@dotenvx/dotenvx 0.38.0 → 0.40.0

package/src/cli/actions/encryptme.js

@@ -0,0 +1,73 @@
+const fs = require('fs')
+const logger = require('./../../shared/logger')
+
+const main = require('./../../lib/main')
+
+const isIgnoringDotenvKeys = require('../../lib/helpers/isIgnoringDotenvKeys')
+
+const ENCODING = 'utf8'
+
+async function encryptme () {
+  const options = this.opts()
+  logger.debug(`options: ${JSON.stringify(options)}`)
+
+  try {
+    const {
+      processedEnvFiles,
+      changedFilepaths,
+      unchangedFilepaths
+    } = main.encryptme(options.envFile)
+
+    for (const processedEnvFile of processedEnvFiles) {
+      logger.verbose(`encrypting ${processedEnvFile.envFilepath} (${processedEnvFile.filepath})`)
+      if (processedEnvFile.error) {
+        if (processedEnvFile.error.code === 'MISSING_ENV_FILE') {
+          logger.warn(processedEnvFile.error)
+          logger.help(`? add one with [echo "HELLO=World" > ${processedEnvFile.envFilepath}] and re-run [dotenvx encryptme]`)
+        } else {
+          logger.warn(processedEnvFile.error)
+        }
+      } else if (processedEnvFile.changed) {
+        fs.writeFileSync(processedEnvFile.filepath, processedEnvFile.envSrc, ENCODING)
+
+        logger.verbose(`encrypted ${processedEnvFile.envFilepath} (${processedEnvFile.filepath})`)
+      } else {
+        logger.verbose(`no changes ${processedEnvFile.envFilepath} (${processedEnvFile.filepath})`)
+      }
+    }
+
+    if (changedFilepaths.length > 0) {
+      logger.success(`✔ encrypted (${changedFilepaths.join(',')})`)
+    } else if (unchangedFilepaths.length > 0) {
+      logger.info(`no changes (${unchangedFilepaths})`)
+    } else {
+      // do nothing - scenario when no .env files found
+    }
+
+    for (const processedEnvFile of processedEnvFiles) {
+      if (processedEnvFile.privateKeyAdded) {
+        logger.success(`✔ key added to .env.keys (${processedEnvFile.privateKeyName})`)
+
+        if (!isIgnoringDotenvKeys()) {
+          logger.help2('ℹ add .env.keys to .gitignore: [echo ".env.keys" >> .gitignore]')
+        }
+
+        logger.help2(`ℹ run [${processedEnvFile.privateKeyName}='${processedEnvFile.privateKey}' dotenvx run -- yourcommand] to test decryption locally`)
+      }
+    }
+  } catch (error) {
+    logger.error(error.message)
+    if (error.help) {
+      logger.help(error.help)
+    }
+    if (error.debug) {
+      logger.debug(error.debug)
+    }
+    if (error.code) {
+      logger.debug(`ERROR_CODE: ${error.code}`)
+    }
+    process.exit(1)
+  }
+}
+
+module.exports = encryptme

package/src/cli/actions/get.js

@@ -1,5 +1,7 @@
 const logger = require('./../../shared/logger')
 
+const conventions = require('./../../lib/helpers/conventions')
+
 const main = require('./../../lib/main')
 
 function get (key) {
@@ -8,7 +10,15 @@ function get (key) {
   const options = this.opts()
   logger.debug(`options: ${JSON.stringify(options)}`)
 
-  const value = main.get(key, this.envs, options.overload, process.env.DOTENV_KEY, options.all)
+  let envs = []
+  // handle shorthand conventions - like --convention=nextjs
+  if (options.convention) {
+    envs = conventions(options.convention).concat(this.envs)
+  } else {
+    envs = this.envs
+  }
+
+  const value = main.get(key, envs, options.overload, process.env.DOTENV_KEY, options.all)
 
   if (typeof value === 'object' && value !== null) {
     if (options.prettyPrint) {

package/src/cli/actions/run.js

@@ -136,10 +136,11 @@ async function run () {
 
       if (processedEnv.error) {
         if (processedEnv.error.code === 'MISSING_ENV_FILE') {
-          logger.warnv(processedEnv.error)
-          logger.help(`? in development: add one with [echo "HELLO=World" > ${processedEnv.filepath}] and re-run [dotenvx run -- ${commandArgs.join(' ')}]`)
-          logger.help('? for production: set [DOTENV_KEY] on your server and re-deploy')
-          logger.help('? for ci: set [DOTENV_KEY] on your ci and re-build')
+          // do not warn for conventions (too noisy)
+          if (!options.convention) {
+            logger.warnv(processedEnv.error)
+            logger.help(`? add one with [echo "HELLO=World" > ${processedEnv.filepath}] and re-run [dotenvx run -- ${commandArgs.join(' ')}]`)
+          }
         } else {
           logger.warnv(processedEnv.error)
         }

package/src/cli/actions/set.js

@@ -1,7 +1,12 @@
+const fs = require('fs')
 const logger = require('./../../shared/logger')
 
 const main = require('./../../lib/main')
 
+const isIgnoringDotenvKeys = require('../../lib/helpers/isIgnoringDotenvKeys')
+
+const ENCODING = 'utf8'
+
 function set (key, value) {
   logger.debug(`key: ${key}`)
   logger.debug(`value: ${value}`)
@@ -12,36 +17,65 @@ function set (key, value) {
   try {
     const {
       processedEnvFiles,
-      settableFilepaths
+      changedFilepaths,
+      unchangedFilepaths
     } = main.set(key, value, options.envFile, options.encrypt)
 
-    let atLeastOneSuccess = false
+    let withEncryption = ''
+
+    if (options.encrypt) {
+      withEncryption = ' with encryption'
+    }
 
     for (const processedEnvFile of processedEnvFiles) {
-      logger.verbose(`setting for ${processedEnvFile.filepath}`)
+      logger.verbose(`setting for ${processedEnvFile.envFilepath}`)
 
       if (processedEnvFile.error) {
         if (processedEnvFile.error.code === 'MISSING_ENV_FILE') {
           logger.warn(processedEnvFile.error)
-          logger.help(`? add one with [echo "HELLO=World" > ${processedEnvFile.filepath}] and re-run [dotenvx set]`)
+          logger.help(`? add one with [echo "HELLO=World" > ${processedEnvFile.envFilepath}] and re-run [dotenvx set]`)
         } else {
           logger.warn(processedEnvFile.error)
         }
       } else {
-        atLeastOneSuccess = true
-        logger.verbose(`${processedEnvFile.key} set`)
-        logger.debug(`${processedEnvFile.key} set to ${processedEnvFile.value}`)
+        fs.writeFileSync(processedEnvFile.filepath, processedEnvFile.envSrc, ENCODING)
+
+        logger.verbose(`${processedEnvFile.key} set${withEncryption} (${processedEnvFile.envFilepath})`)
+        logger.debug(`${processedEnvFile.key} set${withEncryption} to ${processedEnvFile.value} (${processedEnvFile.envFilepath})`)
       }
     }
 
-    if (atLeastOneSuccess) {
-      logger.success(`set ${key} (${settableFilepaths.join(', ')})`)
+    if (changedFilepaths.length > 0) {
+      logger.success(`✔ set ${key}${withEncryption} (${changedFilepaths.join(',')})`)
+    } else if (unchangedFilepaths.length > 0) {
+      logger.info(`no changes (${unchangedFilepaths})`)
+    } else {
+      // do nothing
+    }
+
+    for (const processedEnvFile of processedEnvFiles) {
+      if (processedEnvFile.privateKeyAdded) {
+        logger.success(`✔ key added to .env.keys (${processedEnvFile.privateKeyName})`)
+
+        if (!isIgnoringDotenvKeys()) {
+          logger.help2('ℹ add .env.keys to .gitignore: [echo ".env.keys" >> .gitignore]')
+        }
+
+        logger.help2(`ℹ run [${processedEnvFile.privateKeyName}='${processedEnvFile.privateKey}' dotenvx get ${key}] to test decryption locally`)
+      }
     }
   } catch (error) {
     logger.error(error.message)
     if (error.help) {
       logger.help(error.help)
     }
+    if (error.debug) {
+      logger.debug(error.debug)
+    }
+    if (error.code) {
+      logger.debug(`ERROR_CODE: ${error.code}`)
+    }
+    process.exit(1)
   }
 }
 

package/src/cli/actions/vault/encrypt.js

@@ -58,7 +58,6 @@ async function encrypt (directory) {
 
     if (addedKeys.length > 0) {
       spinner.succeed(`${pluralize('key', addedKeys.length)} added to .env.keys (${addedKeys})`)
-      logger.help2('ℹ push .env.keys up to hub: [dotenvx hub push]')
     }
 
     if (addedVaults.length > 0) {

package/src/cli/commands/hub.js

@@ -6,7 +6,7 @@ const logger = require('./../../shared/logger')
 const hub = new Command('hub')
 
 hub
-  .description('interact with dotenvx hub')
+  .description('DEPRECATED: interact with dotenvx hub')
 
 const loginAction = require('./../actions/hub/login')
 hub
@@ -14,7 +14,7 @@ hub
   .description('authenticate to dotenvx hub')
   .option('-h, --hostname <url>', 'set hostname', store.getHostname())
   .action(function (...args) {
-    logger.warn('DEPRECATION NOTECE: [dotenvx hub login] will be removed in 1.0.0 release soon')
+    logger.warn('DEPRECATION NOTICE: [dotenvx hub login] will be removed in 1.0.0 release soon')
 
     loginAction.apply(this, args)
   })
@@ -26,7 +26,7 @@ hub
   .argument('[directory]', 'directory to push', '.')
   .option('-h, --hostname <url>', 'set hostname', store.getHostname())
   .action(function (...args) {
-    logger.warn('DEPRECATION NOTECE: [dotenvx hub push] will be removed in 1.0.0 release soon')
+    logger.warn('DEPRECATION NOTICE: [dotenvx hub push] will be removed in 1.0.0 release soon')
 
     pushAction.apply(this, args)
   })
@@ -38,7 +38,7 @@ hub
   .argument('[directory]', 'directory to pull', '.')
   .option('-h, --hostname <url>', 'set hostname', store.getHostname())
   .action(function (...args) {
-    logger.warn('DEPRECATION NOTECE: [dotenvx hub pull] will be removed in 1.0.0 release soon')
+    logger.warn('DEPRECATION NOTICE: [dotenvx hub pull] will be removed in 1.0.0 release soon')
 
     pullAction.apply(this, args)
   })
@@ -49,7 +49,7 @@ hub
   .description('view repository on dotenvx hub')
   .option('-h, --hostname <url>', 'set hostname', store.getHostname())
   .action(function (...args) {
-    logger.warn('DEPRECATION NOTECE: [dotenvx hub open] will be removed in 1.0.0 release soon')
+    logger.warn('DEPRECATION NOTICE: [dotenvx hub open] will be removed in 1.0.0 release soon')
 
     openAction.apply(this, args)
   })
@@ -60,7 +60,7 @@ hub
   .description('print the auth token dotenvx hub is configured to use')
   .option('-h, --hostname <url>', 'set hostname', 'https://hub.dotenvx.com')
   .action(function (...args) {
-    logger.warn('DEPRECATION NOTECE: [dotenvx hub token] will be removed in 1.0.0 release soon')
+    logger.warn('DEPRECATION NOTICE: [dotenvx hub token] will be removed in 1.0.0 release soon')
 
     tokenAction.apply(this, args)
   })
@@ -70,7 +70,7 @@ hub
   .command('status')
   .description('display logged in user')
   .action(function (...args) {
-    logger.warn('DEPRECATION NOTECE: [dotenvx hub status] will be removed in 1.0.0 release soon')
+    logger.warn('DEPRECATION NOTICE: [dotenvx hub status] will be removed in 1.0.0 release soon')
 
     statusAction.apply(this, args)
   })
@@ -81,7 +81,7 @@ hub
   .description('log out this machine from dotenvx hub')
   .option('-h, --hostname <url>', 'set hostname', store.getHostname())
   .action(function (...args) {
-    logger.warn('DEPRECATION NOTECE: [dotenvx hub logout] will be removed in 1.0.0 release soon')
+    logger.warn('DEPRECATION NOTICE: [dotenvx hub logout] will be removed in 1.0.0 release soon')
 
     logoutAction.apply(this, args)
   })

package/src/cli/dotenvx.js

@@ -85,6 +85,7 @@ program.command('get')
   .option('-f, --env-file <paths...>', 'path(s) to your env file(s)', collectEnvs('envFile'), [])
   .option('-fv, --env-vault-file <paths...>', 'path(s) to your .env.vault file(s)', collectEnvs('envVaultFile'), [])
   .option('-o, --overload', 'override existing env variables')
+  .option('--convention <name>', 'load a .env convention (available conventions: [\'nextjs\'])')
   .option('-a, --all', 'include all machine envs as well')
   .option('-pp, --pretty-print', 'pretty print output')
   .action(function (...args) {
@@ -102,6 +103,19 @@ program.command('set')
   .option('-c, --encrypt', 'encrypt value')
   .action(require('./actions/set'))
 
+// dotenvx encryptme
+program.command('encryptme')
+  .description('encrypt env file(s) environment variables')
+  .option('-f, --env-file <paths...>', 'path(s) to your env file(s)')
+  .action(require('./actions/encryptme'))
+
+// dotenvx ls
+program.command('ls')
+  .description('print all .env files in a tree structure')
+  .argument('[directory]', 'directory to list .env files from', '.')
+  .option('-f, --env-file <filenames...>', 'path(s) to your env file(s)', '.env*')
+  .action(require('./actions/ls'))
+
 // dotenvx genexample
 program.command('genexample')
   .description('generate .env.example')
@@ -133,13 +147,6 @@ program.command('scan')
   .description('scan for leaked secrets')
   .action(require('./actions/scan'))
 
-// dotenvx ls
-program.command('ls')
-  .description('print all .env files in a tree structure')
-  .argument('[directory]', 'directory to list .env files from', '.')
-  .option('-f, --env-file <filenames...>', 'path(s) to your env file(s)', '.env*')
-  .action(require('./actions/ls'))
-
 // dotenvx settings
 program.command('settings')
   .description('print current dotenvx settings')
@@ -147,6 +154,9 @@ program.command('settings')
   .option('-pp, --pretty-print', 'pretty print output')
   .action(require('./actions/settings'))
 
+// dotenvx vault
+program.addCommand(require('./commands/vault'))
+
 // dotenvx encrypt
 const encryptAction = require('./actions/vault/encrypt')
 program.command('encrypt')
@@ -156,6 +166,7 @@ program.command('encrypt')
   .option('-f, --env-file <paths...>', 'path(s) to your env file(s)')
   .action(function (...args) {
     logger.warn('DEPRECATION NOTICE: [dotenvx encrypt] has moved. change your command to [dotenvx vault encrypt]')
+    logger.warn('DEPRECATION NOTICE: [dotenvx encryptme] will become [dotenvx encrypt] in a 1.0.0 release scheduled for middle of June 2024.')
 
     encryptAction.apply(this, args)
   })
@@ -167,7 +178,7 @@ program.command('decrypt')
   .argument('[directory]', 'directory to decrypt', '.')
   .option('-e, --environment <environments...>', 'environment(s) to decrypt')
   .action(function (...args) {
-    logger.warn('DEPRECATION NOTECE: [dotenvx decrypt] has moved. change your command to [dotenvx vault decrypt]')
+    logger.warn('DEPRECATION NOTICE: [dotenvx decrypt] has moved. change your command to [dotenvx vault decrypt]')
 
     decryptAction.apply(this, args)
   })
@@ -183,9 +194,6 @@ program.command('status')
     statusAction.apply(this, args)
   })
 
-// dotenvx vault
-program.addCommand(require('./commands/vault'))
-
 // dotenvx hub
 program.addCommand(require('./commands/hub'))
 

package/src/lib/helpers/findOrCreatePublicKey.js

@@ -31,7 +31,8 @@ function findOrCreatePublicKey (envFilepath, envKeysFilepath) {
       envSrc,
       keysSrc,
       publicKey: envParsed[publicKeyName],
-      privateKey: keysParsed[privateKeyName]
+      privateKey: keysParsed[privateKeyName],
+      privateKeyAdded: false
     }
   }
 
@@ -73,7 +74,8 @@ function findOrCreatePublicKey (envFilepath, envKeysFilepath) {
     envSrc,
     keysSrc,
     publicKey,
-    privateKey
+    privateKey,
+    privateKeyAdded: true
   }
 }
 

package/src/lib/helpers/isEncrypted.js

@@ -0,0 +1,8 @@
+const ENCRYPTION_PATTERN = /^encrypted:.+/
+const PUBLIC_KEY_PATTERN = /^DOTENV_PUBLIC_KEY/
+
+function isEncrypted (key, value) {
+  return PUBLIC_KEY_PATTERN.test(key) || ENCRYPTION_PATTERN.test(value)
+}
+
+module.exports = isEncrypted

package/src/lib/helpers/isFullyEncrypted.js

@@ -0,0 +1,18 @@
+const dotenv = require('dotenv')
+
+const isEncrypted = require('./isEncrypted')
+
+function isFullyEncrypted (src) {
+  const parsed = dotenv.parse(src)
+
+  for (const [key, value] of Object.entries(parsed)) {
+    const result = isEncrypted(key, value)
+    if (!result) {
+      return false
+    }
+  }
+
+  return true
+}
+
+module.exports = isFullyEncrypted

package/src/lib/helpers/isIgnoringDotenvKeys.js

@@ -0,0 +1,19 @@
+const fs = require('fs')
+const ignore = require('ignore')
+
+function isIgnoringDotenvKeys () {
+  if (!fs.existsSync('.gitignore')) {
+    return false
+  }
+
+  const gitignore = fs.readFileSync('.gitignore').toString()
+  const ig = ignore(gitignore).add(gitignore)
+
+  if (!ig.ignores('.env.keys')) {
+    return false
+  }
+
+  return false
+}
+
+module.exports = isIgnoringDotenvKeys

package/src/lib/main.js

@@ -3,13 +3,14 @@ const dotenv = require('dotenv')
 const dotenvExpand = require('dotenv-expand')
 
 // services
-const Encrypt = require('./services/encrypt')
 const Ls = require('./services/ls')
 const Get = require('./services/get')
 const Sets = require('./services/sets')
 const Status = require('./services/status')
+const Encrypt = require('./services/encrypt')
 const Genexample = require('./services/genexample')
 const Settings = require('./services/settings')
+const VaultEncrypt = require('./services/vaultEncrypt')
 
 // helpers
 const dotenvEval = require('./helpers/dotenvEval')
@@ -41,9 +42,13 @@ const parse = function (src) {
   return dotenv.parse(src)
 }
 
-// actions related
+// DEPRECATED: will became the same function as encryptme
 const encrypt = function (directory, envFile) {
-  return new Encrypt(directory, envFile).run()
+  return new VaultEncrypt(directory, envFile).run()
+}
+
+const vaultEncrypt = function (directory, envFile) {
+  return new VaultEncrypt(directory, envFile).run()
 }
 
 const ls = function (directory, envFile) {
@@ -62,6 +67,10 @@ const set = function (key, value, envFile, encrypt) {
   return new Sets(key, value, envFile, encrypt).run()
 }
 
+const encryptme = function (envFile) {
+  return new Encrypt(envFile).run()
+}
+
 const status = function (directory) {
   return new Status(directory).run()
 }
@@ -96,9 +105,11 @@ module.exports = {
   parse,
   // actions related
   encrypt,
+  vaultEncrypt,
   ls,
   get,
   set,
+  encryptme,
   status,
   genexample,
   // settings

package/src/lib/services/encrypt.js

@@ -2,91 +2,93 @@ const fs = require('fs')
 const path = require('path')
 const dotenv = require('dotenv')
 
-const DotenvKeys = require('./../helpers/dotenvKeys')
-const DotenvVault = require('./../helpers/dotenvVault')
+const findOrCreatePublicKey = require('./../helpers/findOrCreatePublicKey')
+const guessPrivateKeyName = require('./../helpers/guessPrivateKeyName')
+const encryptValue = require('./../helpers/encryptValue')
+const isEncrypted = require('./../helpers/isEncrypted')
+const replace = require('./../helpers/replace')
 
 const ENCODING = 'utf8'
 
-const findEnvFiles = require('../helpers/findEnvFiles')
-
 class Encrypt {
-  constructor (directory = '.', envFile) {
-    this.directory = directory
-    this.envFile = envFile || findEnvFiles(directory)
-    // calculated
-    this.envKeysFilepath = path.resolve(this.directory, '.env.keys')
-    this.envVaultFilepath = path.resolve(this.directory, '.env.vault')
+  constructor (envFile = '.env') {
+    this.envFile = envFile
+    this.processedEnvFiles = []
+    this.changedFilepaths = new Set()
+    this.unchangedFilepaths = new Set()
   }
 
   run () {
-    if (this.envFile.length < 1) {
-      const code = 'MISSING_ENV_FILES'
-      const message = 'no .env* files found'
-      const help = '? add one with [echo "HELLO=World" > .env] and then run [dotenvx encrypt]'
-
-      const error = new Error(message)
-      error.code = code
-      error.help = help
-      throw error
-    }
-
-    const parsedDotenvKeys = this._parsedDotenvKeys()
-    const parsedDotenvVaults = this._parsedDotenvVault()
     const envFilepaths = this._envFilepaths()
-
-    // build filepaths to be passed to DotenvKeys
-    const uniqueEnvFilepaths = new Set()
     for (const envFilepath of envFilepaths) {
-      const filepath = path.resolve(this.directory, envFilepath)
-      if (!fs.existsSync(filepath)) {
-        const code = 'MISSING_ENV_FILE'
-        const message = `file does not exist at [${filepath}]`
-        const help = `? add it with [echo "HELLO=World" > ${envFilepath}] and then run [dotenvx encrypt]`
-
-        const error = new Error(message)
-        error.code = code
-        error.help = help
-        throw error
+      const filepath = path.resolve(envFilepath)
+
+      const row = {}
+      row.keys = []
+      row.filepath = filepath
+      row.envFilepath = envFilepath
+
+      try {
+        // get the original src
+        let src = fs.readFileSync(filepath, { encoding: ENCODING })
+        // get/generate the public key
+        const envKeysFilepath = path.join(path.dirname(filepath), '.env.keys')
+        const {
+          envSrc,
+          publicKey,
+          privateKey,
+          privateKeyAdded
+        } = findOrCreatePublicKey(filepath, envKeysFilepath)
+        row.publicKey = publicKey
+        row.privateKey = privateKey
+        row.privateKeyName = guessPrivateKeyName(filepath)
+        row.privateKeyAdded = privateKeyAdded
+
+        src = envSrc // src was potentially changed by findOrCreatePublicKey so we set it again here
+
+        // track possible changes
+        row.changed = false
+
+        // iterate over all non-encrypted values and encrypt them
+        const parsed = dotenv.parse(src)
+        for (const [key, value] of Object.entries(parsed)) {
+          const encrypted = isEncrypted(key, value)
+          if (!encrypted) {
+            row.keys.push(key) // track key(s)
+
+            const encryptedValue = encryptValue(value, publicKey)
+            // once newSrc is built write it out
+            src = replace(src, key, encryptedValue)
+
+            row.changed = true // track change
+          }
+        }
+
+        if (row.changed) {
+          row.envSrc = src
+          this.changedFilepaths.add(envFilepath)
+        } else {
+          row.envSrc = src
+          this.unchangedFilepaths.add(envFilepath)
+        }
+      } catch (e) {
+        if (e.code === 'ENOENT') {
+          const error = new Error(`missing ${envFilepath} file (${filepath})`)
+          error.code = 'MISSING_ENV_FILE'
+
+          row.error = error
+        } else {
+          row.error = e
+        }
       }
 
-      uniqueEnvFilepaths.add(filepath)
+      this.processedEnvFiles.push(row)
     }
 
-    // generate .env.keys string
-    const {
-      dotenvKeys,
-      dotenvKeysFile,
-      addedKeys,
-      existingKeys
-    } = new DotenvKeys([...uniqueEnvFilepaths], parsedDotenvKeys).run()
-
-    // build look up of .env filepaths and their raw content
-    const dotenvFiles = {}
-    for (const filepath of [...uniqueEnvFilepaths]) {
-      const raw = fs.readFileSync(filepath, ENCODING)
-      dotenvFiles[filepath] = raw
-    }
-
-    // generate .env.vault string
-    const {
-      dotenvVaultFile,
-      addedVaults,
-      existingVaults,
-      addedDotenvFilenames
-    } = new DotenvVault(dotenvFiles, dotenvKeys, parsedDotenvVaults).run()
-
     return {
-      // from DotenvKeys
-      dotenvKeys,
-      dotenvKeysFile,
-      addedKeys,
-      existingKeys,
-      // from DotenvVault
-      dotenvVaultFile,
-      addedVaults,
-      existingVaults,
-      addedDotenvFilenames,
-      envFile: this.envFile
+      processedEnvFiles: this.processedEnvFiles,
+      changedFilepaths: [...this.changedFilepaths],
+      unchangedFilepaths: [...this.unchangedFilepaths]
     }
   }
 
@@ -97,22 +99,6 @@ class Encrypt {
 
     return this.envFile
   }
-
-  _parsedDotenvKeys () {
-    const options = {
-      path: this.envKeysFilepath
-    }
-
-    return dotenv.configDotenv(options).parsed
-  }
-
-  _parsedDotenvVault () {
-    const options = {
-      path: this.envVaultFilepath
-    }
-
-    return dotenv.configDotenv(options).parsed
-  }
 }
 
 module.exports = Encrypt