CLI Changelog
Changes specific to the CLI (envilder npm package).
For SDK-specific changes, see sdk-dotnet.md, sdk-python.md, or sdk-nodejs.md.
v0.10.02026-05-03
Added
- Map-file JSON Schema — A formal JSON Schema specification for map files, published at
https://envilder.com/schema/map-file.v1.json. Add
"$schema": "https://envilder.com/schema/map-file.v1.json" to any map file
for IDE autocomplete, inline documentation, and validation
(#218)
- Schema contract tests — 39 tests validating the JSON Schema across all providers (AWS, Azure, GCP, HashiCorp Vault, file)
Fixed
- Reserved key filtering — All
$-prefixed keys (e.g.$schema) are now excluded from variable mappings. Previously only$configwas filtered,
$schema to leak into environment variables
(#218)
v0.9.42026-05-03
Fixed
- Mask secret path in bulk push log output (#185)
v0.9.32026-04-17
Added
- Runtime SDKs now available — Load secrets directly into your application at startup, no
.envfile needed:
.NET (NuGet):
builder.Configuration.AddEnvilder("envilder.json");
Python (PyPI):
from envilder import Envilder
Envilder.load('envilder.json')
CLI (as always):
npx envilder --map=envilder.json --envfile=.env
GitHub Action:
- uses: macalbert/envilder/github-action@v0
with:
map-file: envilder.json
env-file: .env
Changed
- README rewritten — Streamlined messaging, accurate comparison tables, simplified quick start (2 steps), and reduced noise
Fixed
- ci(publish-npm): Narrowed
pathsfilter fromsrc/<strong>tosrc/envilder/</strong>so SDK/website/IaC changes no longer trigger the
- ci(publish-npm): Replaced
npm viewwithcurlagainst the npm registry API to avoid.npmrcauth failures during version detection - ci(publish-website): Added
docs/CHANGELOG.mdanddocs/changelogs/**to path filters so changelog updates trigger
Dependencies
- Bump
typescriptfrom 6.0.2 to 6.0.3
v0.9.22026-04-02
Added
- LocalStack sponsor section — Added sponsor section to website homepage and README with LocalStack logos (dark, light, color variants) and a new
Sponsors.astrocomponent
- Website test suite — Added
tests/website/with Vitest coverage for i18n utilities and Markdown helpers BackToTopcomponent — New scroll-to-top button component for the documentation website
Changed
- Project layout restructured for SDK platform readiness (#134):
- Core domain layer moved from
src/envilder/tosrc/envilder/core/ - Website moved from
src/apps/website/tosrc/website/ - All imports,
tsconfig.json,package.json, and workspace config updated accordingly - Website UX improvements —
DocsContent,HowItWorks,ThemeSwitcher,TerminalMockup, andBaseLayoutcomponents updated; global CSS expanded; i18n keys added for new content
Fixed
- README: Replace
#gh-light-mode-only/#gh-dark-mode-onlyimage fragments with a<picture>element usingprefers-color-schememedia queries - ci: Update version check in publish workflow to use published version from npm
Dependencies
- Bump
@aws-sdk/client-ssmfrom 3.1019.0 to 3.1021.0 (#140) - Bump
@aws-sdk/credential-providersfrom 3.1019.0 to 3.1021.0 (#142) - Bump
secretlintfrom 11.4.0 to 11.4.1 (#141) - Bump
@secretlint/secretlint-rule-preset-recommendfrom 11.4.0 to 11.4.1 (#144) - Bump
astrofrom 6.1.1 to 6.1.2 (#143) - Bump
actions/configure-pagesfrom 5 to 6 (#139) - Bump
actions/deploy-pagesfrom 4 to 5 (#138) - Bump
pnpm/action-setupfrom 4 to 5 (#137)
v0.9.12026-03-30
Added
- Documentation website — Full Astro-based docs site deployed at envilder.com, with multi-language support (EN, ES, CA), dark/retro and light themes, and a dedicated changelog page
Changed
- Updated Envilder logo in README
Fixed
- deps: Move
@types/nodefromdependenciestodevDependenciesto prevent it from being bundled as a runtime dependency - e2e: Use unique SSM paths per CLI test run to prevent race conditions between parallel test executions
Dependencies
- Bump
brace-expansionfrom 5.0.4 to 5.0.5 (security patch) - Bump
@azure/core-rest-pipelineand@azure/identitygroup updates
v0.8.02026-03-22
Added
$configsection in map files — Map files now support an optional$configkey to declare provider and connection details inline (e.g.,"provider": "azure","vaultUrl": "https://...",
"profile": "dev-account")
- New CLI flag
--vault-url <url>— Azure Key Vault URL, overrides$config.vaultUrlin the map file - Precedence chain: CLI flags >
$configin map file > defaults - Backward compatible: existing map files without
$configcontinue to work (defaults to AWS provider) - Azure Key Vault support — Use
--provider=azureto pull/push secrets from Azure Key Vault (#90) - New infrastructure adapter:
AzureKeyVaultSecretProviderimplementingISecretProvider - New CLI option
--provider <name>to select cloud provider (awsorazure, default:aws) - Azure authentication via
DefaultAzureCredential(supports Azure CLI, managed identity, etc.)
Changed
- CLI flag
--ssm-pathrenamed to--secret-path— The old flag is still accepted as a deprecated alias and prints a warning. It will be removed in a future release. configureInfrastructureServices()now receives a singleMapFileConfigobject instead of separate parameters- CLI reads
$configfrom the map file and merges with CLI flags - Extracted shared
ContainerConfigurationmodule for DI setup reused by CLI and GitHub Action - Updated CLI description to include Azure Key Vault examples
Dependencies
- Added
@azure/keyvault-secrets - Added
@azure/identity - Added
@azure/core-rest-pipeline
v0.7.122026-03-22
Fixed
- ssm: Upgrade AWS SDK to resolve fast-xml-parser CVEs (#128)
Changed
- ci: Upgrade
dorny/test-reporterto v3 for Node.js 24 support (#127) - dx: Add AI workflow agents, prompts, and lefthook pre-commit hook (#125)
Dependencies
- Bump
undicifrom 7.22.0 to 7.24.1 (#126)
v0.7.112026-03-08
Security
- Bump AWS SDK packages to resolve
fast-xml-parservulnerability (#124)
v0.7.102026-03-02
Changed
- ci: Update CI configuration for improved build reliability
- Bump AWS SDK SSM to 3.1000.0 and align CI/publish workflows (#123)
Dependencies
- Bump
@aws-sdk/credential-providersfrom 3.995.0 to 3.1000.0 (#122) - Bump
@types/nodefrom 25.3.0 to 25.3.3 (#121) - Bump
minimatch(#119)
v0.7.92026-02-22
Fixed
- security: Patch transitive dependency vulnerabilities (#118)
- ci: Simplify npm publish command in workflow
v0.7.82026-02-05
Fixed
- deps: Upgrade AWS SDK to resolve
fast-xml-parserDoS vulnerability (#116)
Dependencies
- Bump
@isaacs/brace-expansion(#115) - Bump
@secretlint/secretlint-rule-preset-recommend(#114) - Bump
commanderfrom 14.0.2 to 14.0.3 (#113) - Bump
@aws-sdk/client-ssmfrom 3.958.0 to 3.980.0 (#112) - Bump
secretlintfrom 11.2.5 to 11.3.1 (#110) - Bump
@commitlint/clifrom 20.3.0 to 20.4.0 (#111)
v0.7.72026-01-27
Added
- push: AWS throttling retry logic and duplicate SSM path validation (#109)
Fixed
- ci: Streamline
npm publishworkflow to prevent failures (#106)
Dependencies
v0.7.62026-01-16
Fixed
- ci: Align npm publish script with CI workflow expectations to prevent failures
- Removed redundant validation steps (lint, build, test) from publish script
Changed
- Simplified npm publish script from full validation pipeline to
npm pack --dry-run && npm publish - Updated README badge links
- Converted README badges from HTML to standard Markdown format
Removed
- ci: Deleted deprecated
publish-action.ymlworkflow
v0.7.52026-01-15
Documentation
- Remove changelog generation instructions from documentation (#104)
Dependencies
- Bump undici to address security vulnerability (#105)
v0.7.42026-01-02
Dependencies
- Bump @commitlint/cli from 20.1.0 to 20.2.0 (#103)
- Bump testcontainers from 11.9.0 to 11.11.0 (#102)
- Bump @types/node from 24.10.1 to 25.0.3 (#101)
- Bump @testcontainers/localstack from 11.9.0 to 11.11.0 (#100)
- Bump @commitlint/config-conventional (#99)
v0.7.32025-11-29
Changed
- ci: Update Node.js version to 24 in workflow
- Update publish command to use pnpm
- Add repository field to package.json
- Standardize quotes in publish-npm.yml
Dependencies
- Bump actions/checkout from 5 to 6 (#98)
- Bump glob from 11.1.0 to 13.0.0 (#97)
- Bump pnpm/action-setup from 2 to 4 (#92)
- Bump @commitlint/cli from 19.8.1 to 20.1.0 (#94)
- Bump glob in the npm_and_yarn group (#96)
v0.7.12025-11-16
Documentation
- Update README and ROADMAP for GitHub Action integration (#95)
Changed
- ci: Update workflow to use pnpm for dependency management
Tests
- Increase timeout for E2E tests to 60 seconds
v0.7.02025-11-16
Added
- packaging: Add project build and uninstall functionality
Fixed
- cli: Correct build command from
ppnpmtopnpm
Changed
- Move GitHub Action to
github-action/subfolder
Breaking Changes
- Action path changed from
macalbert/envilder@v1tomacalbert/envilder/github-action@v1
v0.6.62025-11-02
Changed
- Updated AWS credentials configuration in workflows
- Bumped vite, @types/node, @biomejs/biome, GitHub/codeql-action, actions/setup-node, vitest
v0.6.52025-10-15
Added
- Enabled npm trusted publishing with OIDC authentication
Dependencies
- Bumped tmp, @types/node, @testcontainers/localstack, testcontainers, @aws-sdk/credential-providers
- Bumped secretlint, @biomejs/biome, @secretlint/secretlint-rule-preset-recommend
- Bumped vite, commander, inversify
- Updated actions/checkout, actions/setup-node, actions/upload-pages-artifact, aws-actions/configure-aws-credentials
v0.6.42025-08-02
Dependencies
- Bumped typescript from 5.8.3 to 5.9.2
- Bumped secretlint, @types/glob, @secretlint/secretlint-rule-preset-recommend, @biomejs/biome
v0.6.32025-07-20
Changed
- Bump version to 0.6.3 in package.json
v0.6.22025-07-20
Changed
- di: Implement .NET-Style DIP Startup Pattern for dependency injection (#59)
v0.6.12025-07-13
Added
- Push Mode functionality to upload environment variables to AWS SSM Parameter Store
- File-based approach for pushing multiple variables from
.envfiles - Single-variable approach for direct command line uploads
- Support for working with different AWS profiles when pushing secrets
Security
- Implemented secure parameter handling to protect sensitive values
Changed
- Designed clean, modular command structure for Push Mode operations
- Added new domain models and handlers to support Push feature
- Maintained separation of concerns between infrastructure and application layers
v0.6.02025-07-13
Added
- push: Introduced Push Mode — sync local
.envvariables to AWS SSM Parameter Store (#57)
v0.5.62025-07-06
Added
- Introduced new logger interface for seamless integration of custom logging implementations
Changed
- Updated several packages for improved security and performance
v0.5.52025-06-29
Changed
- Moved
EnvilderBuilderfromdomaintoapplication/buildersdirectory - Updated import paths across codebase for better organization
Fixed
- Fixed glob pattern and path handling in test cleanup functions
- Corrected file path resolution in end-to-end tests
v0.5.42025-06-10
Added
- Added unit tests for error handling with missing CLI arguments
- Enhanced unit test reporting with JUnit format for better CI integration
Changed
- Refactored
EnvFileManagerand related interfaces to use async/await - Improved error handling and modularized secret processing
- Extracted
PackageJsonFinderclass - Updated dependencies for better reliability
v0.5.32025-06-07
Added
- Modular CLI for environment variable synchronization with pluggable secret providers
- Builder pattern for flexible CLI configuration and usage
- Extensive unit, integration, and end-to-end tests
- AWS integration testing using LocalStack with TestContainers
Changed
- BREAKING: Full TypeScript migration from JavaScript
- Introduced modular, layered architecture with clear separation
- Migrated CI/CD workflows from Yarn to npm
v0.5.22025-05-18
Added
- Comprehensive E2E validation test in CI/CD pipeline
- Ensures package integrity and command-line operability before release
v0.5.12025-05-16
Fixed
- CLI command not recognized after global install (
npm install -g envilder) - Fixed missing compiled
lib/files in published package