keyra-cli 0.1.0

package/cli/src/lib/encryption.ts

@@ -0,0 +1,45 @@
+import crypto from 'crypto';
+
+export function encrypt(
+  text: string,
+  passphrase: string
+): { encrypted: string; iv: string; salt: string; authTag: string } {
+  const salt = crypto.randomBytes(16);
+  const key = crypto.pbkdf2Sync(passphrase, salt, 100000, 32, 'sha256');
+  const iv = crypto.randomBytes(12);
+  const cipher = crypto.createCipheriv('aes-256-gcm', key, iv);
+  let encrypted = cipher.update(text, 'utf8', 'hex');
+  encrypted += cipher.final('hex');
+  const authTag = cipher.getAuthTag().toString('hex');
+  return {
+    encrypted,
+    iv: iv.toString('hex'),
+    salt: salt.toString('hex'),
+    authTag,
+  };
+}
+
+export function decrypt(
+  encrypted: string,
+  iv: string,
+  salt: string,
+  authTag: string,
+  passphrase: string
+): string {
+  const key = crypto.pbkdf2Sync(
+    passphrase,
+    Buffer.from(salt, 'hex'),
+    100000,
+    32,
+    'sha256'
+  );
+  const decipher = crypto.createDecipheriv(
+    'aes-256-gcm',
+    key,
+    Buffer.from(iv, 'hex')
+  );
+  decipher.setAuthTag(Buffer.from(authTag, 'hex'));
+  let decrypted = decipher.update(encrypted, 'hex', 'utf8');
+  decrypted += decipher.final('utf8');
+  return decrypted;
+}

package/cli/src/lib/env-file.ts

@@ -0,0 +1,67 @@
+import fs from 'fs';
+import path from 'path';
+
+export function parseEnvFile(content: string): Record<string, string> {
+  const vars: Record<string, string> = {};
+  const lines = content.split('\n');
+
+  for (const line of lines) {
+    const trimmed = line.trim();
+    // Skip empty lines and comments
+    if (!trimmed || trimmed.startsWith('#')) continue;
+
+    const eqIndex = trimmed.indexOf('=');
+    if (eqIndex === -1) continue;
+
+    const key = trimmed.substring(0, eqIndex).trim();
+    let value = trimmed.substring(eqIndex + 1).trim();
+
+    // Remove surrounding quotes
+    if (
+      (value.startsWith('"') && value.endsWith('"')) ||
+      (value.startsWith("'") && value.endsWith("'"))
+    ) {
+      value = value.slice(1, -1);
+    }
+
+    if (key) {
+      vars[key] = value;
+    }
+  }
+
+  return vars;
+}
+
+export function toEnvFileString(vars: Record<string, string>): string {
+  const keys = Object.keys(vars).sort();
+  return keys.map((key) => `${key}=${vars[key]}`).join('\n') + '\n';
+}
+
+const ENV_FILES = ['.env', '.env.local', '.env.development'];
+
+export function readEnvFile(dir?: string): {
+  vars: Record<string, string>;
+  filename: string;
+} | null {
+  const baseDir = dir || process.cwd();
+
+  for (const filename of ENV_FILES) {
+    const filePath = path.join(baseDir, filename);
+    if (fs.existsSync(filePath)) {
+      const content = fs.readFileSync(filePath, 'utf-8');
+      return { vars: parseEnvFile(content), filename };
+    }
+  }
+
+  return null;
+}
+
+export function writeEnvFile(
+  vars: Record<string, string>,
+  dir?: string,
+  filename = '.env'
+): void {
+  const baseDir = dir || process.cwd();
+  const filePath = path.join(baseDir, filename);
+  fs.writeFileSync(filePath, toEnvFileString(vars));
+}

package/cli/src/lib/ui.ts

@@ -0,0 +1,87 @@
+import readline from 'readline';
+import chalk from 'chalk';
+import ora from 'ora';
+import boxen from 'boxen';
+
+export const spinner = (text: string) => ora({ text, color: 'green' });
+
+export const success = (text: string) =>
+  console.log(chalk.green('✓'), text);
+
+export const error = (text: string) =>
+  console.log(chalk.red('✗'), text);
+
+export const warning = (text: string) =>
+  console.log(chalk.yellow('⚠'), text);
+
+export const info = (text: string) =>
+  console.log(chalk.blue('ℹ'), text);
+
+export function banner() {
+  console.log(
+    boxen(
+      chalk.green.bold('Keyra') +
+        chalk.dim(' v0.1.0') +
+        '\n' +
+        chalk.dim('Encrypted .env vault'),
+      {
+        padding: 1,
+        margin: 1,
+        borderStyle: 'round',
+        borderColor: 'green',
+      }
+    )
+  );
+}
+
+export function printTable(
+  rows: { key: string; value: string; status?: string }[]
+) {
+  const maxKeyLen = Math.max(...rows.map((r) => r.key.length), 3);
+
+  for (const row of rows) {
+    const dots = '.'.repeat(Math.max(1, maxKeyLen - row.key.length + 3));
+    const statusIcon =
+      row.status === 'present'
+        ? chalk.green('✓')
+        : row.status === 'missing'
+        ? chalk.red('✗')
+        : row.status === 'empty'
+        ? chalk.red('✗')
+        : chalk.dim('·');
+    const statusText =
+      row.status === 'present'
+        ? chalk.green(row.value)
+        : row.status === 'missing'
+        ? chalk.red(row.value)
+        : row.status === 'empty'
+        ? chalk.red(row.value)
+        : chalk.dim(row.value);
+
+    console.log(`  ${statusIcon} ${chalk.bold(row.key)} ${chalk.dim(dots)} ${statusText}`);
+  }
+}
+
+export function printBox(content: string, color: 'green' | 'yellow' | 'red' = 'green') {
+  console.log(
+    boxen(content, {
+      padding: 1,
+      margin: { top: 1, bottom: 1, left: 0, right: 0 },
+      borderStyle: 'round',
+      borderColor: color,
+    })
+  );
+}
+
+export function promptSecret(question: string): Promise<string> {
+  return new Promise((resolve) => {
+    const rl = readline.createInterface({
+      input: process.stdin,
+      output: process.stdout,
+    });
+    rl.question(question, (answer) => {
+      rl.close();
+      resolve(answer);
+    });
+  });
+}

package/cli/src/types.ts

@@ -0,0 +1,56 @@
+export interface Config {
+  apiUrl: string;
+  accessToken: string;
+  passphrase: string;
+}
+
+export interface ProjectConfig {
+  projectId: string;
+  projectName: string;
+}
+
+export interface Project {
+  id: string;
+  user_id: string;
+  name: string;
+  description: string | null;
+  var_count: number;
+  last_synced_at: string | null;
+  created_at: string;
+  updated_at: string;
+  has_project_password: boolean;
+  project_password_salt: string | null;
+}
+
+export interface VaultEntry {
+  id: string;
+  user_id: string;
+  project_id: string;
+  key_name: string;
+  encrypted_value: string;
+  iv: string;
+  salt: string;
+  auth_tag: string;
+  category: string;
+  created_at: string;
+  updated_at: string;
+}
+
+export interface EncryptedEntry {
+  key_name: string;
+  encrypted_value: string;
+  iv: string;
+  salt: string;
+  auth_tag: string;
+  category: string;
+}
+
+export interface ShareData {
+  project_id: string;
+  encrypted_data: string;
+  iv: string;
+  salt: string;
+  auth_tag: string;
+  expires_at?: string;
+  max_views?: number;
+}

package/cli/tsconfig.json

@@ -0,0 +1,14 @@
+{
+  "compilerOptions": {
+    "target": "ES2022",
+    "module": "ESNext",
+    "moduleResolution": "bundler",
+    "strict": true,
+    "esModuleInterop": true,
+    "outDir": "dist",
+    "rootDir": "src",
+    "declaration": true,
+    "skipLibCheck": true
+  },
+  "include": ["src/**/*"]
+}

package/package.json

@@ -0,0 +1,38 @@
+{
+  "name": "keyra-cli",
+  "version": "0.1.0",
+  "scripts": {
+    "dev": "next dev",
+    "build": "next build",
+    "start": "next start",
+    "lint": "eslint"
+  },
+  "dependencies": {
+    "@supabase/ssr": "^0.8.0",
+    "@supabase/supabase-js": "^2.95.3",
+    "@vercel/analytics": "^1.6.1",
+    "class-variance-authority": "^0.7.1",
+    "clsx": "^2.1.1",
+    "lucide-react": "^0.564.0",
+    "next": "16.1.6",
+    "next-themes": "^0.4.6",
+    "radix-ui": "^1.4.3",
+    "react": "19.2.3",
+    "react-dom": "19.2.3",
+    "sonner": "^2.0.7",
+    "stripe": "^20.3.1",
+    "tailwind-merge": "^3.4.1"
+  },
+  "devDependencies": {
+    "@tailwindcss/postcss": "^4",
+    "@types/node": "^20",
+    "@types/react": "^19",
+    "@types/react-dom": "^19",
+    "eslint": "^9",
+    "eslint-config-next": "16.1.6",
+    "shadcn": "^3.8.5",
+    "tailwindcss": "^4",
+    "tw-animate-css": "^1.4.0",
+    "typescript": "^5"
+  }
+}