V1.2.0 Released: Smart Sync & Merge

SYNC YOUR .ENV FILES
SECURELY ACROSS STACKS.

The zero-config CLI for secure environment management. Client-side encryption by default. No more sharing secrets over Slack.

bash — install

$ curl -sL https://syncenv-files.uagents.app/cli/install.sh | bash

AES-256Encryption

< 100MSSync Speed

100%Client-Side

99.9%Uptime

Core Capabilities

End-to-End Encryption

Secrets are encrypted on your machine using your own private keys. We never see your raw data, and we don't want to.

Multi Environments

Manage environment variables across dev, staging, and production. Each environment is isolated with its own encryption.

CLI-First Workflow

Powerful command-line interface for push, pull, sync, and merge. Designed for developers who live in the terminal.

Zero-Knowledge Storage

Your encryption keys never leave your device. We only store ciphertext — even we cannot decrypt your secrets.

THE WORKFLOW

Get started in three simple commands. No complex configuration required.

SETUP: One-Command Onboarding

# Login + encryption keys in one step
syncenv setup

Run the setup wizard to authenticate and generate encryption keys automatically. No separate steps needed.

INIT: Configure Your Project

# Interactive project configuration
syncenv init

Creates .syncenvrc with environment mappings. Optionally create remote project. Environments are created on first push.

PUSH: Encrypt & Upload

# Securely sync your .env file
syncenv env push -m "Initial setup"

Your files are encrypted locally with AES-256-GCM before they leave your system.

Zero-Knowledge Architecture

Your secrets are encrypted before they leave your device. We never see your plaintext data — ever.

Your Device

Client-Side Encryption

AES-256-GCM encryption happens locally on your machine

Private Keys

Your master key never leaves your device

TLS + E2E Encryption

ENCRYPTED

Ciphertext

→

TLS 1.3

Transport

Cloud Storage

Encrypted Vault

We only store ciphertext — no keys to decrypt

Zero Knowledge

Even if breached, data remains unreadable

AES-256-GCM

Data Encryption

PBKDF2

Key Derivation

Hierarchical Keys

L0 → L1 → L2

Zero-Knowledge

Server Cannot Decrypt

Built for
Paranoid Developers

Security isn't a feature; it's our core architecture. We use a zero-knowledge architecture where encryption happens on your device. Even if our databases were compromised, your secrets remain unreadable without your master key.

Client-Side Encryption
Local Key Management
Zero-Knowledge Storage

-- INCOMING DATA STREAM --

DEBUG: Reading .env local...

DATABASE_URL="postgresql://user:password@localhost:5432/db"

ENCRYPTING [AES-256-GCM]...

uY29tL3Byb2plY3Qvc2VjcmV0cy8xMjM0NV9mZGcyMzQ1X2FzZGZfOTg3Nl9wvaGVsc2U_bm90X2FjdHVhbF9kYXRhX2J1dF9hX3ZlcnlfbG9uZ19zdHJpbmdfb2ZfYmFzZTY0X2NvZGVfdGhhdF9sb29rc19saWtlX2VuY3J5cHRlZF9kYXRhX2hlcmU=

PUSH SUCCESSFUL -> ENCRYPTED STORAGE

Simple Pricing

Choose the plan that fits your needs. All plans include our core security features.

Lite

$1/month

Perfect for novice individual developers

128 Projects
5 environments per project
1MB per environment file
5 version history per environment file
End-to-end encryption

Pro

$5/month

For professional developers

1024 Projects
10 environments per project
5MB per environment file
10 version history per environment file
End-to-end encryption
Priority email support

All plans include 14-day free trial. No credit card required to start.

READY TO STOP SHARING SECRETS IN PLAIN TEXT?

Read the Documentation

NO CREDIT CARD REQUIRED • 14-DAY FREE TRIAL

SYNC YOUR .ENV FILESSECURELY ACROSS STACKS.