HackerTrans
トップ新着トレンドコメント過去質問紹介求人

thoughtlesslabs

no profile record

投稿

Encrypt Your .env in a Meme

github.com
3 ポイント·投稿者 thoughtlesslabs·6 か月前·5 コメント

Show HN: Advent of Marketing – Daily marketing task helping founders market

v0-advent-of-marketing.vercel.app
1 ポイント·投稿者 thoughtlesslabs·7 か月前·0 コメント

I vibecoded a CAD program with Gemini 3 and it works quite well

thoughtlesscad-pro.vercel.app
1 ポイント·投稿者 thoughtlesslabs·8 か月前·0 コメント

[untitled]

1 ポイント·投稿者 thoughtlesslabs·9 か月前·0 コメント

In Defense of the First Attempt

read.thoughtlessopinions.com
1 ポイント·投稿者 thoughtlesslabs·9 か月前·0 コメント

コメント

thoughtlesslabs
·6 か月前·議論
The idea is about sharing secrets and keys not locking people out of the codebase.

Let's say you are using an OpenAI api key. The only people who can use your key are the ones you added their public key to the vault.

If you decide they can no longer have access, you change the secret and pull their public key from the repo.

This is no different then if you were sharing secrets in a .env except that they are not stored in plain text which is why you can upload it to github.

If you never give anyone access to the vault they can never use your secrets even if they have the code. They can create their own vaults and keys but they can't use yours.
thoughtlesslabs
·6 か月前·議論
Haha! In this case a real tool, but I wanted to have a little fun be embedding the secrets into memes.

You can actually use any image though
thoughtlesslabs
·6 か月前·議論
Was thinking about how to make leaking keys less of an issue, especially as ai loves to just commit stuff. And why not store them in memes.

Memevault is a zero-dependency, single-binary secret manager that lets you keep encrypted project secrets anywhere by storing them inside a meme image. Instead of sharing `.env` files or relying on ad hoc workflows, teams can grant and revoke access per user, and the vault is re-encrypted accordingly. It works consistently across Windows, Linux, and macOS, injects secrets only into the environment of the command you run (`memevault run -- ...`), and includes key rotation plus a `scan` command to catch secrets referenced in code but missing from the vault.
thoughtlesslabs
·9 か月前·議論
[dead]