SkillAgentSearch skills...

Zenv

Enhanced env command to set environment variable by various method

GenerateConvertImprove

Install / Use

/learn @m-mizutani/Zenv
About this skill

Quality Score

0/100

Supported Platforms

Universal

README

zenv CI Security Scan Vuln scan <!-- omit in toc -->

zenv is enhanced env command to manage environment variables in CLI.

# .env.yaml - Powerful environment variable management
DB_USER: "admin"
DB_HOST: "localhost"

DB_PASSWORD:
  file: "/path/to/db_secret"  # Load from file

API_KEY:
  file: "/path/to/api_key"

DATABASE_URL:
  value: "postgresql://{{ .DB_USER }}:{{ .DB_PASSWORD }}@{{ .DB_HOST }}/mydb"
  refs:
    - DB_USER
    - DB_PASSWORD
    - DB_HOST  # Build from variables
  profile:
    dev: "sqlite://local.db"  # Override with profile

CONFIG_DATA:
  command:
    - curl
    - -H
    - "Authorization: Bearer {{ .API_KEY }}"
    - https://api.example.com/config
  refs:
    - API_KEY  # Fetch data from API
  • Load environment variables from multiple sources:
    • .env files with static values, file content reading, and command execution
    • YAML configuration files with advanced features
    • Inline environment variable specification (KEY=value format)
    • System environment variables
  • Replace command line argument with loaded environment variable
  • Variable precedence: System < .env < YAML < Inline (later sources override earlier ones)

Install <!-- omit in toc -->

# Install v2 (the /v2 suffix is required)
go install github.com/m-mizutani/zenv/v2@latest

# Note: github.com/m-mizutani/zenv@latest will install v1 even after v2 release

Command Line Options

zenv [OPTIONS] [ENVIRONMENT_VARIABLES] [COMMAND] [ARGS...]

Options

  • -e, --env FILE: Load environment variables from .env file (can be specified multiple times)
  • -c, --config FILE: Load environment variables from YAML file (can be specified multiple times)
  • -p, --profile NAME: Select profile from YAML configuration (e.g., dev, staging, prod)

Basic Usage

Set by CLI argument

Can set environment variable in same manner with env command

$ zenv POSTGRES_DB=your_local_dev_db psql

Load from .env file

Automatically loads .env file from current directory. You can also specify custom files with -e option.

$ cat .env
POSTGRES_DB=your_local_db
POSTGRES_USER=test_user
PGDATA=/var/lib/db

$ zenv psql -h localhost -p 15432
# connecting to your_local_db on localhost:15432 as test_user

# Or specify custom .env file
$ zenv -e production.env psql

Load from YAML configuration files

Both .env.yaml and .env.yml file extensions are supported. If both files exist, they will be automatically merged.

$ cat .env.yaml
DATABASE_URL: "postgresql://localhost/mydb"
PORT: "3000"

$ zenv -c .env.yaml myapp
# myapp runs with DATABASE_URL and PORT set from .env.yaml (or .env.yml)

Multiple files and precedence

You can load from multiple sources. Variables are merged with the following precedence (later sources override earlier ones):

  1. System environment variables
  2. .env files (in order specified)
  3. YAML files (in order specified)
  4. Inline variables (KEY=value)
# Load from multiple sources
$ zenv -e base.env -e override.env -c config.yaml DATABASE_URL=sqlite://local.db myapp

List environment variables

Run without a command to see all loaded environment variables:

$ zenv
DATABASE_URL=postgresql://localhost/mydb [.yaml]
PORT=3000 [.yaml]
API_SECRET=secret_from_file [.yaml]
CURRENT_BRANCH=main [.yaml]
PATH=/usr/bin:/bin [system]
...

# List with specific configuration
$ zenv -e production.env -c config.yaml

YAML Configuration Format

Basic Usage

YAML files use standard key-value pairs for environment variables:

DATABASE_URL: "postgresql://localhost/mydb"
API_KEY: "secret-key-123"
PORT: "3000"
DEBUG: "true"

Advanced Features

For capabilities beyond simple strings, use the object format:

File Content Reading

Load values from files:

SECRET_KEY:
  file: "/path/to/secret/file"

SSL_CERT:
  file: "/etc/ssl/certs/app.pem"

Command Execution

Execute commands and use their output:

GIT_COMMIT:
  command:
    - git
    - rev-parse
    - HEAD

BUILD_TIME:
  command:
    - date
    - "+%Y-%m-%d"

Variable References (Alias)

Reference other variables or system environment variables:

APP_HOME:
  alias: "HOME"  # References system environment variable

PRIMARY_DB: "postgresql://primary.example.com/maindb"

DATABASE_URL:
  alias: "PRIMARY_DB"  # References another YAML variable

Templates (Variable Interpolation)

Combine multiple variables using Go's text/template syntax by adding refs:

DB_USER: "admin"

DB_HOST: "localhost"

DB_NAME: "myapp"

# Simple interpolation
DATABASE_URL:
  value: "postgresql://{{ .DB_USER }}@{{ .DB_HOST }}/{{ .DB_NAME }}"
  refs:
    - DB_USER
    - DB_HOST
    - DB_NAME

# Conditional logic
USE_STAGING: "true"

API_ENDPOINT:
  value: "{{ if eq .USE_STAGING \"true\" }}https://staging.api.example.com{{ else }}https://api.example.com{{ end }}"
  refs:
    - USE_STAGING

Template Features:

  • Use {{ .VAR_NAME }} to reference variables
  • Support conditional logic: {{ if }}/{{ else }}/{{ end }}
  • Can reference system environment variables, .env variables, and YAML variables
  • Both value and command support templates with refs

Profile Support

Manage different configurations for different environments (dev, staging, prod, etc.):

# Basic profile usage
API_URL: "https://api.example.com"

DATABASE_HOST: "prod-db.example.com"

# Unset variable in specific profile (null value)
DEBUG_MODE: "false"

# Profile with different value types
SSL_CERT:
  file: "/etc/ssl/prod.pem"

profiles:
  dev:
    API_URL: "http://localhost:8080"
    DATABASE_HOST: "localhost"
    DEBUG_MODE: "true"
    SSL_CERT: "-----BEGIN CERTIFICATE-----\ndev-cert\n-----END CERTIFICATE-----"

  staging:
    API_URL: "https://staging-api.example.com"
    DATABASE_HOST: "staging-db.example.com"
    SSL_CERT:
      file: "/etc/ssl/staging.pem"

  prod:
    DEBUG_MODE: null  # Unset DEBUG_MODE in prod

To use a specific profile, run:

# Use dev profile
zenv -c config.yaml -p dev myapp

# Use staging profile
zenv -c config.yaml --profile staging deploy

Secret Redaction

Add secret: true to redact the variable's value. In the variable list it is masked with *, and in command stdout/stderr it is replaced with *****:

DB_PASSWORD:
  file: "/path/to/db_secret"
  secret: true

Profile values inherit secret: true from their base configuration.

Configuration Rules

Value Types (only one can be specified per variable):

  • value: Direct string value (becomes a template when used with refs)
  • file: Read content from a file path
  • command: Execute command and use output
  • alias: Reference another variable

Additional Options:

  • refs: List of variables to reference in templates (used with value or command)
  • profiles: Environment-specific overrides (dev, staging, prod, etc.)

Important Notes:

  • Circular references (e.g., A→B→A) will result in an error
  • Profile values override defaults when selected with -p/--profile
  • Null profile value unsets the variable for that environment

Migration from v1 to v2

For detailed migration instructions, see Migration Guide.

Quick Migration Summary

  1. Update installation: go install github.com/m-mizutani/zenv/v2@latest
  2. Review precedence: New order is System < .env < YAML < Inline
  3. Test existing setup: Most .env usage continues to work unchanged
  4. Consider YAML: Optionally migrate complex configurations to YAML for advanced features

License

Apache License 2.0

m-mizutani

View profile

View on GitHub
GitHub Stars150
CategoryDevelopment
Updated6d ago
Forks2
m-mizutani/zenv

Languages

Go

Security Score

100/100

Audited on Mar 28, 2026

No findings