envpkt 0.11.4 → 0.11.5

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (2) hide show
  1. package/dist/cli.js +12 -1
  2. package/package.json +1 -1
package/dist/cli.js CHANGED
@@ -3850,6 +3850,12 @@ const runSeal = async (options) => {
3850
3850
  console.error(`${DIM}Available keys: ${Object.keys(allSecretEntries).join(", ")}${RESET}`);
3851
3851
  process.exit(2);
3852
3852
  }
3853
+ const aliasKeys = editKeys.filter((k) => allSecretEntries[k].from_key !== void 0);
3854
+ if (aliasKeys.length > 0) {
3855
+ console.error(`${RED}Error:${RESET} Cannot seal alias entries: ${aliasKeys.join(", ")}`);
3856
+ console.error(`${DIM}Aliases reference another secret's value via from_key — seal the target instead.${RESET}`);
3857
+ process.exit(2);
3858
+ }
3853
3859
  if (!process.stdin.isTTY) {
3854
3860
  console.error(`${RED}Error:${RESET} --edit requires an interactive terminal`);
3855
3861
  process.exit(2);
@@ -3888,9 +3894,14 @@ const runSeal = async (options) => {
3888
3894
  return;
3889
3895
  }
3890
3896
  const allSecretEntries = config.secret ?? {};
3891
- const allKeys = Object.keys(allSecretEntries);
3897
+ const allKeys = Object.keys(allSecretEntries).filter((k) => allSecretEntries[k].from_key === void 0);
3898
+ const skippedAliases = Object.keys(allSecretEntries).filter((k) => allSecretEntries[k].from_key !== void 0);
3892
3899
  const alreadySealed = allKeys.filter((k) => allSecretEntries[k].encrypted_value);
3893
3900
  const unsealed = allKeys.filter((k) => !allSecretEntries[k].encrypted_value);
3901
+ if (skippedAliases.length > 0) {
3902
+ const noun = skippedAliases.length === 1 ? "alias" : "aliases";
3903
+ console.error(`${DIM}Skipping ${skippedAliases.length} ${noun}: ${skippedAliases.join(", ")}${RESET}`);
3904
+ }
3894
3905
  if (!options.reseal && alreadySealed.length > 0) {
3895
3906
  if (unsealed.length === 0) {
3896
3907
  console.log(`${GREEN}✓${RESET} All ${BOLD}${alreadySealed.length}${RESET} secret(s) already sealed. Use ${CYAN}--reseal${RESET} to re-encrypt.`);
package/package.json CHANGED
@@ -1,6 +1,6 @@
1
1
  {
2
2
  "name": "envpkt",
3
- "version": "0.11.4",
3
+ "version": "0.11.5",
4
4
  "description": "Credential lifecycle and fleet management for AI agents",
5
5
  "keywords": [
6
6
  "credentials",