envy set lets you write a key via CLI, and envy run injects keys as environment variables for a command. But there's no way to read a single key value from the CLI without entering the TUI.
For scripting and automation workflows, a get command would fill the missing read side of the CLI interface:
# Retrieve a single key value
envy get myproject API_KEY
# Use in shell scripts
export TOKEN=$(envy get myproject AUTH_TOKEN)
# Specify environment
envy get myproject API_KEY -e prod
This would mirror the set command's interface (project name + key name + optional -e flag) and make envy usable in non-interactive contexts like CI pipelines, shell scripts, and dotfile bootstrapping.
Scope
- Accept
project and key positional args
- Support
-e / --env flag (same as set)
- Print the decrypted value to stdout (no newline, for clean piping)
- Exit non-zero if project or key not found
Happy to submit a PR for this if it aligns with your plans for the project.
// ticktockbent
envy setlets you write a key via CLI, andenvy runinjects keys as environment variables for a command. But there's no way to read a single key value from the CLI without entering the TUI.For scripting and automation workflows, a
getcommand would fill the missing read side of the CLI interface:This would mirror the
setcommand's interface (project name + key name + optional-eflag) and make envy usable in non-interactive contexts like CI pipelines, shell scripts, and dotfile bootstrapping.Scope
projectandkeypositional args-e/--envflag (same asset)Happy to submit a PR for this if it aligns with your plans for the project.
// ticktockbent