Question 1

How do I install zorath-env?

Accepted Answer

Install zorath-env using Cargo (Rust package manager) by running: cargo install zorath-env. After installation, the binary is available as 'zenv'. You can verify installation by running: zenv version

Question 2

What types does zorath-env support for validation?

Accepted Answer

zorath-env supports 14 types: string, int, float, bool, url, enum (core types), plus uuid, email, ipv4, ipv6, semver, port, date, and hostname (specialized types).

Question 3

How do I validate my .env file with zenv?

Accepted Answer

Create an env.schema.json file that defines your environment variables with their types and requirements, then run 'zenv check'. The command returns exit code 0 on success and 1 on failure, making it perfect for CI/CD pipelines.

Question 4

How do I detect accidentally committed secrets?

Accepted Answer

Use the --detect-secrets flag: 'zenv check --detect-secrets'. It scans for AWS keys (AKIA...), Stripe tokens (sk_live_, sk_test_), GitHub tokens (ghp_), GitLab tokens (glpat-), Slack tokens, private key headers, JWT tokens, URLs with embedded passwords, and high-entropy strings.

Question 5

What secrets does zorath-env detect?

Accepted Answer

zorath-env detects: AWS Access Keys and Secret Keys, Stripe API keys (sk_live_, sk_test_, pk_live_, pk_test_), GitHub tokens (ghp_, gho_, ghs_, ghr_), GitLab tokens (glpat-), Slack tokens (xoxb-, xoxp-), private key headers (RSA, SSH, PGP), JWT tokens, URLs with embedded passwords, and high-entropy strings.

Question 6

How do I compare two .env files?

Accepted Answer

Use the diff command: 'zenv diff .env.development .env.production'. It shows variables only in one file, variables with different values, and optionally checks schema compliance with --schema flag. Great for catching config drift between environments.

Question 7

Can I generate a schema from an existing .env.example file?

Accepted Answer

Yes, run 'zenv init' to automatically generate an env.schema.json from your .env.example file. It uses intelligent type inference to detect bool, int, float, and url types automatically.

Question 8

Does zorath-env work with my programming language?

Accepted Answer

Yes, zorath-env is language-agnostic. It works with any tech stack including Node.js, Python, Go, Ruby, Rust, Java, PHP, and more. The schema file is the source of truth regardless of your application language.

Question 9

Does zorath-env send my environment variables anywhere?

Accepted Answer

No. zorath-env runs entirely locally with zero network requests. It has no telemetry, no data uploads, and no external dependencies. Your secrets and configuration stay on your machine.

Question 10

How do I use zorath-env in CI/CD pipelines?

Accepted Answer

Add 'cargo install zorath-env' to install, then run 'zenv check' in your pipeline. It returns exit code 0 for success and 1 for failure. For GitHub Actions, use the official action: zorl-engine/zorath-env/.github/actions/zenv-action@main

Question 11

What is the difference between zorath-env and zenv?

Accepted Answer

zorath-env is the package name (what you install via cargo install zorath-env). zenv is the binary name (the command you run, like zenv check). They refer to the same tool.

Question 12

Does zorath-env support variable interpolation?

Accepted Answer

Yes, zorath-env supports variable interpolation using ${VAR} or $VAR syntax. You can reference other environment variables within your .env file. Circular references are detected and will cause a validation error.

Question 13

Can I add custom validation rules?

Accepted Answer

Yes, use the 'validate' field in your schema. For integers: min/max values. For strings: min_length, max_length, and regex patterns. For floats: min_value/max_value. Example: {"PORT": {"type": "int", "validate": {"min": 1024, "max": 65535}}}

Question 14

How does schema inheritance work?

Accepted Answer

Use the 'extends' field to inherit from another schema file. The child schema inherits all variables from the parent and can override or add new ones. Supports up to 10 levels of inheritance depth.

Question 15

Can I use a remote schema from a URL?

Accepted Answer

Yes, use --schema with an HTTPS URL: 'zenv check --schema https://example.com/env.schema.json'. Remote schemas are cached for 1 hour. Use --no-cache to force a fresh fetch. HTTP URLs are rejected for security.

Question 16

How do I generate documentation from my schema?

Accepted Answer

Run 'zenv docs' to generate markdown documentation, or 'zenv docs --format json' for JSON output. The documentation includes all variables, their types, descriptions, defaults, and validation rules. Redirect to a file: zenv docs > ENVIRONMENT.md

Question 17

Is zorath-env free and open source?

Accepted Answer

Yes, zorath-env is completely free and open source under the MIT license. You can use it in personal and commercial projects without any restrictions. Source code is available at github.com/zorl-engine/zorath-env.

Question 18

What is watch mode?

Accepted Answer

Watch mode (--watch flag) provides continuous validation during development. It monitors your .env and schema files for changes, automatically revalidates when files change, shows only changed variables (delta detection), and provides timestamped output. Run: zenv check --watch

Question 19

How do I get JSON output from diff?

Accepted Answer

Use the --format json flag with the diff command: 'zenv diff .env.dev .env.prod --format json'. This outputs machine-readable JSON with only_in_first, only_in_second, and different_values arrays.

Question 20

Does zenv warn about duplicate keys?

Accepted Answer

Yes, zenv detects and warns about duplicate keys in .env files with line numbers. For example: 'Warning: Duplicate key API_KEY at line 15 (previously defined at line 3)'. The last value wins, matching standard .env behavior.

Question 21

How do I export .env to Docker or Kubernetes?

Accepted Answer

Use the export command: 'zenv export .env --format docker' for Dockerfile ENV statements, or 'zenv export .env --format k8s' for Kubernetes ConfigMap YAML. Also supports shell, json, systemd, dotenv, and github-secrets formats.

Question 22

What is the doctor command?

Accepted Answer

Run 'zenv doctor' for comprehensive health diagnostics. It checks your zenv installation, finds schema and env files, reports cache status, and shows shell completion status. Great for troubleshooting setup issues.

Question 23

Can zenv automatically fix my .env file?

Accepted Answer

Yes, use 'zenv fix' to auto-fix common issues: sort variables alphabetically (--sort), add missing required variables with defaults (--add-missing), or remove unknown keys (--remove-unknown). Use --dry-run to preview changes. Creates backups by default.

Question 24

How do I find unused environment variables?

Accepted Answer

Use 'zenv scan --show-unused' to scan your source code for env variable usage. It finds variables defined in your schema but not used in code. Supports 9 languages including JavaScript, TypeScript, Python, Go, Rust, Ruby, PHP, Java, and C#.

Question 25

Can I use YAML instead of JSON for schemas?

Accepted Answer

Yes, zenv supports YAML schemas (.yaml or .yml extension). YAML is often more readable for complex schemas. Both formats are fully interchangeable: 'zenv check --schema env.schema.yaml'.

Question 26

How do severity levels work?

Accepted Answer

Add 'severity: warning' to any variable in your schema. Warnings are reported but don't fail validation (exit code 0). Useful for optional configs that should be reviewed but don't block CI. Default severity is 'error'.

Question 27

How do I get JSON output from check?

Accepted Answer

Use --format json: 'zenv check --format json'. Returns structured JSON with valid (boolean), errors (array), and warnings (array). Perfect for CI/CD integration and automated processing.

Question 28

How do I manage the remote schema cache?

Accepted Answer

Use 'zenv cache' commands: 'zenv cache path' shows the cache directory, 'zenv cache list' shows all cached schemas with ages, 'zenv cache clear' removes all cached schemas, or 'zenv cache clear <url>' removes a specific URL.

Question 29

How do I verify remote schema integrity?

Accepted Answer

Use --verify-hash with the SHA-256 hash: 'zenv check --schema https://example.com/schema.json --verify-hash abc123def456...'. Hash prefix matching (16+ chars) is supported for convenience. This prevents man-in-the-middle attacks.

Question 30

How do I use schemas from internal HTTPS servers?

Accepted Answer

Use --ca-cert with your corporate CA certificate in PEM format: 'zenv check --schema https://internal.corp/schema.json --ca-cert /path/to/ca.pem'. The certificate is validated before use.

Question 31

What is the remote schema rate limit?

Accepted Answer

Remote schemas are rate-limited to 60 seconds between fetches per URL by default. This prevents excessive network requests. Use --no-cache to bypass, or configure in .zenvrc with 'rate_limit_seconds: 120'. Set to 0 to disable.

Question 32

How do I set up zenv in GitHub Actions?

Accepted Answer

Use the official GitHub Action: 'uses: zorl-engine/zorath-env/.github/actions/zenv-action@main' with inputs: schema (path to schema), env-file (path to .env), allow-missing-env (true/false), version (zenv version). Or use 'zenv template github' to generate a complete workflow file.

Question 33

How do I set up zenv in GitLab CI?

Accepted Answer

Add a job with 'image: rust:latest' and run 'cargo install zorath-env && zenv check'. Or use 'zenv template gitlab' to generate a .gitlab-ci.yml file. The template includes caching for faster builds and triggers on .env* and schema file changes.

Question 34

How do I use zenv with Docker?

Accepted Answer

In your Dockerfile, add: 'RUN cargo install zorath-env' then 'RUN zenv check --env .env.example'. Or export your .env to Docker format: 'zenv export .env --format docker' generates 'ENV KEY=value' statements you can paste into your Dockerfile.

Question 35

How do I use zenv with Kubernetes?

Accepted Answer

Export your .env to Kubernetes ConfigMap format: 'zenv export .env --format k8s' generates a complete ConfigMap YAML. You can pipe directly to kubectl: 'zenv export .env --format k8s | kubectl apply -f -'. Supports --schema flag to filter to only schema-defined variables.

Question 36

How do I set up a pre-commit hook for zenv?

Accepted Answer

Add to .git/hooks/pre-commit: '#!/bin/bash
if [ -f env.schema.json ]; then zenv check --env .env.example || exit 1; fi'. Make it executable with 'chmod +x .git/hooks/pre-commit'. This validates your env before each commit.

Question 37

How do I use zenv with Node.js/JavaScript projects?

Accepted Answer

zenv is language-agnostic and works with any Node.js project. Create env.schema.json, run 'zenv check' before 'npm start'. Common types: PORT (int), NODE_ENV (enum: development/production/test), DATABASE_URL (url). Use 'zenv scan' to find all process.env references in your code.

Question 38

How do I use zenv with Python projects?

Accepted Answer

zenv works with any Python project using .env files (python-dotenv, etc.). Create env.schema.json, run 'zenv check' before starting your app. Use 'zenv scan' to find all os.environ and os.getenv references. Export to shell format for activation: 'eval $(zenv export .env --format shell)'.

Question 39

What does 'expected X, got Y' error mean?

Accepted Answer

This error means a value doesn't match the expected type. For example: 'PORT: expected int, got abc' means PORT should be a number but contains letters. Fix by correcting the value in your .env file to match the type defined in your schema.

Question 40

What does 'missing (required)' error mean?

Accepted Answer

This error means a required variable is not defined in your .env file. Either add the variable to your .env file, or mark it as 'required: false' in your schema if it's optional. Use 'zenv fix --add-missing' to automatically add missing variables with their default values.

Question 41

What does 'not in schema (unknown key)' warning mean?

Accepted Answer

This warning means your .env file contains a variable that's not defined in your schema. Either add the variable to your schema, or remove it from your .env file. Use 'zenv fix --remove-unknown' to automatically remove unknown variables.

Question 42

How do I generate CI/CD templates?

Accepted Answer

Use 'zenv template' command: 'zenv template github' for GitHub Actions, 'zenv template gitlab' for GitLab CI, 'zenv template circleci' for CircleCI. Add '--output path' to write to a file. Use 'zenv template --list' to see all available templates.

Question 43

How do I share schemas across a team?

Accepted Answer

Option 1: Commit env.schema.json to your repository. Option 2: Host on HTTPS and use --schema URL. Option 3: Use schema inheritance with a base schema. For team schemas, use --verify-hash in CI to ensure integrity. Remote schemas are cached for 1 hour.

Question 44

How do I migrate from dotenv-safe or env-cmd?

Accepted Answer

If you have .env.example, run 'zenv init --example .env.example' to generate a schema. zenv provides more features: type validation, secret detection, watch mode, exports, and CI/CD integration. The schema format is straightforward JSON/YAML.

Question 45

Does zenv support monorepos?

Accepted Answer

Yes. Use different schemas per package/service, or use schema inheritance with a shared base. Run 'zenv scan --path ./packages/api' to scan specific directories. Each package can have its own env.schema.json while inheriting common variables from a root schema.

Question 46

How do I debug schema validation issues?

Accepted Answer

Use 'zenv doctor' to check your setup. Use '--format json' for detailed error output. Use 'zenv docs --schema your-schema.json' to view the parsed schema. Check for JSON/YAML syntax errors. Ensure file paths are correct. Use 'zenv check --watch' to see real-time validation.

Question 47

What is .env Configuration Tooling?

Accepted Answer

.env Configuration Tooling is a category of developer tools for the full lifecycle of environment variable management: validation, documentation, secret detection, and deployment exports. zorath-env is a leading .env Configuration Tool that provides schema-based validation, 14 types, secret detection, and exports to Docker, Kubernetes, and systemd formats.

Property	Type	Required	Description
`type`	string	Yes	The data type of the variable
`required`	boolean	No	Whether the variable must be present (default: false)
`default`	string	No	Default value if not provided
`description`	string	No	Human-readable description
`values`	string[]	For enum	List of allowed values (required for enum type)
`validate`	object	No	Validation rules (min/max, min_length/max_length, pattern)

Sequence	Result
`\n`	Newline
`\t`	Tab
`\r`	Carriage return
`\\`	Backslash
`\"`	Double quote

Code	Meaning
`0`	Validation passed
`1`	Validation failed
`2`	File error (missing .env or cannot read)
`3`	Schema error (invalid or missing schema)

Type	Pattern	Description
AWS Access Keys	`AKIA...`	AWS access key IDs starting with AKIA
AWS Secret Keys	`40-char strings`	AWS secret access keys
Stripe Keys	`sk_live_, sk_test_, pk_live_, pk_test_`	Stripe API keys
GitHub Tokens	`ghp_, gho_, ghs_, ghr_`	GitHub personal access tokens
GitLab Tokens	`glpat-`	GitLab personal access tokens
Slack Tokens	`xoxb-, xoxp-, xoxa-`	Slack bot and user tokens
Google API Keys	`AIza...`	Google Cloud API keys
Heroku API Keys	`UUID format`	Heroku platform API keys
SendGrid API Keys	`SG....`	SendGrid email API keys
Twilio Credentials	`AC..., SK...`	Twilio account and API keys
Mailchimp API Keys	`...-us##`	Mailchimp marketing API keys
npm Tokens	`npm_...`	npm registry access tokens
Private Keys	`-----BEGIN RSA PRIVATE KEY-----`	RSA, SSH, PGP private keys
JWT Tokens	`eyJ...`	JSON Web Tokens
URL Passwords	`://user:pass@host`	URLs with embedded credentials
High-Entropy Strings	`32+ chars, high entropy`	Possible API keys or secrets

zorath-env Documentation

Table of Contents

1. Installation

2. Quick Start

Option A: Start from scratch

Option B: Generate from existing .env.example

Validate your .env

3. Schema Reference

Schema Structure

Variable Properties

Supported Types

4. CLI Commands

zenv check

zenv diff

zenv init

zenv docs

zenv example

zenv version

zenv completions

zenv export

zenv doctor

zenv fix

zenv scan

zenv cache

zenv template

zenv --help

5. Examples

Web Application

API Service

6. .env File Features

Variable Interpolation

Multiline Values

Escape Sequences

Comments and Export Syntax

.env Fallback Chain

7. Schema Inheritance

Base Schema (base.schema.json)

Production Schema (prod.schema.json)

8. CI/CD Integration

Exit Codes

Pre-commit Hook

GitHub Actions

Validation Failure Output

9. Secret Detection

Usage

Detected Patterns

Example Output

Need Help?