  );
+
+  child.on("exit", (code) => {
+    process.exit(code || 0);
+  });
+
+  child.on("error", (error) => {
+    console.error("Failed to start Next.js:", error);
+    process.exit(1);
+  });
+} catch (error) {
+  console.error("Failed to load environment variables:", error);
+  process.exit(1);
+}

package/package.json

@@ -0,0 +1,91 @@
+{
+  "name": "@dotenvage/node",
+  "version": "0.1.5",
+  "description": "Node.js bindings for dotenvage - Dotenv with age encryption",
+  "main": "index.js",
+  "types": "index.d.ts",
+  "bin": {
+    "dotenvage": "./bin/dotenvage.js",
+    "dotenvage-next": "./bin/dotenvage-next.js"
+  },
+  "files": [
+    "index.js",
+    "index.d.ts",
+    "bin/",
+    "*.node",
+    "README.md",
+    "examples/",
+    "nextjs/"
+  ],
+  "exports": {
+    ".": {
+      "types": "./index.d.ts",
+      "default": "./index.js"
+    },
+    "./nextjs": {
+      "types": "./nextjs/loader.d.ts",
+      "default": "./nextjs/loader.mjs"
+    },
+    "./nextjs/preinit": {
+      "types": "./nextjs/preinit.d.ts",
+      "default": "./nextjs/preinit.mjs"
+    },
+    "./nextjs/config": {
+      "types": "./nextjs/config.d.ts",
+      "default": "./nextjs/config.mjs"
+    },
+    "./package.json": "./package.json"
+  },
+  "keywords": [
+    "dotenv",
+    "age",
+    "encryption",
+    "secrets",
+    "environment",
+    "env",
+    "napi",
+    "nodejs"
+  ],
+  "author": "Jacobus Geluk <jacobus@dataroad.com>",
+  "license": "CC-BY-SA-4.0",
+  "repository": {
+    "type": "git",
+    "url": "https://github.com/dataroadinc/dotenvage.git",
+    "directory": "npm"
+  },
+  "homepage": "https://github.com/dataroadinc/dotenvage#readme",
+  "bugs": {
+    "url": "https://github.com/dataroadinc/dotenvage/issues"
+  },
+  "engines": {
+    "node": ">=18.0.0"
+  },
+  "napi": {
+    "binaryName": "dotenvage-napi",
+    "targets": [
+      "x86_64-unknown-linux-gnu",
+      "x86_64-unknown-linux-musl",
+      "aarch64-unknown-linux-gnu",
+      "aarch64-unknown-linux-musl",
+      "x86_64-apple-darwin",
+      "aarch64-apple-darwin",
+      "x86_64-pc-windows-msvc",
+      "aarch64-pc-windows-msvc",
+      "i686-pc-windows-msvc"
+    ]
+  },
+  "devDependencies": {
+    "@napi-rs/cli": "^3.5.1",
+    "@types/node": "^20.0.0",
+    "typescript": "^5.0.0"
+  },
+  "scripts": {
+    "build": "napi build --manifest-path ./dotenvage-napi/Cargo.toml --output-dir . --platform --release --target $(./scripts/get-current-target.sh)",
+    "build:debug": "napi build --manifest-path ./dotenvage-napi/Cargo.toml --output-dir . --platform --target $(./scripts/get-current-target.sh)",
+    "build:all": "./scripts/build-all.sh",
+    "test": "node --test __tests__/*.test.js",
+    "test:unit": "node --test __tests__/basic.test.js __tests__/secret-manager.test.js __tests__/env-loader.test.js",
+    "test:integration": "node --test __tests__/integration.test.js",
+    "test:all": "npm run test"
+  }
+}