keyenv 0.1.0

package/LICENSE

@@ -0,0 +1,21 @@
+MIT License
+
+Copyright (c) 2025 KeyEnv
+
+Permission is hereby granted, free of charge, to any person obtaining a copy
+of this software and associated documentation files (the "Software"), to deal
+in the Software without restriction, including without limitation the rights
+to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+copies of the Software, and to permit persons to whom the Software is
+furnished to do so, subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in all
+copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
+SOFTWARE.

package/README.md

@@ -0,0 +1,162 @@
+# KeyEnv Node.js SDK
+
+Official Node.js SDK for [KeyEnv](https://keyenv.dev) - Secure secrets management for development teams.
+
+## Installation
+
+```bash
+npm install keyenv
+```
+
+## Quick Start
+
+```typescript
+import { KeyEnv } from 'keyenv';
+
+const client = new KeyEnv({
+  token: process.env.KEYENV_TOKEN!,
+});
+
+// Load secrets into process.env
+await client.loadEnv('your-project-id', 'production');
+console.log(process.env.DATABASE_URL);
+```
+
+## Usage
+
+### Initialize the Client
+
+```typescript
+import { KeyEnv } from 'keyenv';
+
+const client = new KeyEnv({
+  token: 'your-service-token',
+});
+```
+
+### Export Secrets
+
+```typescript
+// Get all secrets as an array
+const secrets = await client.exportSecrets('project-id', 'production');
+for (const secret of secrets) {
+  console.log(`${secret.key}=${secret.value}`);
+}
+
+// Get secrets as a key-value object
+const env = await client.exportSecretsAsObject('project-id', 'production');
+console.log(env.DATABASE_URL);
+
+// Load directly into process.env
+const count = await client.loadEnv('project-id', 'production');
+console.log(`Loaded ${count} secrets`);
+```
+
+### Manage Secrets
+
+```typescript
+// Get a single secret
+const secret = await client.getSecret('project-id', 'production', 'DATABASE_URL');
+console.log(secret.value);
+
+// Set a secret (creates or updates)
+await client.setSecret('project-id', 'production', 'API_KEY', 'sk_live_...');
+
+// Delete a secret
+await client.deleteSecret('project-id', 'production', 'OLD_KEY');
+```
+
+### Bulk Import
+
+```typescript
+const result = await client.bulkImport('project-id', 'development', [
+  { key: 'DATABASE_URL', value: 'postgres://localhost/mydb' },
+  { key: 'REDIS_URL', value: 'redis://localhost:6379' },
+  { key: 'API_KEY', value: 'sk_test_...', description: 'Test API key' },
+], { overwrite: true });
+
+console.log(`Created: ${result.created}, Updated: ${result.updated}`);
+```
+
+### Generate .env File
+
+```typescript
+import { writeFileSync } from 'fs';
+
+const envContent = await client.generateEnvFile('project-id', 'production');
+writeFileSync('.env', envContent);
+```
+
+### List Projects and Environments
+
+```typescript
+// List all projects
+const projects = await client.listProjects();
+for (const project of projects) {
+  console.log(`${project.name} (${project.id})`);
+}
+
+// Get project with environments
+const project = await client.getProject('project-id');
+for (const env of project.environments) {
+  console.log(`  - ${env.name}`);
+}
+```
+
+## Error Handling
+
+```typescript
+import { KeyEnv, KeyEnvError } from 'keyenv';
+
+try {
+  await client.getSecret('project-id', 'production', 'MISSING_KEY');
+} catch (error) {
+  if (error instanceof KeyEnvError) {
+    console.error(`Error ${error.status}: ${error.message}`);
+    if (error.status === 404) {
+      console.error('Secret not found');
+    }
+  }
+}
+```
+
+## TypeScript Support
+
+The SDK is written in TypeScript and includes full type definitions:
+
+```typescript
+import type { Secret, SecretWithValue, Project } from 'keyenv';
+```
+
+## API Reference
+
+### `new KeyEnv(options)`
+
+Create a new KeyEnv client.
+
+| Option | Type | Required | Default | Description |
+|--------|------|----------|---------|-------------|
+| `token` | `string` | Yes | - | Service token |
+| `timeout` | `number` | No | `30000` | Request timeout (ms) |
+
+### Methods
+
+| Method | Description |
+|--------|-------------|
+| `getCurrentUser()` | Get current user/token info |
+| `listProjects()` | List all accessible projects |
+| `getProject(id)` | Get project with environments |
+| `listEnvironments(projectId)` | List environments in a project |
+| `listSecrets(projectId, env)` | List secret keys (no values) |
+| `exportSecrets(projectId, env)` | Export secrets with values |
+| `exportSecretsAsObject(projectId, env)` | Export as key-value object |
+| `getSecret(projectId, env, key)` | Get single secret |
+| `setSecret(projectId, env, key, value)` | Create or update secret |
+| `deleteSecret(projectId, env, key)` | Delete secret |
+| `bulkImport(projectId, env, secrets)` | Bulk import secrets |
+| `loadEnv(projectId, env)` | Load secrets into process.env |
+| `generateEnvFile(projectId, env)` | Generate .env file content |
+
+## License
+
+MIT

package/dist/index.d.mts

@@ -0,0 +1,187 @@
+/** KeyEnv client configuration options */
+interface KeyEnvOptions {
+    /** Service token for authentication */
+    token: string;
+    /** Request timeout in milliseconds (default: 30000) */
+    timeout?: number;
+}
+/** User or service token info */
+interface User {
+    id: string;
+    email?: string;
+    name?: string;
+    clerk_id?: string;
+    avatar_url?: string;
+    /** Present for service tokens */
+    auth_type?: 'service_token' | 'user';
+    /** Team ID (for service tokens) */
+    team_id?: string;
+    /** Project ID (for project-scoped service tokens) */
+    project_id?: string;
+    /** Token scopes (for service tokens) */
+    scopes?: string[];
+    created_at: string;
+}
+/** Project */
+interface Project {
+    id: string;
+    team_id: string;
+    name: string;
+    slug: string;
+    description?: string;
+    created_at: string;
+}
+/** Environment */
+interface Environment {
+    id: string;
+    project_id: string;
+    name: string;
+    inherits_from?: string;
+    created_at: string;
+}
+/** Project with environments */
+interface ProjectWithEnvironments extends Project {
+    environments: Environment[];
+}
+/** Secret (without value) */
+interface Secret {
+    id: string;
+    environment_id: string;
+    key: string;
+    type: string;
+    description?: string;
+    version: number;
+    created_at: string;
+    updated_at: string;
+}
+/** Secret with decrypted value */
+interface SecretWithValue extends Secret {
+    value: string;
+    inherited_from?: string;
+}
+/** Secret history entry */
+interface SecretHistory {
+    id: string;
+    secret_id: string;
+    value: string;
+    version: number;
+    changed_by?: string;
+    changed_at: string;
+}
+/** Bulk import request item */
+interface BulkSecretItem {
+    key: string;
+    value: string;
+    description?: string;
+}
+/** Bulk import result */
+interface BulkImportResult {
+    created: number;
+    updated: number;
+    skipped: number;
+}
+/** KeyEnv API error */
+declare class KeyEnvError extends Error {
+    readonly status: number;
+    readonly code?: string;
+    readonly details?: Record<string, unknown>;
+    constructor(message: string, status: number, code?: string, details?: Record<string, unknown>);
+}
+
+/**
+ * KeyEnv API client for managing secrets
+ *
+ * @example
+ * ```ts
+ * import { KeyEnv } from 'keyenv';
+ *
+ * const client = new KeyEnv({ token: process.env.KEYENV_TOKEN });
+ *
+ * // Export all secrets for an environment
+ * const secrets = await client.exportSecrets('project-id', 'production');
+ * ```
+ */
+declare class KeyEnv {
+    private readonly token;
+    private readonly timeout;
+    constructor(options: KeyEnvOptions);
+    private request;
+    /** Get the current user or service token info */
+    getCurrentUser(): Promise<User>;
+    /** Validate the token and return user info */
+    validateToken(): Promise<User>;
+    /** List all accessible projects */
+    listProjects(): Promise<Project[]>;
+    /** Get a project by ID */
+    getProject(projectId: string): Promise<ProjectWithEnvironments>;
+    /** Create a new project */
+    createProject(teamId: string, name: string): Promise<Project>;
+    /** Delete a project */
+    deleteProject(projectId: string): Promise<void>;
+    /** List environments in a project */
+    listEnvironments(projectId: string): Promise<Environment[]>;
+    /** Create a new environment */
+    createEnvironment(projectId: string, name: string, inheritsFrom?: string): Promise<Environment>;
+    /** Delete an environment */
+    deleteEnvironment(projectId: string, environment: string): Promise<void>;
+    /** List secrets in an environment (keys and metadata only) */
+    listSecrets(projectId: string, environment: string): Promise<Secret[]>;
+    /**
+     * Export all secrets with their decrypted values
+     * @example
+     * ```ts
+     * const secrets = await client.exportSecrets('project-id', 'production');
+     * for (const secret of secrets) {
+     *   process.env[secret.key] = secret.value;
+     * }
+     * ```
+     */
+    exportSecrets(projectId: string, environment: string): Promise<SecretWithValue[]>;
+    /**
+     * Export secrets as a key-value object
+     * @example
+     * ```ts
+     * const env = await client.exportSecretsAsObject('project-id', 'production');
+     * // { DATABASE_URL: '...', API_KEY: '...' }
+     * ```
+     */
+    exportSecretsAsObject(projectId: string, environment: string): Promise<Record<string, string>>;
+    /** Get a single secret with its value */
+    getSecret(projectId: string, environment: string, key: string): Promise<SecretWithValue>;
+    /** Create a new secret */
+    createSecret(projectId: string, environment: string, key: string, value: string, description?: string): Promise<Secret>;
+    /** Update a secret's value */
+    updateSecret(projectId: string, environment: string, key: string, value: string, description?: string): Promise<Secret>;
+    /** Set a secret (create or update) */
+    setSecret(projectId: string, environment: string, key: string, value: string, description?: string): Promise<Secret>;
+    /** Delete a secret */
+    deleteSecret(projectId: string, environment: string, key: string): Promise<void>;
+    /** Get secret version history */
+    getSecretHistory(projectId: string, environment: string, key: string): Promise<SecretHistory[]>;
+    /**
+     * Bulk import secrets
+     * @example
+     * ```ts
+     * await client.bulkImport('project-id', 'development', [
+     *   { key: 'DATABASE_URL', value: 'postgres://...' },
+     *   { key: 'API_KEY', value: 'sk_...' },
+     * ], { overwrite: true });
+     * ```
+     */
+    bulkImport(projectId: string, environment: string, secrets: BulkSecretItem[], options?: {
+        overwrite?: boolean;
+    }): Promise<BulkImportResult>;
+    /**
+     * Load secrets into process.env
+     * @example
+     * ```ts
+     * await client.loadEnv('project-id', 'production');
+     * console.log(process.env.DATABASE_URL);
+     * ```
+     */
+    loadEnv(projectId: string, environment: string): Promise<number>;
+    /** Generate .env file content from secrets */
+    generateEnvFile(projectId: string, environment: string): Promise<string>;
+}
+
+export { type BulkImportResult, type BulkSecretItem, type Environment, KeyEnv, KeyEnvError, type KeyEnvOptions, type Project, type ProjectWithEnvironments, type Secret, type SecretHistory, type SecretWithValue, type User };

package/dist/index.d.ts

@@ -0,0 +1,187 @@
+/** KeyEnv client configuration options */
+interface KeyEnvOptions {
+    /** Service token for authentication */
+    token: string;
+    /** Request timeout in milliseconds (default: 30000) */
+    timeout?: number;
+}
+/** User or service token info */
+interface User {
+    id: string;
+    email?: string;
+    name?: string;
+    clerk_id?: string;
+    avatar_url?: string;
+    /** Present for service tokens */
+    auth_type?: 'service_token' | 'user';
+    /** Team ID (for service tokens) */
+    team_id?: string;
+    /** Project ID (for project-scoped service tokens) */
+    project_id?: string;
+    /** Token scopes (for service tokens) */
+    scopes?: string[];
+    created_at: string;
+}
+/** Project */
+interface Project {
+    id: string;
+    team_id: string;
+    name: string;
+    slug: string;
+    description?: string;
+    created_at: string;
+}
+/** Environment */
+interface Environment {
+    id: string;
+    project_id: string;
+    name: string;
+    inherits_from?: string;
+    created_at: string;
+}
+/** Project with environments */
+interface ProjectWithEnvironments extends Project {
+    environments: Environment[];
+}
+/** Secret (without value) */
+interface Secret {
+    id: string;
+    environment_id: string;
+    key: string;
+    type: string;
+    description?: string;
+    version: number;
+    created_at: string;
+    updated_at: string;
+}
+/** Secret with decrypted value */
+interface SecretWithValue extends Secret {
+    value: string;
+    inherited_from?: string;
+}
+/** Secret history entry */
+interface SecretHistory {
+    id: string;
+    secret_id: string;
+    value: string;
+    version: number;
+    changed_by?: string;
+    changed_at: string;
+}
+/** Bulk import request item */
+interface BulkSecretItem {
+    key: string;
+    value: string;
+    description?: string;
+}
+/** Bulk import result */
+interface BulkImportResult {
+    created: number;
+    updated: number;
+    skipped: number;
+}
+/** KeyEnv API error */
+declare class KeyEnvError extends Error {
+    readonly status: number;
+    readonly code?: string;
+    readonly details?: Record<string, unknown>;
+    constructor(message: string, status: number, code?: string, details?: Record<string, unknown>);
+}
+
+/**
+ * KeyEnv API client for managing secrets
+ *
+ * @example
+ * ```ts
+ * import { KeyEnv } from 'keyenv';
+ *
+ * const client = new KeyEnv({ token: process.env.KEYENV_TOKEN });
+ *
+ * // Export all secrets for an environment
+ * const secrets = await client.exportSecrets('project-id', 'production');
+ * ```
+ */
+declare class KeyEnv {
+    private readonly token;
+    private readonly timeout;
+    constructor(options: KeyEnvOptions);
+    private request;
+    /** Get the current user or service token info */
+    getCurrentUser(): Promise<User>;
+    /** Validate the token and return user info */
+    validateToken(): Promise<User>;
+    /** List all accessible projects */
+    listProjects(): Promise<Project[]>;
+    /** Get a project by ID */
+    getProject(projectId: string): Promise<ProjectWithEnvironments>;
+    /** Create a new project */
+    createProject(teamId: string, name: string): Promise<Project>;
+    /** Delete a project */
+    deleteProject(projectId: string): Promise<void>;
+    /** List environments in a project */
+    listEnvironments(projectId: string): Promise<Environment[]>;
+    /** Create a new environment */
+    createEnvironment(projectId: string, name: string, inheritsFrom?: string): Promise<Environment>;
+    /** Delete an environment */
+    deleteEnvironment(projectId: string, environment: string): Promise<void>;
+    /** List secrets in an environment (keys and metadata only) */
+    listSecrets(projectId: string, environment: string): Promise<Secret[]>;
+    /**
+     * Export all secrets with their decrypted values
+     * @example
+     * ```ts
+     * const secrets = await client.exportSecrets('project-id', 'production');
+     * for (const secret of secrets) {
+     *   process.env[secret.key] = secret.value;
+     * }
+     * ```
+     */
+    exportSecrets(projectId: string, environment: string): Promise<SecretWithValue[]>;
+    /**
+     * Export secrets as a key-value object
+     * @example
+     * ```ts
+     * const env = await client.exportSecretsAsObject('project-id', 'production');
+     * // { DATABASE_URL: '...', API_KEY: '...' }
+     * ```
+     */
+    exportSecretsAsObject(projectId: string, environment: string): Promise<Record<string, string>>;
+    /** Get a single secret with its value */
+    getSecret(projectId: string, environment: string, key: string): Promise<SecretWithValue>;
+    /** Create a new secret */
+    createSecret(projectId: string, environment: string, key: string, value: string, description?: string): Promise<Secret>;
+    /** Update a secret's value */
+    updateSecret(projectId: string, environment: string, key: string, value: string, description?: string): Promise<Secret>;
+    /** Set a secret (create or update) */
+    setSecret(projectId: string, environment: string, key: string, value: string, description?: string): Promise<Secret>;
+    /** Delete a secret */
+    deleteSecret(projectId: string, environment: string, key: string): Promise<void>;
+    /** Get secret version history */
+    getSecretHistory(projectId: string, environment: string, key: string): Promise<SecretHistory[]>;
+    /**
+     * Bulk import secrets
+     * @example
+     * ```ts
+     * await client.bulkImport('project-id', 'development', [
+     *   { key: 'DATABASE_URL', value: 'postgres://...' },
+     *   { key: 'API_KEY', value: 'sk_...' },
+     * ], { overwrite: true });
+     * ```
+     */
+    bulkImport(projectId: string, environment: string, secrets: BulkSecretItem[], options?: {
+        overwrite?: boolean;
+    }): Promise<BulkImportResult>;
+    /**
+     * Load secrets into process.env
+     * @example
+     * ```ts
+     * await client.loadEnv('project-id', 'production');
+     * console.log(process.env.DATABASE_URL);
+     * ```
+     */
+    loadEnv(projectId: string, environment: string): Promise<number>;
+    /** Generate .env file content from secrets */
+    generateEnvFile(projectId: string, environment: string): Promise<string>;
+}
+
+export { type BulkImportResult, type BulkSecretItem, type Environment, KeyEnv, KeyEnvError, type KeyEnvOptions, type Project, type ProjectWithEnvironments, type Secret, type SecretHistory, type SecretWithValue, type User };

package/dist/index.js

@@ -0,0 +1,285 @@
+"use strict";
+var __defProp = Object.defineProperty;
+var __getOwnPropDesc = Object.getOwnPropertyDescriptor;
+var __getOwnPropNames = Object.getOwnPropertyNames;
+var __hasOwnProp = Object.prototype.hasOwnProperty;
+var __export = (target, all) => {
+  for (var name in all)
+    __defProp(target, name, { get: all[name], enumerable: true });
+};
+var __copyProps = (to, from, except, desc) => {
+  if (from && typeof from === "object" || typeof from === "function") {
+    for (let key of __getOwnPropNames(from))
+      if (!__hasOwnProp.call(to, key) && key !== except)
+        __defProp(to, key, { get: () => from[key], enumerable: !(desc = __getOwnPropDesc(from, key)) || desc.enumerable });
+  }
+  return to;
+};
+var __toCommonJS = (mod) => __copyProps(__defProp({}, "__esModule", { value: true }), mod);
+
+// src/index.ts
+var index_exports = {};
+__export(index_exports, {
+  KeyEnv: () => KeyEnv,
+  KeyEnvError: () => KeyEnvError
+});
+module.exports = __toCommonJS(index_exports);
+
+// src/types.ts
+var KeyEnvError = class extends Error {
+  status;
+  code;
+  details;
+  constructor(message, status, code, details) {
+    super(message);
+    this.name = "KeyEnvError";
+    this.status = status;
+    this.code = code;
+    this.details = details;
+  }
+};
+
+// src/client.ts
+var BASE_URL = "https://api.keyenv.dev";
+var DEFAULT_TIMEOUT = 3e4;
+var KeyEnv = class {
+  token;
+  timeout;
+  constructor(options) {
+    if (!options.token) {
+      throw new Error("KeyEnv token is required");
+    }
+    this.token = options.token;
+    this.timeout = options.timeout || DEFAULT_TIMEOUT;
+  }
+  async request(method, path, body) {
+    const url = `${BASE_URL}${path}`;
+    const controller = new AbortController();
+    const timeoutId = setTimeout(() => controller.abort(), this.timeout);
+    try {
+      const response = await fetch(url, {
+        method,
+        headers: {
+          "Authorization": `Bearer ${this.token}`,
+          "Content-Type": "application/json",
+          "User-Agent": "keyenv-node/1.0.0"
+        },
+        body: body ? JSON.stringify(body) : void 0,
+        signal: controller.signal
+      });
+      clearTimeout(timeoutId);
+      if (!response.ok) {
+        let errorData = { error: "Unknown error" };
+        try {
+          errorData = await response.json();
+        } catch {
+          errorData = { error: response.statusText };
+        }
+        throw new KeyEnvError(errorData.error, response.status, errorData.code, errorData.details);
+      }
+      if (response.status === 204) {
+        return void 0;
+      }
+      return response.json();
+    } catch (error) {
+      clearTimeout(timeoutId);
+      if (error instanceof KeyEnvError) throw error;
+      if (error instanceof Error && error.name === "AbortError") {
+        throw new KeyEnvError("Request timeout", 408);
+      }
+      throw new KeyEnvError(error instanceof Error ? error.message : "Network error", 0);
+    }
+  }
+  /** Get the current user or service token info */
+  async getCurrentUser() {
+    return this.request("GET", "/api/v1/users/me");
+  }
+  /** Validate the token and return user info */
+  async validateToken() {
+    return this.getCurrentUser();
+  }
+  /** List all accessible projects */
+  async listProjects() {
+    const response = await this.request("GET", "/api/v1/projects");
+    return response.projects;
+  }
+  /** Get a project by ID */
+  async getProject(projectId) {
+    return this.request("GET", `/api/v1/projects/${projectId}`);
+  }
+  /** Create a new project */
+  async createProject(teamId, name) {
+    return this.request("POST", "/api/v1/projects", { team_id: teamId, name });
+  }
+  /** Delete a project */
+  async deleteProject(projectId) {
+    await this.request("DELETE", `/api/v1/projects/${projectId}`);
+  }
+  /** List environments in a project */
+  async listEnvironments(projectId) {
+    const response = await this.request(
+      "GET",
+      `/api/v1/projects/${projectId}/environments`
+    );
+    return response.environments;
+  }
+  /** Create a new environment */
+  async createEnvironment(projectId, name, inheritsFrom) {
+    return this.request(
+      "POST",
+      `/api/v1/projects/${projectId}/environments`,
+      { name, inherits_from: inheritsFrom }
+    );
+  }
+  /** Delete an environment */
+  async deleteEnvironment(projectId, environment) {
+    await this.request("DELETE", `/api/v1/projects/${projectId}/environments/${environment}`);
+  }
+  /** List secrets in an environment (keys and metadata only) */
+  async listSecrets(projectId, environment) {
+    const response = await this.request(
+      "GET",
+      `/api/v1/projects/${projectId}/environments/${environment}/secrets`
+    );
+    return response.secrets;
+  }
+  /**
+   * Export all secrets with their decrypted values
+   * @example
+   * ```ts
+   * const secrets = await client.exportSecrets('project-id', 'production');
+   * for (const secret of secrets) {
+   *   process.env[secret.key] = secret.value;
+   * }
+   * ```
+   */
+  async exportSecrets(projectId, environment) {
+    const response = await this.request(
+      "GET",
+      `/api/v1/projects/${projectId}/environments/${environment}/secrets/export`
+    );
+    return response.secrets;
+  }
+  /**
+   * Export secrets as a key-value object
+   * @example
+   * ```ts
+   * const env = await client.exportSecretsAsObject('project-id', 'production');
+   * // { DATABASE_URL: '...', API_KEY: '...' }
+   * ```
+   */
+  async exportSecretsAsObject(projectId, environment) {
+    const secrets = await this.exportSecrets(projectId, environment);
+    return Object.fromEntries(secrets.map((s) => [s.key, s.value]));
+  }
+  /** Get a single secret with its value */
+  async getSecret(projectId, environment, key) {
+    const response = await this.request(
+      "GET",
+      `/api/v1/projects/${projectId}/environments/${environment}/secrets/${key}`
+    );
+    return response.secret;
+  }
+  /** Create a new secret */
+  async createSecret(projectId, environment, key, value, description) {
+    const response = await this.request(
+      "POST",
+      `/api/v1/projects/${projectId}/environments/${environment}/secrets`,
+      { key, value, description }
+    );
+    return response.secret;
+  }
+  /** Update a secret's value */
+  async updateSecret(projectId, environment, key, value, description) {
+    const response = await this.request(
+      "PUT",
+      `/api/v1/projects/${projectId}/environments/${environment}/secrets/${key}`,
+      { value, description }
+    );
+    return response.secret;
+  }
+  /** Set a secret (create or update) */
+  async setSecret(projectId, environment, key, value, description) {
+    try {
+      return await this.updateSecret(projectId, environment, key, value, description);
+    } catch (error) {
+      if (error instanceof KeyEnvError && error.status === 404) {
+        return this.createSecret(projectId, environment, key, value, description);
+      }
+      throw error;
+    }
+  }
+  /** Delete a secret */
+  async deleteSecret(projectId, environment, key) {
+    await this.request(
+      "DELETE",
+      `/api/v1/projects/${projectId}/environments/${environment}/secrets/${key}`
+    );
+  }
+  /** Get secret version history */
+  async getSecretHistory(projectId, environment, key) {
+    const response = await this.request(
+      "GET",
+      `/api/v1/projects/${projectId}/environments/${environment}/secrets/${key}/history`
+    );
+    return response.history;
+  }
+  /**
+   * Bulk import secrets
+   * @example
+   * ```ts
+   * await client.bulkImport('project-id', 'development', [
+   *   { key: 'DATABASE_URL', value: 'postgres://...' },
+   *   { key: 'API_KEY', value: 'sk_...' },
+   * ], { overwrite: true });
+   * ```
+   */
+  async bulkImport(projectId, environment, secrets, options = {}) {
+    return this.request(
+      "POST",
+      `/api/v1/projects/${projectId}/environments/${environment}/secrets/bulk`,
+      { secrets, overwrite: options.overwrite ?? false }
+    );
+  }
+  /**
+   * Load secrets into process.env
+   * @example
+   * ```ts
+   * await client.loadEnv('project-id', 'production');
+   * console.log(process.env.DATABASE_URL);
+   * ```
+   */
+  async loadEnv(projectId, environment) {
+    const secrets = await this.exportSecrets(projectId, environment);
+    for (const secret of secrets) {
+      process.env[secret.key] = secret.value;
+    }
+    return secrets.length;
+  }
+  /** Generate .env file content from secrets */
+  async generateEnvFile(projectId, environment) {
+    const secrets = await this.exportSecrets(projectId, environment);
+    const lines = [
+      "# Generated by KeyEnv",
+      `# Environment: ${environment}`,
+      `# Generated at: ${(/* @__PURE__ */ new Date()).toISOString()}`,
+      ""
+    ];
+    for (const secret of secrets) {
+      const value = secret.value;
+      if (value.includes("\n") || value.includes('"') || value.includes("'") || value.includes(" ")) {
+        const escaped = value.replace(/\\/g, "\\\\").replace(/"/g, '\\"');
+        lines.push(`${secret.key}="${escaped}"`);
+      } else {
+        lines.push(`${secret.key}=${value}`);
+      }
+    }
+    return lines.join("\n") + "\n";
+  }
+};
+// Annotate the CommonJS export names for ESM import in node:
+0 && (module.exports = {
+  KeyEnv,
+  KeyEnvError
+});
+//# sourceMappingURL=index.js.map

package/dist/index.js.map

@@ -0,0 +1 @@
+{"version":3,"sources":["../src/index.ts","../src/types.ts","../src/client.ts"],"sourcesContent":["export { KeyEnv } from './client.js';\nexport { KeyEnvError } from './types.js';\nexport type {\n  KeyEnvOptions,\n  User,\n  Project,\n  ProjectWithEnvironments,\n  Environment,\n  Secret,\n  SecretWithValue,\n  SecretHistory,\n  BulkSecretItem,\n  BulkImportResult,\n} from './types.js';\n","/** KeyEnv client configuration options */\nexport interface KeyEnvOptions {\n  /** Service token for authentication */\n  token: string;\n  /** Request timeout in milliseconds (default: 30000) */\n  timeout?: number;\n}\n\n/** User or service token info */\nexport interface User {\n  id: string;\n  email?: string;\n  name?: string;\n  clerk_id?: string;\n  avatar_url?: string;\n  /** Present for service tokens */\n  auth_type?: 'service_token' | 'user';\n  /** Team ID (for service tokens) */\n  team_id?: string;\n  /** Project ID (for project-scoped service tokens) */\n  project_id?: string;\n  /** Token scopes (for service tokens) */\n  scopes?: string[];\n  created_at: string;\n}\n\n/** Project */\nexport interface Project {\n  id: string;\n  team_id: string;\n  name: string;\n  slug: string;\n  description?: string;\n  created_at: string;\n}\n\n/** Environment */\nexport interface Environment {\n  id: string;\n  project_id: string;\n  name: string;\n  inherits_from?: string;\n  created_at: string;\n}\n\n/** Project with environments */\nexport interface ProjectWithEnvironments extends Project {\n  environments: Environment[];\n}\n\n/** Secret (without value) */\nexport interface Secret {\n  id: string;\n  environment_id: string;\n  key: string;\n  type: string;\n  description?: string;\n  version: number;\n  created_at: string;\n  updated_at: string;\n}\n\n/** Secret with decrypted value */\nexport interface SecretWithValue extends Secret {\n  value: string;\n  inherited_from?: string;\n}\n\n/** Secret history entry */\nexport interface SecretHistory {\n  id: string;\n  secret_id: string;\n  value: string;\n  version: number;\n  changed_by?: string;\n  changed_at: string;\n}\n\n/** Bulk import request item */\nexport interface BulkSecretItem {\n  key: string;\n  value: string;\n  description?: string;\n}\n\n/** Bulk import result */\nexport interface BulkImportResult {\n  created: number;\n  updated: number;\n  skipped: number;\n}\n\n/** API error response */\nexport interface ApiError {\n  error: string;\n  code?: string;\n  details?: Record<string, unknown>;\n}\n\n/** KeyEnv API error */\nexport class KeyEnvError extends Error {\n  public readonly status: number;\n  public readonly code?: string;\n  public readonly details?: Record<string, unknown>;\n\n  constructor(message: string, status: number, code?: string, details?: Record<string, unknown>) {\n    super(message);\n    this.name = 'KeyEnvError';\n    this.status = status;\n    this.code = code;\n    this.details = details;\n  }\n}\n","import type {\n  KeyEnvOptions,\n  User,\n  Project,\n  ProjectWithEnvironments,\n  Environment,\n  Secret,\n  SecretWithValue,\n  SecretHistory,\n  BulkSecretItem,\n  BulkImportResult,\n  ApiError,\n} from './types.js';\nimport { KeyEnvError } from './types.js';\n\nconst BASE_URL = 'https://api.keyenv.dev';\nconst DEFAULT_TIMEOUT = 30000;\n\n/**\n * KeyEnv API client for managing secrets\n *\n * @example\n * ```ts\n * import { KeyEnv } from 'keyenv';\n *\n * const client = new KeyEnv({ token: process.env.KEYENV_TOKEN });\n *\n * // Export all secrets for an environment\n * const secrets = await client.exportSecrets('project-id', 'production');\n * ```\n */\nexport class KeyEnv {\n  private readonly token: string;\n  private readonly timeout: number;\n\n  constructor(options: KeyEnvOptions) {\n    if (!options.token) {\n      throw new Error('KeyEnv token is required');\n    }\n    this.token = options.token;\n    this.timeout = options.timeout || DEFAULT_TIMEOUT;\n  }\n\n  private async request<T>(method: string, path: string, body?: unknown): Promise<T> {\n    const url = `${BASE_URL}${path}`;\n    const controller = new AbortController();\n    const timeoutId = setTimeout(() => controller.abort(), this.timeout);\n\n    try {\n      const response = await fetch(url, {\n        method,\n        headers: {\n          'Authorization': `Bearer ${this.token}`,\n          'Content-Type': 'application/json',\n          'User-Agent': 'keyenv-node/1.0.0',\n        },\n        body: body ? JSON.stringify(body) : undefined,\n        signal: controller.signal,\n      });\n\n      clearTimeout(timeoutId);\n\n      if (!response.ok) {\n        let errorData: ApiError = { error: 'Unknown error' };\n        try {\n          errorData = await response.json() as ApiError;\n        } catch {\n          errorData = { error: response.statusText };\n        }\n        throw new KeyEnvError(errorData.error, response.status, errorData.code, errorData.details);\n      }\n\n      if (response.status === 204) {\n        return undefined as T;\n      }\n\n      return response.json() as Promise<T>;\n    } catch (error) {\n      clearTimeout(timeoutId);\n      if (error instanceof KeyEnvError) throw error;\n      if (error instanceof Error && error.name === 'AbortError') {\n        throw new KeyEnvError('Request timeout', 408);\n      }\n      throw new KeyEnvError(error instanceof Error ? error.message : 'Network error', 0);\n    }\n  }\n\n  /** Get the current user or service token info */\n  async getCurrentUser(): Promise<User> {\n    return this.request<User>('GET', '/api/v1/users/me');\n  }\n\n  /** Validate the token and return user info */\n  async validateToken(): Promise<User> {\n    return this.getCurrentUser();\n  }\n\n  /** List all accessible projects */\n  async listProjects(): Promise<Project[]> {\n    const response = await this.request<{ projects: Project[] }>('GET', '/api/v1/projects');\n    return response.projects;\n  }\n\n  /** Get a project by ID */\n  async getProject(projectId: string): Promise<ProjectWithEnvironments> {\n    return this.request<ProjectWithEnvironments>('GET', `/api/v1/projects/${projectId}`);\n  }\n\n  /** Create a new project */\n  async createProject(teamId: string, name: string): Promise<Project> {\n    return this.request<Project>('POST', '/api/v1/projects', { team_id: teamId, name });\n  }\n\n  /** Delete a project */\n  async deleteProject(projectId: string): Promise<void> {\n    await this.request<void>('DELETE', `/api/v1/projects/${projectId}`);\n  }\n\n  /** List environments in a project */\n  async listEnvironments(projectId: string): Promise<Environment[]> {\n    const response = await this.request<{ environments: Environment[] }>(\n      'GET', `/api/v1/projects/${projectId}/environments`\n    );\n    return response.environments;\n  }\n\n  /** Create a new environment */\n  async createEnvironment(projectId: string, name: string, inheritsFrom?: string): Promise<Environment> {\n    return this.request<Environment>(\n      'POST', `/api/v1/projects/${projectId}/environments`,\n      { name, inherits_from: inheritsFrom }\n    );\n  }\n\n  /** Delete an environment */\n  async deleteEnvironment(projectId: string, environment: string): Promise<void> {\n    await this.request<void>('DELETE', `/api/v1/projects/${projectId}/environments/${environment}`);\n  }\n\n  /** List secrets in an environment (keys and metadata only) */\n  async listSecrets(projectId: string, environment: string): Promise<Secret[]> {\n    const response = await this.request<{ secrets: Secret[] }>(\n      'GET', `/api/v1/projects/${projectId}/environments/${environment}/secrets`\n    );\n    return response.secrets;\n  }\n\n  /**\n   * Export all secrets with their decrypted values\n   * @example\n   * ```ts\n   * const secrets = await client.exportSecrets('project-id', 'production');\n   * for (const secret of secrets) {\n   *   process.env[secret.key] = secret.value;\n   * }\n   * ```\n   */\n  async exportSecrets(projectId: string, environment: string): Promise<SecretWithValue[]> {\n    const response = await this.request<{ secrets: SecretWithValue[] }>(\n      'GET', `/api/v1/projects/${projectId}/environments/${environment}/secrets/export`\n    );\n    return response.secrets;\n  }\n\n  /**\n   * Export secrets as a key-value object\n   * @example\n   * ```ts\n   * const env = await client.exportSecretsAsObject('project-id', 'production');\n   * // { DATABASE_URL: '...', API_KEY: '...' }\n   * ```\n   */\n  async exportSecretsAsObject(projectId: string, environment: string): Promise<Record<string, string>> {\n    const secrets = await this.exportSecrets(projectId, environment);\n    return Object.fromEntries(secrets.map((s) => [s.key, s.value]));\n  }\n\n  /** Get a single secret with its value */\n  async getSecret(projectId: string, environment: string, key: string): Promise<SecretWithValue> {\n    const response = await this.request<{ secret: SecretWithValue }>(\n      'GET', `/api/v1/projects/${projectId}/environments/${environment}/secrets/${key}`\n    );\n    return response.secret;\n  }\n\n  /** Create a new secret */\n  async createSecret(\n    projectId: string, environment: string, key: string, value: string, description?: string\n  ): Promise<Secret> {\n    const response = await this.request<{ secret: Secret }>(\n      'POST', `/api/v1/projects/${projectId}/environments/${environment}/secrets`,\n      { key, value, description }\n    );\n    return response.secret;\n  }\n\n  /** Update a secret's value */\n  async updateSecret(\n    projectId: string, environment: string, key: string, value: string, description?: string\n  ): Promise<Secret> {\n    const response = await this.request<{ secret: Secret }>(\n      'PUT', `/api/v1/projects/${projectId}/environments/${environment}/secrets/${key}`,\n      { value, description }\n    );\n    return response.secret;\n  }\n\n  /** Set a secret (create or update) */\n  async setSecret(\n    projectId: string, environment: string, key: string, value: string, description?: string\n  ): Promise<Secret> {\n    try {\n      return await this.updateSecret(projectId, environment, key, value, description);\n    } catch (error) {\n      if (error instanceof KeyEnvError && error.status === 404) {\n        return this.createSecret(projectId, environment, key, value, description);\n      }\n      throw error;\n    }\n  }\n\n  /** Delete a secret */\n  async deleteSecret(projectId: string, environment: string, key: string): Promise<void> {\n    await this.request<void>(\n      'DELETE', `/api/v1/projects/${projectId}/environments/${environment}/secrets/${key}`\n    );\n  }\n\n  /** Get secret version history */\n  async getSecretHistory(projectId: string, environment: string, key: string): Promise<SecretHistory[]> {\n    const response = await this.request<{ history: SecretHistory[] }>(\n      'GET', `/api/v1/projects/${projectId}/environments/${environment}/secrets/${key}/history`\n    );\n    return response.history;\n  }\n\n  /**\n   * Bulk import secrets\n   * @example\n   * ```ts\n   * await client.bulkImport('project-id', 'development', [\n   *   { key: 'DATABASE_URL', value: 'postgres://...' },\n   *   { key: 'API_KEY', value: 'sk_...' },\n   * ], { overwrite: true });\n   * ```\n   */\n  async bulkImport(\n    projectId: string, environment: string, secrets: BulkSecretItem[], options: { overwrite?: boolean } = {}\n  ): Promise<BulkImportResult> {\n    return this.request<BulkImportResult>(\n      'POST', `/api/v1/projects/${projectId}/environments/${environment}/secrets/bulk`,\n      { secrets, overwrite: options.overwrite ?? false }\n    );\n  }\n\n  /**\n   * Load secrets into process.env\n   * @example\n   * ```ts\n   * await client.loadEnv('project-id', 'production');\n   * console.log(process.env.DATABASE_URL);\n   * ```\n   */\n  async loadEnv(projectId: string, environment: string): Promise<number> {\n    const secrets = await this.exportSecrets(projectId, environment);\n    for (const secret of secrets) {\n      process.env[secret.key] = secret.value;\n    }\n    return secrets.length;\n  }\n\n  /** Generate .env file content from secrets */\n  async generateEnvFile(projectId: string, environment: string): Promise<string> {\n    const secrets = await this.exportSecrets(projectId, environment);\n    const lines = [\n      '# Generated by KeyEnv',\n      `# Environment: ${environment}`,\n      `# Generated at: ${new Date().toISOString()}`,\n      '',\n    ];\n\n    for (const secret of secrets) {\n      const value = secret.value;\n      if (value.includes('\\n') || value.includes('\"') || value.includes(\"'\") || value.includes(' ')) {\n        const escaped = value.replace(/\\\\/g, '\\\\\\\\').replace(/\"/g, '\\\\\"');\n        lines.push(`${secret.key}=\"${escaped}\"`);\n      } else {\n        lines.push(`${secret.key}=${value}`);\n      }\n    }\n\n    return lines.join('\\n') + '\\n';\n  }\n}\n"],"mappings":";;;;;;;;;;;;;;;;;;;;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;;;ACoGO,IAAM,cAAN,cAA0B,MAAM;AAAA,EACrB;AAAA,EACA;AAAA,EACA;AAAA,EAEhB,YAAY,SAAiB,QAAgB,MAAe,SAAmC;AAC7F,UAAM,OAAO;AACb,SAAK,OAAO;AACZ,SAAK,SAAS;AACd,SAAK,OAAO;AACZ,SAAK,UAAU;AAAA,EACjB;AACF;;;ACjGA,IAAM,WAAW;AACjB,IAAM,kBAAkB;AAejB,IAAM,SAAN,MAAa;AAAA,EACD;AAAA,EACA;AAAA,EAEjB,YAAY,SAAwB;AAClC,QAAI,CAAC,QAAQ,OAAO;AAClB,YAAM,IAAI,MAAM,0BAA0B;AAAA,IAC5C;AACA,SAAK,QAAQ,QAAQ;AACrB,SAAK,UAAU,QAAQ,WAAW;AAAA,EACpC;AAAA,EAEA,MAAc,QAAW,QAAgB,MAAc,MAA4B;AACjF,UAAM,MAAM,GAAG,QAAQ,GAAG,IAAI;AAC9B,UAAM,aAAa,IAAI,gBAAgB;AACvC,UAAM,YAAY,WAAW,MAAM,WAAW,MAAM,GAAG,KAAK,OAAO;AAEnE,QAAI;AACF,YAAM,WAAW,MAAM,MAAM,KAAK;AAAA,QAChC;AAAA,QACA,SAAS;AAAA,UACP,iBAAiB,UAAU,KAAK,KAAK;AAAA,UACrC,gBAAgB;AAAA,UAChB,cAAc;AAAA,QAChB;AAAA,QACA,MAAM,OAAO,KAAK,UAAU,IAAI,IAAI;AAAA,QACpC,QAAQ,WAAW;AAAA,MACrB,CAAC;AAED,mBAAa,SAAS;AAEtB,UAAI,CAAC,SAAS,IAAI;AAChB,YAAI,YAAsB,EAAE,OAAO,gBAAgB;AACnD,YAAI;AACF,sBAAY,MAAM,SAAS,KAAK;AAAA,QAClC,QAAQ;AACN,sBAAY,EAAE,OAAO,SAAS,WAAW;AAAA,QAC3C;AACA,cAAM,IAAI,YAAY,UAAU,OAAO,SAAS,QAAQ,UAAU,MAAM,UAAU,OAAO;AAAA,MAC3F;AAEA,UAAI,SAAS,WAAW,KAAK;AAC3B,eAAO;AAAA,MACT;AAEA,aAAO,SAAS,KAAK;AAAA,IACvB,SAAS,OAAO;AACd,mBAAa,SAAS;AACtB,UAAI,iBAAiB,YAAa,OAAM;AACxC,UAAI,iBAAiB,SAAS,MAAM,SAAS,cAAc;AACzD,cAAM,IAAI,YAAY,mBAAmB,GAAG;AAAA,MAC9C;AACA,YAAM,IAAI,YAAY,iBAAiB,QAAQ,MAAM,UAAU,iBAAiB,CAAC;AAAA,IACnF;AAAA,EACF;AAAA;AAAA,EAGA,MAAM,iBAAgC;AACpC,WAAO,KAAK,QAAc,OAAO,kBAAkB;AAAA,EACrD;AAAA;AAAA,EAGA,MAAM,gBAA+B;AACnC,WAAO,KAAK,eAAe;AAAA,EAC7B;AAAA;AAAA,EAGA,MAAM,eAAmC;AACvC,UAAM,WAAW,MAAM,KAAK,QAAiC,OAAO,kBAAkB;AACtF,WAAO,SAAS;AAAA,EAClB;AAAA;AAAA,EAGA,MAAM,WAAW,WAAqD;AACpE,WAAO,KAAK,QAAiC,OAAO,oBAAoB,SAAS,EAAE;AAAA,EACrF;AAAA;AAAA,EAGA,MAAM,cAAc,QAAgB,MAAgC;AAClE,WAAO,KAAK,QAAiB,QAAQ,oBAAoB,EAAE,SAAS,QAAQ,KAAK,CAAC;AAAA,EACpF;AAAA;AAAA,EAGA,MAAM,cAAc,WAAkC;AACpD,UAAM,KAAK,QAAc,UAAU,oBAAoB,SAAS,EAAE;AAAA,EACpE;AAAA;AAAA,EAGA,MAAM,iBAAiB,WAA2C;AAChE,UAAM,WAAW,MAAM,KAAK;AAAA,MAC1B;AAAA,MAAO,oBAAoB,SAAS;AAAA,IACtC;AACA,WAAO,SAAS;AAAA,EAClB;AAAA;AAAA,EAGA,MAAM,kBAAkB,WAAmB,MAAc,cAA6C;AACpG,WAAO,KAAK;AAAA,MACV;AAAA,MAAQ,oBAAoB,SAAS;AAAA,MACrC,EAAE,MAAM,eAAe,aAAa;AAAA,IACtC;AAAA,EACF;AAAA;AAAA,EAGA,MAAM,kBAAkB,WAAmB,aAAoC;AAC7E,UAAM,KAAK,QAAc,UAAU,oBAAoB,SAAS,iBAAiB,WAAW,EAAE;AAAA,EAChG;AAAA;AAAA,EAGA,MAAM,YAAY,WAAmB,aAAwC;AAC3E,UAAM,WAAW,MAAM,KAAK;AAAA,MAC1B;AAAA,MAAO,oBAAoB,SAAS,iBAAiB,WAAW;AAAA,IAClE;AACA,WAAO,SAAS;AAAA,EAClB;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAYA,MAAM,cAAc,WAAmB,aAAiD;AACtF,UAAM,WAAW,MAAM,KAAK;AAAA,MAC1B;AAAA,MAAO,oBAAoB,SAAS,iBAAiB,WAAW;AAAA,IAClE;AACA,WAAO,SAAS;AAAA,EAClB;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAUA,MAAM,sBAAsB,WAAmB,aAAsD;AACnG,UAAM,UAAU,MAAM,KAAK,cAAc,WAAW,WAAW;AAC/D,WAAO,OAAO,YAAY,QAAQ,IAAI,CAAC,MAAM,CAAC,EAAE,KAAK,EAAE,KAAK,CAAC,CAAC;AAAA,EAChE;AAAA;AAAA,EAGA,MAAM,UAAU,WAAmB,aAAqB,KAAuC;AAC7F,UAAM,WAAW,MAAM,KAAK;AAAA,MAC1B;AAAA,MAAO,oBAAoB,SAAS,iBAAiB,WAAW,YAAY,GAAG;AAAA,IACjF;AACA,WAAO,SAAS;AAAA,EAClB;AAAA;AAAA,EAGA,MAAM,aACJ,WAAmB,aAAqB,KAAa,OAAe,aACnD;AACjB,UAAM,WAAW,MAAM,KAAK;AAAA,MAC1B;AAAA,MAAQ,oBAAoB,SAAS,iBAAiB,WAAW;AAAA,MACjE,EAAE,KAAK,OAAO,YAAY;AAAA,IAC5B;AACA,WAAO,SAAS;AAAA,EAClB;AAAA;AAAA,EAGA,MAAM,aACJ,WAAmB,aAAqB,KAAa,OAAe,aACnD;AACjB,UAAM,WAAW,MAAM,KAAK;AAAA,MAC1B;AAAA,MAAO,oBAAoB,SAAS,iBAAiB,WAAW,YAAY,GAAG;AAAA,MAC/E,EAAE,OAAO,YAAY;AAAA,IACvB;AACA,WAAO,SAAS;AAAA,EAClB;AAAA;AAAA,EAGA,MAAM,UACJ,WAAmB,aAAqB,KAAa,OAAe,aACnD;AACjB,QAAI;AACF,aAAO,MAAM,KAAK,aAAa,WAAW,aAAa,KAAK,OAAO,WAAW;AAAA,IAChF,SAAS,OAAO;AACd,UAAI,iBAAiB,eAAe,MAAM,WAAW,KAAK;AACxD,eAAO,KAAK,aAAa,WAAW,aAAa,KAAK,OAAO,WAAW;AAAA,MAC1E;AACA,YAAM;AAAA,IACR;AAAA,EACF;AAAA;AAAA,EAGA,MAAM,aAAa,WAAmB,aAAqB,KAA4B;AACrF,UAAM,KAAK;AAAA,MACT;AAAA,MAAU,oBAAoB,SAAS,iBAAiB,WAAW,YAAY,GAAG;AAAA,IACpF;AAAA,EACF;AAAA;AAAA,EAGA,MAAM,iBAAiB,WAAmB,aAAqB,KAAuC;AACpG,UAAM,WAAW,MAAM,KAAK;AAAA,MAC1B;AAAA,MAAO,oBAAoB,SAAS,iBAAiB,WAAW,YAAY,GAAG;AAAA,IACjF;AACA,WAAO,SAAS;AAAA,EAClB;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAYA,MAAM,WACJ,WAAmB,aAAqB,SAA2B,UAAmC,CAAC,GAC5E;AAC3B,WAAO,KAAK;AAAA,MACV;AAAA,MAAQ,oBAAoB,SAAS,iBAAiB,WAAW;AAAA,MACjE,EAAE,SAAS,WAAW,QAAQ,aAAa,MAAM;AAAA,IACnD;AAAA,EACF;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAUA,MAAM,QAAQ,WAAmB,aAAsC;AACrE,UAAM,UAAU,MAAM,KAAK,cAAc,WAAW,WAAW;AAC/D,eAAW,UAAU,SAAS;AAC5B,cAAQ,IAAI,OAAO,GAAG,IAAI,OAAO;AAAA,IACnC;AACA,WAAO,QAAQ;AAAA,EACjB;AAAA;AAAA,EAGA,MAAM,gBAAgB,WAAmB,aAAsC;AAC7E,UAAM,UAAU,MAAM,KAAK,cAAc,WAAW,WAAW;AAC/D,UAAM,QAAQ;AAAA,MACZ;AAAA,MACA,kBAAkB,WAAW;AAAA,MAC7B,oBAAmB,oBAAI,KAAK,GAAE,YAAY,CAAC;AAAA,MAC3C;AAAA,IACF;AAEA,eAAW,UAAU,SAAS;AAC5B,YAAM,QAAQ,OAAO;AACrB,UAAI,MAAM,SAAS,IAAI,KAAK,MAAM,SAAS,GAAG,KAAK,MAAM,SAAS,GAAG,KAAK,MAAM,SAAS,GAAG,GAAG;AAC7F,cAAM,UAAU,MAAM,QAAQ,OAAO,MAAM,EAAE,QAAQ,MAAM,KAAK;AAChE,cAAM,KAAK,GAAG,OAAO,GAAG,KAAK,OAAO,GAAG;AAAA,MACzC,OAAO;AACL,cAAM,KAAK,GAAG,OAAO,GAAG,IAAI,KAAK,EAAE;AAAA,MACrC;AAAA,IACF;AAEA,WAAO,MAAM,KAAK,IAAI,IAAI;AAAA,EAC5B;AACF;","names":[]}

package/dist/index.mjs

@@ -0,0 +1,257 @@
+// src/types.ts
+var KeyEnvError = class extends Error {
+  status;
+  code;
+  details;
+  constructor(message, status, code, details) {
+    super(message);
+    this.name = "KeyEnvError";
+    this.status = status;
+    this.code = code;
+    this.details = details;
+  }
+};
+
+// src/client.ts
+var BASE_URL = "https://api.keyenv.dev";
+var DEFAULT_TIMEOUT = 3e4;
+var KeyEnv = class {
+  token;
+  timeout;
+  constructor(options) {
+    if (!options.token) {
+      throw new Error("KeyEnv token is required");
+    }
+    this.token = options.token;
+    this.timeout = options.timeout || DEFAULT_TIMEOUT;
+  }
+  async request(method, path, body) {
+    const url = `${BASE_URL}${path}`;
+    const controller = new AbortController();
+    const timeoutId = setTimeout(() => controller.abort(), this.timeout);
+    try {
+      const response = await fetch(url, {
+        method,
+        headers: {
+          "Authorization": `Bearer ${this.token}`,
+          "Content-Type": "application/json",
+          "User-Agent": "keyenv-node/1.0.0"
+        },
+        body: body ? JSON.stringify(body) : void 0,
+        signal: controller.signal
+      });
+      clearTimeout(timeoutId);
+      if (!response.ok) {
+        let errorData = { error: "Unknown error" };
+        try {
+          errorData = await response.json();
+        } catch {
+          errorData = { error: response.statusText };
+        }
+        throw new KeyEnvError(errorData.error, response.status, errorData.code, errorData.details);
+      }
+      if (response.status === 204) {
+        return void 0;
+      }
+      return response.json();
+    } catch (error) {
+      clearTimeout(timeoutId);
+      if (error instanceof KeyEnvError) throw error;
+      if (error instanceof Error && error.name === "AbortError") {
+        throw new KeyEnvError("Request timeout", 408);
+      }
+      throw new KeyEnvError(error instanceof Error ? error.message : "Network error", 0);
+    }
+  }
+  /** Get the current user or service token info */
+  async getCurrentUser() {
+    return this.request("GET", "/api/v1/users/me");
+  }
+  /** Validate the token and return user info */
+  async validateToken() {
+    return this.getCurrentUser();
+  }
+  /** List all accessible projects */
+  async listProjects() {
+    const response = await this.request("GET", "/api/v1/projects");
+    return response.projects;
+  }
+  /** Get a project by ID */
+  async getProject(projectId) {
+    return this.request("GET", `/api/v1/projects/${projectId}`);
+  }
+  /** Create a new project */
+  async createProject(teamId, name) {
+    return this.request("POST", "/api/v1/projects", { team_id: teamId, name });
+  }
+  /** Delete a project */
+  async deleteProject(projectId) {
+    await this.request("DELETE", `/api/v1/projects/${projectId}`);
+  }
+  /** List environments in a project */
+  async listEnvironments(projectId) {
+    const response = await this.request(
+      "GET",
+      `/api/v1/projects/${projectId}/environments`
+    );
+    return response.environments;
+  }
+  /** Create a new environment */
+  async createEnvironment(projectId, name, inheritsFrom) {
+    return this.request(
+      "POST",
+      `/api/v1/projects/${projectId}/environments`,
+      { name, inherits_from: inheritsFrom }
+    );
+  }
+  /** Delete an environment */
+  async deleteEnvironment(projectId, environment) {
+    await this.request("DELETE", `/api/v1/projects/${projectId}/environments/${environment}`);
+  }
+  /** List secrets in an environment (keys and metadata only) */
+  async listSecrets(projectId, environment) {
+    const response = await this.request(
+      "GET",
+      `/api/v1/projects/${projectId}/environments/${environment}/secrets`
+    );
+    return response.secrets;
+  }
+  /**
+   * Export all secrets with their decrypted values
+   * @example
+   * ```ts
+   * const secrets = await client.exportSecrets('project-id', 'production');
+   * for (const secret of secrets) {
+   *   process.env[secret.key] = secret.value;
+   * }
+   * ```
+   */
+  async exportSecrets(projectId, environment) {
+    const response = await this.request(
+      "GET",
+      `/api/v1/projects/${projectId}/environments/${environment}/secrets/export`
+    );
+    return response.secrets;
+  }
+  /**
+   * Export secrets as a key-value object
+   * @example
+   * ```ts
+   * const env = await client.exportSecretsAsObject('project-id', 'production');
+   * // { DATABASE_URL: '...', API_KEY: '...' }
+   * ```
+   */
+  async exportSecretsAsObject(projectId, environment) {
+    const secrets = await this.exportSecrets(projectId, environment);
+    return Object.fromEntries(secrets.map((s) => [s.key, s.value]));
+  }
+  /** Get a single secret with its value */
+  async getSecret(projectId, environment, key) {
+    const response = await this.request(
+      "GET",
+      `/api/v1/projects/${projectId}/environments/${environment}/secrets/${key}`
+    );
+    return response.secret;
+  }
+  /** Create a new secret */
+  async createSecret(projectId, environment, key, value, description) {
+    const response = await this.request(
+      "POST",
+      `/api/v1/projects/${projectId}/environments/${environment}/secrets`,
+      { key, value, description }
+    );
+    return response.secret;
+  }
+  /** Update a secret's value */
+  async updateSecret(projectId, environment, key, value, description) {
+    const response = await this.request(
+      "PUT",
+      `/api/v1/projects/${projectId}/environments/${environment}/secrets/${key}`,
+      { value, description }
+    );
+    return response.secret;
+  }
+  /** Set a secret (create or update) */
+  async setSecret(projectId, environment, key, value, description) {
+    try {
+      return await this.updateSecret(projectId, environment, key, value, description);
+    } catch (error) {
+      if (error instanceof KeyEnvError && error.status === 404) {
+        return this.createSecret(projectId, environment, key, value, description);
+      }
+      throw error;
+    }
+  }
+  /** Delete a secret */
+  async deleteSecret(projectId, environment, key) {
+    await this.request(
+      "DELETE",
+      `/api/v1/projects/${projectId}/environments/${environment}/secrets/${key}`
+    );
+  }
+  /** Get secret version history */
+  async getSecretHistory(projectId, environment, key) {
+    const response = await this.request(
+      "GET",
+      `/api/v1/projects/${projectId}/environments/${environment}/secrets/${key}/history`
+    );
+    return response.history;
+  }
+  /**
+   * Bulk import secrets
+   * @example
+   * ```ts
+   * await client.bulkImport('project-id', 'development', [
+   *   { key: 'DATABASE_URL', value: 'postgres://...' },
+   *   { key: 'API_KEY', value: 'sk_...' },
+   * ], { overwrite: true });
+   * ```
+   */
+  async bulkImport(projectId, environment, secrets, options = {}) {
+    return this.request(
+      "POST",
+      `/api/v1/projects/${projectId}/environments/${environment}/secrets/bulk`,
+      { secrets, overwrite: options.overwrite ?? false }
+    );
+  }
+  /**
+   * Load secrets into process.env
+   * @example
+   * ```ts
+   * await client.loadEnv('project-id', 'production');
+   * console.log(process.env.DATABASE_URL);
+   * ```
+   */
+  async loadEnv(projectId, environment) {
+    const secrets = await this.exportSecrets(projectId, environment);
+    for (const secret of secrets) {
+      process.env[secret.key] = secret.value;
+    }
+    return secrets.length;
+  }
+  /** Generate .env file content from secrets */
+  async generateEnvFile(projectId, environment) {
+    const secrets = await this.exportSecrets(projectId, environment);
+    const lines = [
+      "# Generated by KeyEnv",
+      `# Environment: ${environment}`,
+      `# Generated at: ${(/* @__PURE__ */ new Date()).toISOString()}`,
+      ""
+    ];
+    for (const secret of secrets) {
+      const value = secret.value;
+      if (value.includes("\n") || value.includes('"') || value.includes("'") || value.includes(" ")) {
+        const escaped = value.replace(/\\/g, "\\\\").replace(/"/g, '\\"');
+        lines.push(`${secret.key}="${escaped}"`);
+      } else {
+        lines.push(`${secret.key}=${value}`);
+      }
+    }
+    return lines.join("\n") + "\n";
+  }
+};
+export {
+  KeyEnv,
+  KeyEnvError
+};
+//# sourceMappingURL=index.mjs.map

package/dist/index.mjs.map

@@ -0,0 +1 @@
+{"version":3,"sources":["../src/types.ts","../src/client.ts"],"sourcesContent":["/** KeyEnv client configuration options */\nexport interface KeyEnvOptions {\n  /** Service token for authentication */\n  token: string;\n  /** Request timeout in milliseconds (default: 30000) */\n  timeout?: number;\n}\n\n/** User or service token info */\nexport interface User {\n  id: string;\n  email?: string;\n  name?: string;\n  clerk_id?: string;\n  avatar_url?: string;\n  /** Present for service tokens */\n  auth_type?: 'service_token' | 'user';\n  /** Team ID (for service tokens) */\n  team_id?: string;\n  /** Project ID (for project-scoped service tokens) */\n  project_id?: string;\n  /** Token scopes (for service tokens) */\n  scopes?: string[];\n  created_at: string;\n}\n\n/** Project */\nexport interface Project {\n  id: string;\n  team_id: string;\n  name: string;\n  slug: string;\n  description?: string;\n  created_at: string;\n}\n\n/** Environment */\nexport interface Environment {\n  id: string;\n  project_id: string;\n  name: string;\n  inherits_from?: string;\n  created_at: string;\n}\n\n/** Project with environments */\nexport interface ProjectWithEnvironments extends Project {\n  environments: Environment[];\n}\n\n/** Secret (without value) */\nexport interface Secret {\n  id: string;\n  environment_id: string;\n  key: string;\n  type: string;\n  description?: string;\n  version: number;\n  created_at: string;\n  updated_at: string;\n}\n\n/** Secret with decrypted value */\nexport interface SecretWithValue extends Secret {\n  value: string;\n  inherited_from?: string;\n}\n\n/** Secret history entry */\nexport interface SecretHistory {\n  id: string;\n  secret_id: string;\n  value: string;\n  version: number;\n  changed_by?: string;\n  changed_at: string;\n}\n\n/** Bulk import request item */\nexport interface BulkSecretItem {\n  key: string;\n  value: string;\n  description?: string;\n}\n\n/** Bulk import result */\nexport interface BulkImportResult {\n  created: number;\n  updated: number;\n  skipped: number;\n}\n\n/** API error response */\nexport interface ApiError {\n  error: string;\n  code?: string;\n  details?: Record<string, unknown>;\n}\n\n/** KeyEnv API error */\nexport class KeyEnvError extends Error {\n  public readonly status: number;\n  public readonly code?: string;\n  public readonly details?: Record<string, unknown>;\n\n  constructor(message: string, status: number, code?: string, details?: Record<string, unknown>) {\n    super(message);\n    this.name = 'KeyEnvError';\n    this.status = status;\n    this.code = code;\n    this.details = details;\n  }\n}\n","import type {\n  KeyEnvOptions,\n  User,\n  Project,\n  ProjectWithEnvironments,\n  Environment,\n  Secret,\n  SecretWithValue,\n  SecretHistory,\n  BulkSecretItem,\n  BulkImportResult,\n  ApiError,\n} from './types.js';\nimport { KeyEnvError } from './types.js';\n\nconst BASE_URL = 'https://api.keyenv.dev';\nconst DEFAULT_TIMEOUT = 30000;\n\n/**\n * KeyEnv API client for managing secrets\n *\n * @example\n * ```ts\n * import { KeyEnv } from 'keyenv';\n *\n * const client = new KeyEnv({ token: process.env.KEYENV_TOKEN });\n *\n * // Export all secrets for an environment\n * const secrets = await client.exportSecrets('project-id', 'production');\n * ```\n */\nexport class KeyEnv {\n  private readonly token: string;\n  private readonly timeout: number;\n\n  constructor(options: KeyEnvOptions) {\n    if (!options.token) {\n      throw new Error('KeyEnv token is required');\n    }\n    this.token = options.token;\n    this.timeout = options.timeout || DEFAULT_TIMEOUT;\n  }\n\n  private async request<T>(method: string, path: string, body?: unknown): Promise<T> {\n    const url = `${BASE_URL}${path}`;\n    const controller = new AbortController();\n    const timeoutId = setTimeout(() => controller.abort(), this.timeout);\n\n    try {\n      const response = await fetch(url, {\n        method,\n        headers: {\n          'Authorization': `Bearer ${this.token}`,\n          'Content-Type': 'application/json',\n          'User-Agent': 'keyenv-node/1.0.0',\n        },\n        body: body ? JSON.stringify(body) : undefined,\n        signal: controller.signal,\n      });\n\n      clearTimeout(timeoutId);\n\n      if (!response.ok) {\n        let errorData: ApiError = { error: 'Unknown error' };\n        try {\n          errorData = await response.json() as ApiError;\n        } catch {\n          errorData = { error: response.statusText };\n        }\n        throw new KeyEnvError(errorData.error, response.status, errorData.code, errorData.details);\n      }\n\n      if (response.status === 204) {\n        return undefined as T;\n      }\n\n      return response.json() as Promise<T>;\n    } catch (error) {\n      clearTimeout(timeoutId);\n      if (error instanceof KeyEnvError) throw error;\n      if (error instanceof Error && error.name === 'AbortError') {\n        throw new KeyEnvError('Request timeout', 408);\n      }\n      throw new KeyEnvError(error instanceof Error ? error.message : 'Network error', 0);\n    }\n  }\n\n  /** Get the current user or service token info */\n  async getCurrentUser(): Promise<User> {\n    return this.request<User>('GET', '/api/v1/users/me');\n  }\n\n  /** Validate the token and return user info */\n  async validateToken(): Promise<User> {\n    return this.getCurrentUser();\n  }\n\n  /** List all accessible projects */\n  async listProjects(): Promise<Project[]> {\n    const response = await this.request<{ projects: Project[] }>('GET', '/api/v1/projects');\n    return response.projects;\n  }\n\n  /** Get a project by ID */\n  async getProject(projectId: string): Promise<ProjectWithEnvironments> {\n    return this.request<ProjectWithEnvironments>('GET', `/api/v1/projects/${projectId}`);\n  }\n\n  /** Create a new project */\n  async createProject(teamId: string, name: string): Promise<Project> {\n    return this.request<Project>('POST', '/api/v1/projects', { team_id: teamId, name });\n  }\n\n  /** Delete a project */\n  async deleteProject(projectId: string): Promise<void> {\n    await this.request<void>('DELETE', `/api/v1/projects/${projectId}`);\n  }\n\n  /** List environments in a project */\n  async listEnvironments(projectId: string): Promise<Environment[]> {\n    const response = await this.request<{ environments: Environment[] }>(\n      'GET', `/api/v1/projects/${projectId}/environments`\n    );\n    return response.environments;\n  }\n\n  /** Create a new environment */\n  async createEnvironment(projectId: string, name: string, inheritsFrom?: string): Promise<Environment> {\n    return this.request<Environment>(\n      'POST', `/api/v1/projects/${projectId}/environments`,\n      { name, inherits_from: inheritsFrom }\n    );\n  }\n\n  /** Delete an environment */\n  async deleteEnvironment(projectId: string, environment: string): Promise<void> {\n    await this.request<void>('DELETE', `/api/v1/projects/${projectId}/environments/${environment}`);\n  }\n\n  /** List secrets in an environment (keys and metadata only) */\n  async listSecrets(projectId: string, environment: string): Promise<Secret[]> {\n    const response = await this.request<{ secrets: Secret[] }>(\n      'GET', `/api/v1/projects/${projectId}/environments/${environment}/secrets`\n    );\n    return response.secrets;\n  }\n\n  /**\n   * Export all secrets with their decrypted values\n   * @example\n   * ```ts\n   * const secrets = await client.exportSecrets('project-id', 'production');\n   * for (const secret of secrets) {\n   *   process.env[secret.key] = secret.value;\n   * }\n   * ```\n   */\n  async exportSecrets(projectId: string, environment: string): Promise<SecretWithValue[]> {\n    const response = await this.request<{ secrets: SecretWithValue[] }>(\n      'GET', `/api/v1/projects/${projectId}/environments/${environment}/secrets/export`\n    );\n    return response.secrets;\n  }\n\n  /**\n   * Export secrets as a key-value object\n   * @example\n   * ```ts\n   * const env = await client.exportSecretsAsObject('project-id', 'production');\n   * // { DATABASE_URL: '...', API_KEY: '...' }\n   * ```\n   */\n  async exportSecretsAsObject(projectId: string, environment: string): Promise<Record<string, string>> {\n    const secrets = await this.exportSecrets(projectId, environment);\n    return Object.fromEntries(secrets.map((s) => [s.key, s.value]));\n  }\n\n  /** Get a single secret with its value */\n  async getSecret(projectId: string, environment: string, key: string): Promise<SecretWithValue> {\n    const response = await this.request<{ secret: SecretWithValue }>(\n      'GET', `/api/v1/projects/${projectId}/environments/${environment}/secrets/${key}`\n    );\n    return response.secret;\n  }\n\n  /** Create a new secret */\n  async createSecret(\n    projectId: string, environment: string, key: string, value: string, description?: string\n  ): Promise<Secret> {\n    const response = await this.request<{ secret: Secret }>(\n      'POST', `/api/v1/projects/${projectId}/environments/${environment}/secrets`,\n      { key, value, description }\n    );\n    return response.secret;\n  }\n\n  /** Update a secret's value */\n  async updateSecret(\n    projectId: string, environment: string, key: string, value: string, description?: string\n  ): Promise<Secret> {\n    const response = await this.request<{ secret: Secret }>(\n      'PUT', `/api/v1/projects/${projectId}/environments/${environment}/secrets/${key}`,\n      { value, description }\n    );\n    return response.secret;\n  }\n\n  /** Set a secret (create or update) */\n  async setSecret(\n    projectId: string, environment: string, key: string, value: string, description?: string\n  ): Promise<Secret> {\n    try {\n      return await this.updateSecret(projectId, environment, key, value, description);\n    } catch (error) {\n      if (error instanceof KeyEnvError && error.status === 404) {\n        return this.createSecret(projectId, environment, key, value, description);\n      }\n      throw error;\n    }\n  }\n\n  /** Delete a secret */\n  async deleteSecret(projectId: string, environment: string, key: string): Promise<void> {\n    await this.request<void>(\n      'DELETE', `/api/v1/projects/${projectId}/environments/${environment}/secrets/${key}`\n    );\n  }\n\n  /** Get secret version history */\n  async getSecretHistory(projectId: string, environment: string, key: string): Promise<SecretHistory[]> {\n    const response = await this.request<{ history: SecretHistory[] }>(\n      'GET', `/api/v1/projects/${projectId}/environments/${environment}/secrets/${key}/history`\n    );\n    return response.history;\n  }\n\n  /**\n   * Bulk import secrets\n   * @example\n   * ```ts\n   * await client.bulkImport('project-id', 'development', [\n   *   { key: 'DATABASE_URL', value: 'postgres://...' },\n   *   { key: 'API_KEY', value: 'sk_...' },\n   * ], { overwrite: true });\n   * ```\n   */\n  async bulkImport(\n    projectId: string, environment: string, secrets: BulkSecretItem[], options: { overwrite?: boolean } = {}\n  ): Promise<BulkImportResult> {\n    return this.request<BulkImportResult>(\n      'POST', `/api/v1/projects/${projectId}/environments/${environment}/secrets/bulk`,\n      { secrets, overwrite: options.overwrite ?? false }\n    );\n  }\n\n  /**\n   * Load secrets into process.env\n   * @example\n   * ```ts\n   * await client.loadEnv('project-id', 'production');\n   * console.log(process.env.DATABASE_URL);\n   * ```\n   */\n  async loadEnv(projectId: string, environment: string): Promise<number> {\n    const secrets = await this.exportSecrets(projectId, environment);\n    for (const secret of secrets) {\n      process.env[secret.key] = secret.value;\n    }\n    return secrets.length;\n  }\n\n  /** Generate .env file content from secrets */\n  async generateEnvFile(projectId: string, environment: string): Promise<string> {\n    const secrets = await this.exportSecrets(projectId, environment);\n    const lines = [\n      '# Generated by KeyEnv',\n      `# Environment: ${environment}`,\n      `# Generated at: ${new Date().toISOString()}`,\n      '',\n    ];\n\n    for (const secret of secrets) {\n      const value = secret.value;\n      if (value.includes('\\n') || value.includes('\"') || value.includes(\"'\") || value.includes(' ')) {\n        const escaped = value.replace(/\\\\/g, '\\\\\\\\').replace(/\"/g, '\\\\\"');\n        lines.push(`${secret.key}=\"${escaped}\"`);\n      } else {\n        lines.push(`${secret.key}=${value}`);\n      }\n    }\n\n    return lines.join('\\n') + '\\n';\n  }\n}\n"],"mappings":";AAoGO,IAAM,cAAN,cAA0B,MAAM;AAAA,EACrB;AAAA,EACA;AAAA,EACA;AAAA,EAEhB,YAAY,SAAiB,QAAgB,MAAe,SAAmC;AAC7F,UAAM,OAAO;AACb,SAAK,OAAO;AACZ,SAAK,SAAS;AACd,SAAK,OAAO;AACZ,SAAK,UAAU;AAAA,EACjB;AACF;;;ACjGA,IAAM,WAAW;AACjB,IAAM,kBAAkB;AAejB,IAAM,SAAN,MAAa;AAAA,EACD;AAAA,EACA;AAAA,EAEjB,YAAY,SAAwB;AAClC,QAAI,CAAC,QAAQ,OAAO;AAClB,YAAM,IAAI,MAAM,0BAA0B;AAAA,IAC5C;AACA,SAAK,QAAQ,QAAQ;AACrB,SAAK,UAAU,QAAQ,WAAW;AAAA,EACpC;AAAA,EAEA,MAAc,QAAW,QAAgB,MAAc,MAA4B;AACjF,UAAM,MAAM,GAAG,QAAQ,GAAG,IAAI;AAC9B,UAAM,aAAa,IAAI,gBAAgB;AACvC,UAAM,YAAY,WAAW,MAAM,WAAW,MAAM,GAAG,KAAK,OAAO;AAEnE,QAAI;AACF,YAAM,WAAW,MAAM,MAAM,KAAK;AAAA,QAChC;AAAA,QACA,SAAS;AAAA,UACP,iBAAiB,UAAU,KAAK,KAAK;AAAA,UACrC,gBAAgB;AAAA,UAChB,cAAc;AAAA,QAChB;AAAA,QACA,MAAM,OAAO,KAAK,UAAU,IAAI,IAAI;AAAA,QACpC,QAAQ,WAAW;AAAA,MACrB,CAAC;AAED,mBAAa,SAAS;AAEtB,UAAI,CAAC,SAAS,IAAI;AAChB,YAAI,YAAsB,EAAE,OAAO,gBAAgB;AACnD,YAAI;AACF,sBAAY,MAAM,SAAS,KAAK;AAAA,QAClC,QAAQ;AACN,sBAAY,EAAE,OAAO,SAAS,WAAW;AAAA,QAC3C;AACA,cAAM,IAAI,YAAY,UAAU,OAAO,SAAS,QAAQ,UAAU,MAAM,UAAU,OAAO;AAAA,MAC3F;AAEA,UAAI,SAAS,WAAW,KAAK;AAC3B,eAAO;AAAA,MACT;AAEA,aAAO,SAAS,KAAK;AAAA,IACvB,SAAS,OAAO;AACd,mBAAa,SAAS;AACtB,UAAI,iBAAiB,YAAa,OAAM;AACxC,UAAI,iBAAiB,SAAS,MAAM,SAAS,cAAc;AACzD,cAAM,IAAI,YAAY,mBAAmB,GAAG;AAAA,MAC9C;AACA,YAAM,IAAI,YAAY,iBAAiB,QAAQ,MAAM,UAAU,iBAAiB,CAAC;AAAA,IACnF;AAAA,EACF;AAAA;AAAA,EAGA,MAAM,iBAAgC;AACpC,WAAO,KAAK,QAAc,OAAO,kBAAkB;AAAA,EACrD;AAAA;AAAA,EAGA,MAAM,gBAA+B;AACnC,WAAO,KAAK,eAAe;AAAA,EAC7B;AAAA;AAAA,EAGA,MAAM,eAAmC;AACvC,UAAM,WAAW,MAAM,KAAK,QAAiC,OAAO,kBAAkB;AACtF,WAAO,SAAS;AAAA,EAClB;AAAA;AAAA,EAGA,MAAM,WAAW,WAAqD;AACpE,WAAO,KAAK,QAAiC,OAAO,oBAAoB,SAAS,EAAE;AAAA,EACrF;AAAA;AAAA,EAGA,MAAM,cAAc,QAAgB,MAAgC;AAClE,WAAO,KAAK,QAAiB,QAAQ,oBAAoB,EAAE,SAAS,QAAQ,KAAK,CAAC;AAAA,EACpF;AAAA;AAAA,EAGA,MAAM,cAAc,WAAkC;AACpD,UAAM,KAAK,QAAc,UAAU,oBAAoB,SAAS,EAAE;AAAA,EACpE;AAAA;AAAA,EAGA,MAAM,iBAAiB,WAA2C;AAChE,UAAM,WAAW,MAAM,KAAK;AAAA,MAC1B;AAAA,MAAO,oBAAoB,SAAS;AAAA,IACtC;AACA,WAAO,SAAS;AAAA,EAClB;AAAA;AAAA,EAGA,MAAM,kBAAkB,WAAmB,MAAc,cAA6C;AACpG,WAAO,KAAK;AAAA,MACV;AAAA,MAAQ,oBAAoB,SAAS;AAAA,MACrC,EAAE,MAAM,eAAe,aAAa;AAAA,IACtC;AAAA,EACF;AAAA;AAAA,EAGA,MAAM,kBAAkB,WAAmB,aAAoC;AAC7E,UAAM,KAAK,QAAc,UAAU,oBAAoB,SAAS,iBAAiB,WAAW,EAAE;AAAA,EAChG;AAAA;AAAA,EAGA,MAAM,YAAY,WAAmB,aAAwC;AAC3E,UAAM,WAAW,MAAM,KAAK;AAAA,MAC1B;AAAA,MAAO,oBAAoB,SAAS,iBAAiB,WAAW;AAAA,IAClE;AACA,WAAO,SAAS;AAAA,EAClB;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAYA,MAAM,cAAc,WAAmB,aAAiD;AACtF,UAAM,WAAW,MAAM,KAAK;AAAA,MAC1B;AAAA,MAAO,oBAAoB,SAAS,iBAAiB,WAAW;AAAA,IAClE;AACA,WAAO,SAAS;AAAA,EAClB;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAUA,MAAM,sBAAsB,WAAmB,aAAsD;AACnG,UAAM,UAAU,MAAM,KAAK,cAAc,WAAW,WAAW;AAC/D,WAAO,OAAO,YAAY,QAAQ,IAAI,CAAC,MAAM,CAAC,EAAE,KAAK,EAAE,KAAK,CAAC,CAAC;AAAA,EAChE;AAAA;AAAA,EAGA,MAAM,UAAU,WAAmB,aAAqB,KAAuC;AAC7F,UAAM,WAAW,MAAM,KAAK;AAAA,MAC1B;AAAA,MAAO,oBAAoB,SAAS,iBAAiB,WAAW,YAAY,GAAG;AAAA,IACjF;AACA,WAAO,SAAS;AAAA,EAClB;AAAA;AAAA,EAGA,MAAM,aACJ,WAAmB,aAAqB,KAAa,OAAe,aACnD;AACjB,UAAM,WAAW,MAAM,KAAK;AAAA,MAC1B;AAAA,MAAQ,oBAAoB,SAAS,iBAAiB,WAAW;AAAA,MACjE,EAAE,KAAK,OAAO,YAAY;AAAA,IAC5B;AACA,WAAO,SAAS;AAAA,EAClB;AAAA;AAAA,EAGA,MAAM,aACJ,WAAmB,aAAqB,KAAa,OAAe,aACnD;AACjB,UAAM,WAAW,MAAM,KAAK;AAAA,MAC1B;AAAA,MAAO,oBAAoB,SAAS,iBAAiB,WAAW,YAAY,GAAG;AAAA,MAC/E,EAAE,OAAO,YAAY;AAAA,IACvB;AACA,WAAO,SAAS;AAAA,EAClB;AAAA;AAAA,EAGA,MAAM,UACJ,WAAmB,aAAqB,KAAa,OAAe,aACnD;AACjB,QAAI;AACF,aAAO,MAAM,KAAK,aAAa,WAAW,aAAa,KAAK,OAAO,WAAW;AAAA,IAChF,SAAS,OAAO;AACd,UAAI,iBAAiB,eAAe,MAAM,WAAW,KAAK;AACxD,eAAO,KAAK,aAAa,WAAW,aAAa,KAAK,OAAO,WAAW;AAAA,MAC1E;AACA,YAAM;AAAA,IACR;AAAA,EACF;AAAA;AAAA,EAGA,MAAM,aAAa,WAAmB,aAAqB,KAA4B;AACrF,UAAM,KAAK;AAAA,MACT;AAAA,MAAU,oBAAoB,SAAS,iBAAiB,WAAW,YAAY,GAAG;AAAA,IACpF;AAAA,EACF;AAAA;AAAA,EAGA,MAAM,iBAAiB,WAAmB,aAAqB,KAAuC;AACpG,UAAM,WAAW,MAAM,KAAK;AAAA,MAC1B;AAAA,MAAO,oBAAoB,SAAS,iBAAiB,WAAW,YAAY,GAAG;AAAA,IACjF;AACA,WAAO,SAAS;AAAA,EAClB;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAYA,MAAM,WACJ,WAAmB,aAAqB,SAA2B,UAAmC,CAAC,GAC5E;AAC3B,WAAO,KAAK;AAAA,MACV;AAAA,MAAQ,oBAAoB,SAAS,iBAAiB,WAAW;AAAA,MACjE,EAAE,SAAS,WAAW,QAAQ,aAAa,MAAM;AAAA,IACnD;AAAA,EACF;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAUA,MAAM,QAAQ,WAAmB,aAAsC;AACrE,UAAM,UAAU,MAAM,KAAK,cAAc,WAAW,WAAW;AAC/D,eAAW,UAAU,SAAS;AAC5B,cAAQ,IAAI,OAAO,GAAG,IAAI,OAAO;AAAA,IACnC;AACA,WAAO,QAAQ;AAAA,EACjB;AAAA;AAAA,EAGA,MAAM,gBAAgB,WAAmB,aAAsC;AAC7E,UAAM,UAAU,MAAM,KAAK,cAAc,WAAW,WAAW;AAC/D,UAAM,QAAQ;AAAA,MACZ;AAAA,MACA,kBAAkB,WAAW;AAAA,MAC7B,oBAAmB,oBAAI,KAAK,GAAE,YAAY,CAAC;AAAA,MAC3C;AAAA,IACF;AAEA,eAAW,UAAU,SAAS;AAC5B,YAAM,QAAQ,OAAO;AACrB,UAAI,MAAM,SAAS,IAAI,KAAK,MAAM,SAAS,GAAG,KAAK,MAAM,SAAS,GAAG,KAAK,MAAM,SAAS,GAAG,GAAG;AAC7F,cAAM,UAAU,MAAM,QAAQ,OAAO,MAAM,EAAE,QAAQ,MAAM,KAAK;AAChE,cAAM,KAAK,GAAG,OAAO,GAAG,KAAK,OAAO,GAAG;AAAA,MACzC,OAAO;AACL,cAAM,KAAK,GAAG,OAAO,GAAG,IAAI,KAAK,EAAE;AAAA,MACrC;AAAA,IACF;AAEA,WAAO,MAAM,KAAK,IAAI,IAAI;AAAA,EAC5B;AACF;","names":[]}

package/package.json

@@ -0,0 +1,54 @@
+{
+  "name": "keyenv",
+  "version": "0.1.0",
+  "description": "Official Node.js SDK for KeyEnv - Secure secrets management",
+  "main": "dist/index.js",
+  "module": "dist/index.mjs",
+  "types": "dist/index.d.ts",
+  "exports": {
+    ".": {
+      "require": "./dist/index.js",
+      "import": "./dist/index.mjs",
+      "types": "./dist/index.d.ts"
+    }
+  },
+  "files": [
+    "dist"
+  ],
+  "scripts": {
+    "build": "tsup",
+    "test": "vitest run",
+    "test:watch": "vitest",
+    "lint": "eslint src --ext .ts",
+    "typecheck": "tsc --noEmit",
+    "prepublishOnly": "npm run build"
+  },
+  "keywords": [
+    "keyenv",
+    "secrets",
+    "environment",
+    "env",
+    "dotenv",
+    "secrets-management",
+    "configuration"
+  ],
+  "author": "KeyEnv",
+  "license": "MIT",
+  "repository": {
+    "type": "git",
+    "url": "https://github.com/keyenv/node-sdk.git"
+  },
+  "homepage": "https://keyenv.dev",
+  "bugs": {
+    "url": "https://github.com/keyenv/node-sdk/issues"
+  },
+  "engines": {
+    "node": ">=18"
+  },
+  "devDependencies": {
+    "@types/node": "^22.0.0",
+    "tsup": "^8.0.0",
+    "typescript": "^5.0.0",
+    "vitest": "^2.0.0"
+  }
+}