Environment Variable Provider
The Environment Variable provider reads secrets directly from process environment variables. This is a read-only provider designed for CI/CD compatibility and containerized environments.
Configuration
Section titled “Configuration”The env provider accepts no configuration options:
# All these are equivalent$ secretspec check --provider env$ secretspec check --provider env:$ secretspec check --provider env://When to Use
Section titled “When to Use”- Running in CI/CD pipelines where secrets are injected as environment variables
- Testing with temporary environment variables
- Working with containerized applications that use environment variables
Example
Section titled “Example”# Set environment variablesexport DATABASE_URL="postgresql://localhost/mydb"export API_KEY="sk-1234567890"
# Check secrets are available$ secretspec check --provider env✓ All required secrets are configured
# Run with environment variables$ secretspec run --provider env -- npm startCI/CD Integration
Section titled “CI/CD Integration”# GitHub Actions- name: Run with secrets env: DATABASE_URL: ${{ secrets.DATABASE_URL }} API_KEY: ${{ secrets.API_KEY }} run: | secretspec run --provider env -- npm run deploy