Skip to content
varlock

Varlock - AI-safe .env files

 ██▒   █▓ ▄▄▄       ██▀███   ██▓     ▒█████   ▄████▄   ██ ▄█▀
 ▓██░   █▒▒████▄    ▓██ ▒ ██▒▓██▒    ▒██▒  ██▒▒██▀ ▀█   ██▄█▒ 
  ▓██  █▒░▒██  ▀█▄  ▓██ ░▄█ ▒▒██░    ▒██░  ██▒▒██    ▄ ▓███▄░ 
   ▒██ █░░░██▄▄▄▄██ ▒██▀▀█▄  ▒██░    ▒██   ██░▒██▄ ▄██▒▓██ █▄ 
    ▒▀█░   ▓█   ▓██▒░██▓ ▒██▒░██████▒░ █████▒░▒ ████▀ ░▒██▒ █▄
    ░ ▐░   ▒▒   ▓▒█░░ ▒▓ ░▒▓░░ ▒░▓  ░░ ▒░▒░▒░ ░ ░▒ ▒  ░▒ ▒▒ ▓▒
    ░ ░░    ▒   ▒▒ ░  ░▒ ░ ▒░░ ░ ▒  ░  ░ ▒ ▒░   ░  ▒   ░ ░▒ ▒░
      ░░    ░   ▒     ░░   ░   ░ ░   ░ ░ ░ ▒  ░        ░ ░░ ░ 
       ░        ░  ░   ░         ░  ░    ░ ░  ░ ░      ░  ░

Varlock warlock
AI-safe .env files:
Schemas for agents, secrets for humans
Varlock warlock striking

.env.schema
# Declarative schema — AI agents get full context, never secret values
# @sensitive @required @type=string(startsWith=sk-ant-api)
# @docs(https://platform.claude.com/docs/en/api/overview)
ANTHROPIC_API_KEY=


# @type=enum(development, preview, production, test)
APP_ENV=development # set non-sensitive default values directly


# use function calls and plugins to securely fetch data from external sources
XYZ_TOKEN=op("op://api-prod/xyz/auth-token")

Unlike .env.example, your .env.schema is a single source of truth, built for collaboration, that will never be out of sync. Agents can read your schema for full context — without accessing your secrets.

.env.local (git-ignored)
# built-in encryption for local overrides - NOTHING in plaintext
ANTHROPIC_API_KEY=varlock(local:ABC123...)
Get Started Reference Docs
Featured on OSSCAR Syntax Featured in Ep 985 GitHub Secure Open Source Fund
Claude Code
Cursor
Gemini CLI
Opencode
1Password
Infisical
AWS Secrets
Azure Key Vault
Google Secret Manager
Bitwarden
Next.js
Vite
Astro
GitHub Actions
Docker
Node.js
Bun
Python
Ruby
Go
PHP
Qwik
React Router
Cloudflare Workers
TypeScript

AI-Safe Config

Your .env.schema is readable by AI agents — they get full context on your config without ever seeing secret values. Prevent leaks to AI servers by design.

Leak Scanning

Proactively scan your codebase for leaked secrets with varlock scan. Set up git hooks to catch leaks before they're committed.

Runtime Protection

Redact sensitive values from logs and console output. Detect leaks in bundled client code and outgoing server responses at runtime.

Redaction demo

Validation

Powerful validation capabilities, without custom logic. Misconfiguration errors are surfaced much earlier in your development cycle, with clear error messages.

Validation demo

Type-safety

Automatically generate types according to your schema - the single source of truth - instead of writing them by hand.

IntelliSense demo

Environments

Combine defaults, environment-specific .env files, local git-ignored overrides, and process env vars. Compose values together using functions.

Multi-env demo

Secure secrets

Load secrets from 6 provider plugins — 1Password, Infisical, AWS Secrets Manager, Azure Key Vault, Google Secret Manager, and Bitwarden — or any CLI tool.

External providers demo
Get Started Reference Docs

Installation

Terminal window
# Install as a dependency in a js project
npx varlock init


# OR install as standalone binary via homebrew
brew install dmno-dev/tap/varlock
# OR via cURL
curl -sSfL https://varlock.dev/install.sh | sh -s

Drop-in replacement for dotenv

my-app.ts
 import 'dotenv/config';
 import 'varlock/auto-load';


// *optional* type-safe env access
 import { ENV } from 'varlock/env';
 const client = new AbcApi(process.env.ABC_API_KEY);
 const client = new AbcApi(ENV.ABC_API_KEY);

varlock can be used as a direct replacement for dotenv in most projects. Just swap your import and get validation, security, and more. No other code changes required!

Run anywhere - with any language

Terminal window
varlock run -- python my_script.py

Use varlock run to inject resolved, validated env vars into another process.

Come chat with us

© 2026 DMNO Inc. All rights reserved.