Desktop app for macOS
Browse, edit, diff, and version your environment files across every project. Secrets never leave your machine.
macOS 12+ · Apple Silicon & Intel
Features
Built for developers who juggle multiple projects, environments, and secrets daily.
Edit variables in a structured view with sections, comments, and inline annotations. No more hunting through raw text files.
Auto-detects 111+ frameworks and packages across npm, Composer, pip, and gems. Annotates variables with descriptions and required flags.
Compare any two environment files side-by-side. See what changed, what's missing, and sync keys between files.
Every save creates an encrypted snapshot. Browse, compare, and restore any previous version of your env files.
Status badges, inline blame, diff view, stage and commit actions. See which env files are tracked, modified, or ignored.
Auto-prompts to sync new keys to .env.example on save. Choose keys-only or keys+values, with per-key control.
Open Laravel .env.encrypted files natively — no PHP needed. Decrypt, edit, and re-encrypt with AES-256-CBC. Keys stored securely in your OS keychain.
Filter variables in the editor, or press ⌘K to search across all projects and files instantly.
Built with Electron, signed and notarised by Apple. Auto-updates keep you current. Remembers your window size and position.
Create new .env files from scratch or from a framework template. Uses .env.example as a basis when available.
Detects duplicate keys, validates value types, and flags exposed secrets in git-tracked files. Catches mistakes before they cause bugs.
See every variable across all your .env files in one matrix. Instantly spot differences, missing keys, and inconsistencies.
Lock the app with Touch ID or your macOS password after a configurable inactivity timeout. Protects your secrets when you step away.
Diff & sync
Compare environment files side-by-side. When you save, Dotvault checks if .env.example is out of sync and prompts you to update it.
Ecosystem
Dotvault detects frameworks and packages from your project files and annotates variables with descriptions, required flags, and links to documentation.
and 90+ more across npm, Composer, pip, and gems
Security
Dotvault is a local-first app. Nothing is sent to the cloud, no accounts required, no telemetry.
Every snapshot is encrypted at rest. Each gets a unique initialisation vector.
Your encryption key is stored in the macOS Keychain via Electron's safeStorage API.
No cloud sync, no accounts, no analytics. The app works entirely offline after install.
Dotvault for macOS is coming soon.
macOS 12+ · Apple Silicon & Intel · Signed & notarised by Apple
Get in touch
Drop us a line — we'd love to hear from you.
hello@dotvault.dev