npm - dotsec - Versions diffs - 0.2.0 → 0.3.0 - Mend

dotsec 0.2.0 → 0.3.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (6) hide show

package/README.md CHANGED Viewed

@@ -1,3 +1,63 @@
 # dotsec
-Secure dot env. Check back soon.
+Secure dot env. Encrypts your .env so you can safely store it in your project.
+## Usage
+Create a user managed AWS KMS key, add an alias. Refer to the AWS documentation for [creating keys](https://docs.aws.amazon.com/kms/latest/developerguide/create-keys.html) and [managing aliases](https://docs.aws.amazon.com/kms/latest/developerguide/alias-manage.html#alias-create)
+> the default key alias is set to `alias/top-secret`
+### Encrypting a `.env` file into a `.sec` file
+```sh
+npx dotsec encrypt-env
+```
+### Decrypting a `.sec` file into a `.env` file
+```sh
+npx dotsec decrypt-env
+```
+### Using a `.sec` file as environment variables
+```sh
+npx dotsec node index.js
+```
+## Using json secrets
+### Encrypting a `secrets.json` file into a `secrets.encrypted.json` file
+```sh
+npx dotsec encrypt-secrets-json
+```
+### Decrypting a `secrets.encrypted.json` file into a `secrets.json` file
+```sh
+npx dotsec decrypt-secrets-json
+```
+### Offload a `secrets.encrypted.json` file to SSM
+```sh
+npx dotsec offload-secrets-json-to-ssm
+```
+### FAQ
+#### Is it safe to commit a `.sec` file alongside your code?
+Yes it is. The encryption key is managed by AWS, as long as you audit which principals can encrypt and decrypt you're good.
+#### Should I use this in production?
+We do, however, since this package is relatively new, I don't think you should.