@fentz26/envcp 1.0.1 → 1.0.3

package/README.md

@@ -2,104 +2,76 @@
 
 **Secure Environment Variable Management for AI-Assisted Coding**
 
-EnvCP is a universal tool server that allows developers to safely use AI assistants for coding without exposing sensitive environment variables, API keys, or secrets. Works with Claude, ChatGPT, Gemini, Cursor, and any AI tool.
-
-## Why EnvCP?
-
-When using AI coding assistants, you often need to reference environment variables, API keys, or other secrets. But you don't want to share these with the AI. EnvCP solves this by:
-
-- **Local-only storage** - Your secrets never leave your machine
-- **Encrypted at rest** - AES-256-GCM encryption with PBKDF2 key derivation (100,000 iterations)
-- **Reference-based access** - AI references variables by name, never sees the actual values
-- **Automatic .env injection** - Values can be automatically injected into your .env files
-- **AI Access Control** - Block AI from proactively checking or listing your secrets
-- **Universal Compatibility** - Works with any AI tool via multiple protocols
-
-## Platform Compatibility
-
-| Platform | Support | Protocol |
-|----------|---------|----------|
-| Claude Desktop | Native | MCP |
-| Claude Code | Native | MCP |
-| Cursor | Native | MCP |
-| Cline (VS Code) | Native | MCP |
-| Continue.dev | Native | MCP |
-| Zed Editor | Native | MCP |
-| ChatGPT | Via API | OpenAI Function Calling |
-| GPT-4 API | Via API | OpenAI Function Calling |
-| Gemini | Via API | Google Function Calling |
-| Gemini API | Via API | Google Function Calling |
-| Local LLMs (Ollama) | Via API | REST / OpenAI-compatible |
-| LM Studio | Via API | REST / OpenAI-compatible |
-| Open WebUI | Via API | REST |
-| Any HTTP Client | Via API | REST |
-
-## Features
-
-- **Multi-Protocol Support** - MCP, REST API, OpenAI, and Gemini protocols
-- **Auto-Detection** - Automatically detects client type from request headers
-- **AES-256-GCM Encryption** - Military-grade encryption with PBKDF2-SHA512 key derivation
-- **Flexible Passwords** - No complexity requirements - use any password you want
-- **Session Management** - Quick password mode with configurable session duration
-- **AI Access Control** - Prevent AI from actively checking variables without permission
-- **Blacklist Patterns** - Block AI access to sensitive variables matching patterns
-- **Project-based Organization** - Separate environments per project
-- **Auto .env Sync** - Automatically sync to .env files
-- **Audit Logging** - All operations logged for security review
+EnvCP lets you safely use AI assistants (Claude, ChatGPT, Gemini, Cursor, etc.) without exposing your secrets. Your API keys and environment variables stay encrypted on your machine — AI only references them by name.
 
 ## Installation
 
 ```bash
-npm install -g envcp
+npm install -g @fentz26/envcp
 ```
 
-Or use with npx:
+Or use without installing:
 
 ```bash
-npx envcp init
+npx @fentz26/envcp init
 ```
 
 ## Quick Start
 
-### 1. Initialize EnvCP in your project
-
 ```bash
+# 1. Initialize in your project
 envcp init
-```
-
-### 2. Add your secrets
 
-```bash
+# 2. Add your secrets
 envcp add API_KEY --value "your-secret-key"
 envcp add DATABASE_URL --value "postgres://..."
+
+# 3. Start the server (auto-detects client type)
+envcp serve --mode auto --port 3456
 ```
 
-### 3. Start the server
+## Basic CLI Commands
 
 ```bash
-# Auto mode - detects client type automatically (recommended)
-envcp serve --mode auto --port 3456
+# Variable Management
+envcp add <name> [options]    # Add a variable
+envcp list [--show-values]    # List variables
+envcp get <name>              # Get a variable
+envcp remove <name>           # Remove a variable
+
+# Session Management
+envcp unlock                  # Unlock with password
+envcp lock                    # Lock immediately
+envcp status                  # Check session status
 
-# Or specific modes:
-envcp serve --mode mcp       # For Claude Desktop, Cursor, etc.
-envcp serve --mode rest      # For REST API clients
-envcp serve --mode openai    # For ChatGPT/OpenAI-compatible
-envcp serve --mode gemini    # For Google Gemini
-envcp serve --mode all       # All protocols on same port
+# Sync and Export
+envcp sync                    # Sync to .env file
+envcp export [--format env|json|yaml]
 ```
 
+## Why EnvCP?
+
+- **Local-only storage** — Your secrets never leave your machine
+- **Encrypted at rest** — AES-256-GCM with PBKDF2 key derivation (100,000 iterations)
+- **Reference-based access** — AI references variables by name, never sees the actual values
+- **Automatic .env injection** — Values can be automatically injected into your .env files
+- **AI Access Control** — Block AI from proactively listing or checking your secrets
+- **Universal Compatibility** — Works with any AI tool via MCP, OpenAI, Gemini, or REST protocols
+
+---
+
 ## Integration Guides
 
 ### Claude Desktop / Cursor / Cline (MCP)
 
-Add to your config file:
+Add to your MCP config file:
 
 ```json
 {
   "mcpServers": {
     "envcp": {
       "command": "npx",
-      "args": ["envcp", "serve", "--mode", "mcp"]
+      "args": ["@fentz26/envcp", "serve", "--mode", "mcp"]
     }
   }
 }
@@ -107,26 +79,18 @@ Add to your config file:
 
 ### ChatGPT / OpenAI API
 
-Start the server in OpenAI mode:
-
 ```bash
 envcp serve --mode openai --port 3456 --api-key your-secret-key
 ```
 
-Use with OpenAI client:
-
 ```python
 import openai
 
-# Point to EnvCP server
 client = openai.OpenAI(
     base_url="http://localhost:3456/v1",
     api_key="your-secret-key"
 )
 
-# Get available functions
-functions = client.get("/functions")
-
 # Call a function
 result = client.post("/functions/call", json={
     "name": "envcp_get",
@@ -136,14 +100,10 @@ result = client.post("/functions/call", json={
 
 ### Gemini / Google AI
 
-Start the server in Gemini mode:
-
 ```bash
 envcp serve --mode gemini --port 3456 --api-key your-secret-key
 ```
 
-Use with Gemini:
-
 ```python
 import requests
 
@@ -163,22 +123,18 @@ result = requests.post(
 
 ### Local LLMs (Ollama, LM Studio)
 
-For local LLMs, use REST API mode or OpenAI-compatible mode:
-
 ```bash
-# REST API (universal)
-envcp serve --mode rest --port 3456
-
 # OpenAI-compatible (works with most local LLM tools)
 envcp serve --mode openai --port 3456
+
+# Or universal REST
+envcp serve --mode rest --port 3456
 ```
 
-Then configure your LLM tool to use `http://localhost:3456` as the tool server.
+Configure your LLM tool to use `http://localhost:3456` as the tool server.
 
 ### REST API (Universal)
 
-Start the server:
-
 ```bash
 envcp serve --mode rest --port 3456 --api-key your-secret-key
 ```
@@ -198,8 +154,6 @@ GET    /api/tools               - List available tools
 POST   /api/tools/:name         - Call tool by name
 ```
 
-Example:
-
 ```bash
 # List variables
 curl -H "X-API-Key: your-secret-key" http://localhost:3456/api/variables
@@ -218,36 +172,14 @@ curl -X POST -H "X-API-Key: your-secret-key" \
 
 | Mode | Description | Use Case |
 |------|-------------|----------|
+| `auto` | Auto-detect client from headers | Universal (recommended for HTTP) |
 | `mcp` | Model Context Protocol (stdio) | Claude Desktop, Cursor, Cline |
 | `rest` | REST API (HTTP) | Any HTTP client, custom integrations |
 | `openai` | OpenAI function calling format | ChatGPT, GPT-4 API, OpenAI-compatible tools |
 | `gemini` | Google function calling format | Gemini, Google AI |
 | `all` | All HTTP protocols on same port | Multiple clients |
-| `auto` | Auto-detect client from headers | Universal (recommended for HTTP) |
-
-## CLI Commands
 
 ```bash
-# Initialize
-envcp init [options]
-
-# Session Management
-envcp unlock              # Unlock session with password
-envcp lock                # Lock session immediately
-envcp status              # Check session status
-envcp extend [minutes]    # Extend session duration
-
-# Variable Management
-envcp add <name> [options]
-envcp list [--show-values]
-envcp get <name>
-envcp remove <name>
-
-# Sync and Export
-envcp sync                # Sync to .env file
-envcp export [--format env|json|yaml]
-
-# Server
 envcp serve [options]
   --mode, -m      Server mode: mcp, rest, openai, gemini, all, auto
   --port          HTTP port (default: 3456)
@@ -256,9 +188,40 @@ envcp serve [options]
   --password, -p  Encryption password
 ```
 
-## Configuration
+## Platform Compatibility
+
+| Platform | Support | Protocol |
+|----------|---------|----------|
+| Claude Desktop | Native | MCP |
+| Claude Code | Native | MCP |
+| Cursor | Native | MCP |
+| Cline (VS Code) | Native | MCP |
+| Continue.dev | Native | MCP |
+| Zed Editor | Native | MCP |
+| ChatGPT | Via API | OpenAI Function Calling |
+| GPT-4 API | Via API | OpenAI Function Calling |
+| Gemini | Via API | Google Function Calling |
+| Gemini API | Via API | Google Function Calling |
+| Local LLMs (Ollama) | Via API | REST / OpenAI-compatible |
+| LM Studio | Via API | REST / OpenAI-compatible |
+| Open WebUI | Via API | REST |
+| Any HTTP Client | Via API | REST |
 
-### envcp.yaml
+## Available Tools
+
+All protocols expose the same tools:
+
+| Tool | Description |
+|------|-------------|
+| `envcp_list` | List variable names (not values) |
+| `envcp_get` | Get a variable (masked by default) |
+| `envcp_set` | Create/update a variable |
+| `envcp_delete` | Delete a variable |
+| `envcp_sync` | Sync to .env file |
+| `envcp_run` | Run command with env vars injected |
+| `envcp_check_access` | Check if variable is accessible |
+
+## Configuration (envcp.yaml)
 
 ```yaml
 version: "1.0"
@@ -298,20 +261,6 @@ sync:
     - "*_SECRET"
 ```
 
-## Available Tools
-
-All protocols expose the same tools:
-
-| Tool | Description |
-|------|-------------|
-| `envcp_list` | List variable names (not values) |
-| `envcp_get` | Get a variable (masked by default) |
-| `envcp_set` | Create/update a variable |
-| `envcp_delete` | Delete a variable |
-| `envcp_sync` | Sync to .env file |
-| `envcp_run` | Run command with env vars injected |
-| `envcp_check_access` | Check if variable is accessible |
-
 ## AI Access Control
 
 ### Disable Active Checking
@@ -338,7 +287,7 @@ access:
 
 ## Security
 
-### Encryption
+### Encryption Details
 
 - **Cipher**: AES-256-GCM
 - **Key Derivation**: PBKDF2-SHA512 (100,000 iterations)
@@ -364,16 +313,16 @@ Authorization: Bearer your-secret-key
 
 ## Best Practices
 
-1. **Never commit `.envcp/`** - Add to `.gitignore`
-2. **Use API keys for HTTP modes** - Protect your server endpoints
-3. **Disable `allow_ai_active_check`** - Prevent AI from probing for variables
-4. **Use blacklist patterns** - Block sensitive variable patterns
-5. **Use `auto` mode for HTTP** - Let EnvCP detect the client type
-6. **Review access logs** - Check `.envcp/logs/` regularly
+1. **Never commit `.envcp/`** — Add to `.gitignore`
+2. **Use API keys for HTTP modes** — Protect your server endpoints
+3. **Disable `allow_ai_active_check`** — Prevent AI from probing for variables
+4. **Use blacklist patterns** — Block sensitive variable patterns
+5. **Use `auto` mode for HTTP** — Let EnvCP detect the client type
+6. **Review access logs** — Check `.envcp/logs/` regularly
 
 ## License
 
-MIT License - See LICENSE file for details.
+MIT License — See LICENSE file for details.
 
 ## Support
 

package/dist/adapters/base.d.ts

@@ -10,6 +10,7 @@ export declare abstract class BaseAdapter {
     protected tools: Map<string, ToolDefinition>;
     constructor(config: EnvCPConfig, projectPath: string, password?: string);
     protected abstract registerTools(): void;
+    protected registerDefaultTools(): void;
     init(): Promise<void>;
     protected ensurePassword(): Promise<void>;
     getToolDefinitions(): ToolDefinition[];
@@ -60,9 +61,7 @@ export declare abstract class BaseAdapter {
         name: string;
     }): Promise<{
         name: string;
-        exists: boolean;
         accessible: boolean;
-        blacklisted: boolean;
         message: string;
     }>;
     private parseCommand;

package/dist/adapters/base.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"base.d.ts","sourceRoot":"","sources":["../../src/adapters/base.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,cAAc,EAAE,UAAU,EAAE,MAAM,qBAAqB,CAAC;AACjE,OAAO,EAAE,WAAW,EAAY,cAAc,EAAE,MAAM,aAAa,CAAC;AAGpE,OAAO,EAAE,cAAc,EAAE,MAAM,qBAAqB,CAAC;AAKrD,8BAAsB,WAAW;IAC/B,SAAS,CAAC,OAAO,EAAE,cAAc,CAAC;IAClC,SAAS,CAAC,IAAI,EAAE,UAAU,CAAC;IAC3B,SAAS,CAAC,cAAc,EAAE,cAAc,CAAC;IACzC,SAAS,CAAC,MAAM,EAAE,WAAW,CAAC;IAC9B,SAAS,CAAC,WAAW,EAAE,MAAM,CAAC;IAC9B,SAAS,CAAC,KAAK,EAAE,GAAG,CAAC,MAAM,EAAE,cAAc,CAAC,CAAC;gBAEjC,MAAM,EAAE,WAAW,EAAE,WAAW,EAAE,MAAM,EAAE,QAAQ,CAAC,EAAE,MAAM;IAuBvE,SAAS,CAAC,QAAQ,CAAC,aAAa,IAAI,IAAI;IAElC,IAAI,IAAI,OAAO,CAAC,IAAI,CAAC;cAKX,cAAc,IAAI,OAAO,CAAC,IAAI,CAAC;IAS/C,kBAAkB,IAAI,cAAc,EAAE;IAIhC,QAAQ,CAAC,IAAI,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,GAAG,OAAO,CAAC,OAAO,CAAC;cAU/D,aAAa,CAAC,IAAI,EAAE;QAAE,IAAI,CAAC,EAAE,MAAM,EAAE,CAAA;KAAE,GAAG,OAAO,CAAC;QAAE,SAAS,EAAE,MAAM,EAAE,CAAC;QAAC,KAAK,EAAE,MAAM,CAAA;KAAE,CAAC;cA+BzF,WAAW,CAAC,IAAI,EAAE;QAAE,IAAI,EAAE,MAAM,CAAC;QAAC,UAAU,CAAC,EAAE,OAAO,CAAA;KAAE,GAAG,OAAO,CAAC;QACjF,IAAI,EAAE,MAAM,CAAC;QACb,KAAK,EAAE,MAAM,CAAC;QACd,IAAI,CAAC,EAAE,MAAM,EAAE,CAAC;QAChB,WAAW,CAAC,EAAE,MAAM,CAAC;QACrB,SAAS,EAAE,OAAO,CAAC;KACpB,CAAC;cA2Cc,WAAW,CAAC,IAAI,EAAE;QAChC,IAAI,EAAE,MAAM,CAAC;QACb,KAAK,EAAE,MAAM,CAAC;QACd,IAAI,CAAC,EAAE,MAAM,EAAE,CAAC;QAChB,WAAW,CAAC,EAAE,MAAM,CAAC;KACtB,GAAG,OAAO,CAAC;QAAE,OAAO,EAAE,OAAO,CAAC;QAAC,OAAO,EAAE,MAAM,CAAA;KAAE,CAAC;cAqClC,cAAc,CAAC,IAAI,EAAE;QAAE,IAAI,EAAE,MAAM,CAAA;KAAE,GAAG,OAAO,CAAC;QAAE,OAAO,EAAE,OAAO,CAAC;QAAC,OAAO,EAAE,MAAM,CAAA;KAAE,CAAC;cAsBtF,SAAS,IAAI,OAAO,CAAC;QAAE,OAAO,EAAE,OAAO,CAAC;QAAC,OAAO,EAAE,MAAM,CAAA;KAAE,CAAC;cA+C3D,QAAQ,CAAC,IAAI,EAAE;QAAE,IAAI,EAAE,MAAM,CAAC;QAAC,QAAQ,CAAC,EAAE,MAAM,CAAA;KAAE,GAAG,OAAO,CAAC;QAAE,OAAO,EAAE,OAAO,CAAC;QAAC,OAAO,EAAE,MAAM,CAAA;KAAE,CAAC;cA+CnG,WAAW,CAAC,IAAI,EAAE;QAAE,IAAI,EAAE,MAAM,CAAA;KAAE,GAAG,OAAO,CAAC;QAC3D,IAAI,EAAE,MAAM,CAAC;QACb,MAAM,EAAE,OAAO,CAAC;QAChB,UAAU,EAAE,OAAO,CAAC;QACpB,WAAW,EAAE,OAAO,CAAC;QACrB,OAAO,EAAE,MAAM,CAAC;KACjB,CAAC;IAwBF,OAAO,CAAC,YAAY;IA2BpB,OAAO,CAAC,eAAe;cAOP,UAAU,CAAC,IAAI,EAAE;QAAE,OAAO,EAAE,MAAM,CAAC;QAAC,SAAS,EAAE,MAAM,EAAE,CAAA;KAAE,GAAG,OAAO,CAAC;QAClF,QAAQ,EAAE,MAAM,GAAG,IAAI,CAAC;QACxB,MAAM,EAAE,MAAM,CAAC;QACf,MAAM,EAAE,MAAM,CAAC;KAChB,CAAC;CAkCH"}
+{"version":3,"file":"base.d.ts","sourceRoot":"","sources":["../../src/adapters/base.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,cAAc,EAAE,UAAU,EAAE,MAAM,qBAAqB,CAAC;AACjE,OAAO,EAAE,WAAW,EAAY,cAAc,EAAE,MAAM,aAAa,CAAC;AAGpE,OAAO,EAAE,cAAc,EAAE,MAAM,qBAAqB,CAAC;AAKrD,8BAAsB,WAAW;IAC/B,SAAS,CAAC,OAAO,EAAE,cAAc,CAAC;IAClC,SAAS,CAAC,IAAI,EAAE,UAAU,CAAC;IAC3B,SAAS,CAAC,cAAc,EAAE,cAAc,CAAC;IACzC,SAAS,CAAC,MAAM,EAAE,WAAW,CAAC;IAC9B,SAAS,CAAC,WAAW,EAAE,MAAM,CAAC;IAC9B,SAAS,CAAC,KAAK,EAAE,GAAG,CAAC,MAAM,EAAE,cAAc,CAAC,CAAC;gBAEjC,MAAM,EAAE,WAAW,EAAE,WAAW,EAAE,MAAM,EAAE,QAAQ,CAAC,EAAE,MAAM;IAuBvE,SAAS,CAAC,QAAQ,CAAC,aAAa,IAAI,IAAI;IAExC,SAAS,CAAC,oBAAoB,IAAI,IAAI;IAsGhC,IAAI,IAAI,OAAO,CAAC,IAAI,CAAC;cAKX,cAAc,IAAI,OAAO,CAAC,IAAI,CAAC;IAS/C,kBAAkB,IAAI,cAAc,EAAE;IAIhC,QAAQ,CAAC,IAAI,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,GAAG,OAAO,CAAC,OAAO,CAAC;cAU/D,aAAa,CAAC,IAAI,EAAE;QAAE,IAAI,CAAC,EAAE,MAAM,EAAE,CAAA;KAAE,GAAG,OAAO,CAAC;QAAE,SAAS,EAAE,MAAM,EAAE,CAAC;QAAC,KAAK,EAAE,MAAM,CAAA;KAAE,CAAC;cA+BzF,WAAW,CAAC,IAAI,EAAE;QAAE,IAAI,EAAE,MAAM,CAAC;QAAC,UAAU,CAAC,EAAE,OAAO,CAAA;KAAE,GAAG,OAAO,CAAC;QACjF,IAAI,EAAE,MAAM,CAAC;QACb,KAAK,EAAE,MAAM,CAAC;QACd,IAAI,CAAC,EAAE,MAAM,EAAE,CAAC;QAChB,WAAW,CAAC,EAAE,MAAM,CAAC;QACrB,SAAS,EAAE,OAAO,CAAC;KACpB,CAAC;cA2Cc,WAAW,CAAC,IAAI,EAAE;QAChC,IAAI,EAAE,MAAM,CAAC;QACb,KAAK,EAAE,MAAM,CAAC;QACd,IAAI,CAAC,EAAE,MAAM,EAAE,CAAC;QAChB,WAAW,CAAC,EAAE,MAAM,CAAC;KACtB,GAAG,OAAO,CAAC;QAAE,OAAO,EAAE,OAAO,CAAC;QAAC,OAAO,EAAE,MAAM,CAAA;KAAE,CAAC;cAyClC,cAAc,CAAC,IAAI,EAAE;QAAE,IAAI,EAAE,MAAM,CAAA;KAAE,GAAG,OAAO,CAAC;QAAE,OAAO,EAAE,OAAO,CAAC;QAAC,OAAO,EAAE,MAAM,CAAA;KAAE,CAAC;cAsBtF,SAAS,IAAI,OAAO,CAAC;QAAE,OAAO,EAAE,OAAO,CAAC;QAAC,OAAO,EAAE,MAAM,CAAA;KAAE,CAAC;cA8C3D,QAAQ,CAAC,IAAI,EAAE;QAAE,IAAI,EAAE,MAAM,CAAC;QAAC,QAAQ,CAAC,EAAE,MAAM,CAAA;KAAE,GAAG,OAAO,CAAC;QAAE,OAAO,EAAE,OAAO,CAAC;QAAC,OAAO,EAAE,MAAM,CAAA;KAAE,CAAC;cAsDnG,WAAW,CAAC,IAAI,EAAE;QAAE,IAAI,EAAE,MAAM,CAAA;KAAE,GAAG,OAAO,CAAC;QAC3D,IAAI,EAAE,MAAM,CAAC;QACb,UAAU,EAAE,OAAO,CAAC;QACpB,OAAO,EAAE,MAAM,CAAC;KACjB,CAAC;IAsBF,OAAO,CAAC,YAAY;IA2BpB,OAAO,CAAC,eAAe;cAOP,UAAU,CAAC,IAAI,EAAE;QAAE,OAAO,EAAE,MAAM,CAAC;QAAC,SAAS,EAAE,MAAM,EAAE,CAAA;KAAE,GAAG,OAAO,CAAC;QAClF,QAAQ,EAAE,MAAM,GAAG,IAAI,CAAC;QACxB,MAAM,EAAE,MAAM,CAAC;QACf,MAAM,EAAE,MAAM,CAAC;KAChB,CAAC;CAyDH"}

package/dist/adapters/base.js

@@ -1,6 +1,6 @@
 import { StorageManager, LogManager } from '../storage/index.js';
 import { maskValue } from '../utils/crypto.js';
-import { canAccess, isBlacklisted, canAIActiveCheck } from '../config/manager.js';
+import { canAccess, isBlacklisted, canAIActiveCheck, validateVariableName, matchesPattern } from '../config/manager.js';
 import { SessionManager } from '../utils/session.js';
 import * as fs from 'fs-extra';
 import * as path from 'path';
@@ -24,6 +24,106 @@ export class BaseAdapter {
         this.tools = new Map();
         this.registerTools();
     }
+    registerDefaultTools() {
+        const tools = [
+            {
+                name: 'envcp_list',
+                description: 'List all available environment variable names. Values are never shown.',
+                parameters: {
+                    type: 'object',
+                    properties: {
+                        tags: { type: 'array', items: { type: 'string' }, description: 'Filter by tags' },
+                    },
+                },
+                handler: async (params) => this.listVariables(params),
+            },
+            {
+                name: 'envcp_get',
+                description: 'Get an environment variable. Returns masked value by default.',
+                parameters: {
+                    type: 'object',
+                    properties: {
+                        name: { type: 'string', description: 'Variable name' },
+                        show_value: { type: 'boolean', description: 'Show actual value (requires user confirmation)' },
+                    },
+                    required: ['name'],
+                },
+                handler: async (params) => this.getVariable(params),
+            },
+            {
+                name: 'envcp_set',
+                description: 'Create or update an environment variable.',
+                parameters: {
+                    type: 'object',
+                    properties: {
+                        name: { type: 'string', description: 'Variable name' },
+                        value: { type: 'string', description: 'Variable value' },
+                        tags: { type: 'array', items: { type: 'string' }, description: 'Tags' },
+                        description: { type: 'string', description: 'Description' },
+                    },
+                    required: ['name', 'value'],
+                },
+                handler: async (params) => this.setVariable(params),
+            },
+            {
+                name: 'envcp_delete',
+                description: 'Delete an environment variable.',
+                parameters: {
+                    type: 'object',
+                    properties: {
+                        name: { type: 'string', description: 'Variable name' },
+                    },
+                    required: ['name'],
+                },
+                handler: async (params) => this.deleteVariable(params),
+            },
+            {
+                name: 'envcp_sync',
+                description: 'Sync variables to .env file.',
+                parameters: { type: 'object', properties: {} },
+                handler: async () => this.syncToEnv(),
+            },
+            {
+                name: 'envcp_run',
+                description: 'Execute a command with environment variables injected.',
+                parameters: {
+                    type: 'object',
+                    properties: {
+                        command: { type: 'string', description: 'Command to execute' },
+                        variables: { type: 'array', items: { type: 'string' }, description: 'Variables to inject' },
+                    },
+                    required: ['command', 'variables'],
+                },
+                handler: async (params) => this.runCommand(params),
+            },
+            {
+                name: 'envcp_add_to_env',
+                description: 'Write a stored variable to a .env file.',
+                parameters: {
+                    type: 'object',
+                    properties: {
+                        name: { type: 'string', description: 'Variable name to add' },
+                        env_file: { type: 'string', description: 'Path to .env file (default: .env)' },
+                    },
+                    required: ['name'],
+                },
+                handler: async (params) => this.addToEnv(params),
+            },
+            {
+                name: 'envcp_check_access',
+                description: 'Check if a variable exists and can be accessed.',
+                parameters: {
+                    type: 'object',
+                    properties: {
+                        name: { type: 'string', description: 'Variable name to check' },
+                    },
+                    required: ['name'],
+                },
+                handler: async (params) => this.checkAccess(params),
+            },
+        ];
+        tools.forEach(tool => this.tools.set(tool.name, tool));
+    }
     async init() {
         await this.logs.init();
         await this.sessionManager.init();
@@ -111,6 +211,9 @@ export class BaseAdapter {
         if (!this.config.access.allow_ai_write) {
             throw new Error('AI write access is disabled');
         }
+        if (!validateVariableName(args.name)) {
+            throw new Error(`Invalid variable name '${args.name}'. Must match [A-Za-z_][A-Za-z0-9_]*`);
+        }
         if (isBlacklisted(args.name, this.config)) {
             throw new Error(`Variable '${args.name}' is blacklisted`);
         }
@@ -171,14 +274,13 @@ export class BaseAdapter {
             if (isBlacklisted(name, this.config)) {
                 continue;
             }
-            const excluded = this.config.sync.exclude?.some(pattern => {
-                const regex = new RegExp('^' + pattern.replace(/\*/g, '.*') + '$');
-                return regex.test(name);
-            });
+            const excluded = this.config.sync.exclude?.some(pattern => matchesPattern(name, pattern));
             if (excluded || !variable.sync_to_env) {
                 continue;
             }
-            lines.push(`${name}=${variable.value}`);
+            const needsQuoting = /[\s#"'\\]/.test(variable.value);
+            const val = needsQuoting ? `"${variable.value.replace(/\\/g, '\\\\').replace(/"/g, '\\"')}"` : variable.value;
+            lines.push(`${name}=${val}`);
         }
         const envPath = path.join(this.projectPath, this.config.sync.target);
         await fs.writeFile(envPath, lines.join('\n'), 'utf8');
@@ -199,24 +301,29 @@ export class BaseAdapter {
         if (isBlacklisted(args.name, this.config)) {
             throw new Error(`Variable '${args.name}' is blacklisted`);
         }
-        const envPath = path.join(this.projectPath, args.env_file || '.env');
+        const envPath = path.resolve(this.projectPath, args.env_file || '.env');
+        if (!envPath.startsWith(path.resolve(this.projectPath))) {
+            throw new Error('env_file must be within the project directory');
+        }
         let content = '';
         if (await fs.pathExists(envPath)) {
             content = await fs.readFile(envPath, 'utf8');
         }
         const envVars = dotenv.parse(content);
+        const needsQuoting = /[\s#"'\\]/.test(variable.value);
+        const quotedValue = needsQuoting ? `"${variable.value.replace(/\\/g, '\\\\').replace(/"/g, '\\"')}"` : variable.value;
         if (envVars[args.name]) {
             const lines = content.split('\n');
             const newLines = lines.map(line => {
                 if (line.startsWith(`${args.name}=`)) {
-                    return `${args.name}=${variable.value}`;
+                    return `${args.name}=${quotedValue}`;
                 }
                 return line;
             });
             content = newLines.join('\n');
         }
         else {
-            content += `\n${args.name}=${variable.value}`;
+            content += `\n${args.name}=${quotedValue}`;
         }
         await fs.writeFile(envPath, content, 'utf8');
         await this.logs.log({
@@ -244,10 +351,8 @@ export class BaseAdapter {
         });
         return {
             name: args.name,
-            exists,
             accessible,
-            blacklisted,
-            message: accessible ? 'Variable exists and can be accessed' : 'Variable cannot be accessed or does not exist',
+            message: accessible ? 'Variable exists and can be accessed' : 'Variable cannot be accessed',
         };
     }
     parseCommand(command) {
@@ -286,9 +391,17 @@ export class BaseAdapter {
         }
     }
     async runCommand(args) {
+        if (!this.config.access.allow_ai_execute) {
+            throw new Error('AI command execution is disabled');
+        }
         this.validateCommand(args.command);
         const { spawn } = await import('child_process');
-        const { program, args: cmdArgs } = this.parseCommand(args.command);
+        const { program: prog, args: cmdArgs } = this.parseCommand(args.command);
+        if (this.config.access.allowed_commands && this.config.access.allowed_commands.length > 0) {
+            if (!this.config.access.allowed_commands.includes(prog)) {
+                throw new Error(`Command '${prog}' is not in the allowed commands list`);
+            }
+        }
         const env = { ...process.env };
         for (const name of args.variables) {
             if (isBlacklisted(name, this.config)) {
@@ -299,16 +412,28 @@ export class BaseAdapter {
                 env[name] = variable.value;
             }
         }
+        const TIMEOUT_MS = 30000;
         return new Promise((resolve) => {
-            const proc = spawn(program, cmdArgs, {
+            const proc = spawn(prog, cmdArgs, {
                 env,
                 cwd: this.projectPath,
             });
             let stdout = '';
             let stderr = '';
+            let killed = false;
+            const timer = setTimeout(() => {
+                killed = true;
+                proc.kill('SIGTERM');
+                setTimeout(() => { if (!proc.killed)
+                    proc.kill('SIGKILL'); }, 5000);
+            }, TIMEOUT_MS);
             proc.stdout.on('data', (data) => { stdout += data; });
             proc.stderr.on('data', (data) => { stderr += data; });
             proc.on('close', (code) => {
+                clearTimeout(timer);
+                if (killed) {
+                    stderr += '\n[Process killed: exceeded 30s timeout]';
+                }
                 resolve({ exitCode: code, stdout, stderr });
             });
         });