Tene is a local-first, encrypted secret management CLI. It stores your API keys, tokens, and credentials in an encrypted SQLite vault on your device. No server, no signup, no cloud dependency.

How does Claude Code auto-detection work?

When you run tene init, it generates a CLAUDE.md file in your project root. Claude Code reads this file automatically and learns how to use tene to retrieve secrets.

Yes, Tene is 100% free and open source under the MIT license. All local features — encryption, runtime injection, multi-environment, AI editor rules — are free forever with no limits.

Will there be team features?

Team sync and collaboration features are being designed. The goal is encrypted team sync without a central server. Join the waitlist at tene.sh to get notified when it launches.

How are my secrets encrypted?

Tene uses XChaCha20-Poly1305 encryption with 256-bit keys derived from your master password via Argon2id. Each secret gets a unique 192-bit nonce.

Does Tene work offline?

Tene is 100% offline. It makes zero network calls. Your secrets are encrypted and stored locally in a SQLite database.

How is this different from splitting .env into .env.dev, .env.staging, and .env.production?

A single encrypted vault file replaces N plaintext files. AI agents read every .env.* in the project root by default, so the file split does not buy you isolation — it just multiplies the attack surface. tene gives you one mental model and one ciphertext blob; environments are namespaces inside it, not separate files.

Can a teammate access my staging secrets without a cloud subscription?

The free CLI is strictly local — no team sync. The optional Pro tier adds client-side-encrypted sync; the server only sees ciphertext, and each teammate decrypts with their own master password. For a solo developer, the free tier is enough.

What if I have six or more environments — preview, qa, demo, etc.?

It works the same, but six environments is usually a sign you should consolidate. Per-feature-branch envs become noise quickly. dev / staging / prod covers most projects; add review-app envs only when an actual stakeholder reviews them.

Multi-environment secrets without a cloud account

Why multi-environment is where solo devs hit the wall

Your first dev environment fits in a single .env file. Your second one — staging or production — is where the cracks show up: secret prefixes drift, a .env.production gets accidentally committed, and your AI agent quietly reads every .env.* file in the project root regardless of which environment you meant to run.

Cloud secret managers solve this with dashboards and per-seat pricing. That math does not work for a solo developer with five hobby projects, and it adds a network dependency to local development. The middle ground — managing dev, staging, and prod secrets locally without spawning a dotenv graveyard — is what most write-ups skip.

Same DATABASE_URL key holding different values across dev and prod environments inside a single tene vault, switched with the --env flag. — One vault, three environments, switched with a single flag.

What breaks when you split .env.dev / .env.staging / .env.prod

The naive approach is one file per environment. It looks tidy until you actually run the project for a few weeks:

Drift between files. A new key gets added to .env.dev, but .env.staging is forgotten. The next deploy fails for a reason that has nothing to do with code.
Accidental commits. .gitignore covers .env, but you forgot the wildcard. .env.production lands in a public repo. Now you are rotating secrets at 1 a.m.
No isolation from AI agents. Claude Code, Cursor, and Windsurf read .env, .env.local, .env.production, and friends as part of project context. The plaintext threat model is the same whether you have one file or four.
Different injection paths. next dev auto-loads .env.local. next start does not. Your CI uses a separate dotenv loader. Three slightly different runtimes, three places to misconfigure.

One vault, many environments

tene collapses the file split into a single encrypted vault with named environments inside it. There is one .tene/ directory, one master password, and one place to look when a key is missing.

# One-time install + init
curl -sSfL https://tene.sh/install.sh | sh
tene init

# Create named environments alongside the default
tene env create staging
tene env create prod

# Inspect what exists
tene env list

tene env list shows every environment plus an arrow next to the active one. The active env is a per-machine pointer — you can switch with tene env staging, or override per-command with --env.

The day-to-day workflow

The most common operation is the same key with different values across environments. With separate .env.* files this means editing two or three files and hoping you got the spelling right. With tene it is one command per pair.

# Same key, three different values — one command each
tene set DATABASE_URL postgres://localhost/dev_db
tene set DATABASE_URL postgres://staging.db/app --env staging
tene set DATABASE_URL postgres://prod.db/main   --env prod

tene set STRIPE_SECRET sk_test_dev_xxx
tene set STRIPE_SECRET sk_live_prod_xxx --env prod

Running the app picks up whichever environment is currently active:

# Use active env (default or whatever you switched to)
tene run -- npm start

# Override per invocation — useful for one-off prod smoke tests
tene run --env prod -- npm run smoke-test

The application code does not change. process.env.DATABASE_URL reads whatever value was injected for the chosen environment. There is no second loader, no environment-specific build flag, and no risk of leaking the prod key into a dev shell.

Three patterns that actually work

Most solo and small-team setups land in one of three operating modes. Pick the one that matches how the project is actually deployed today, not the architecture you wish you had.

Pattern A — local only. Two environments: default and prod. You develop with default, run prod smoke tests with --env prod, and deploy through a host (Vercel, Fly, Railway) that owns its own copy of prod secrets. The vault is your source of truth for laptop work; the host is the source of truth at runtime.

Pattern B — branch-based. Three environments: default, staging, prod. default mirrors production schemas with safe seed data, staging points at a real shared database, prod is read-only on the laptop. The vault is the single sync point — when you rotate a key, you rotate it in tene and push to the host once.

Pattern C — CI inject. Same vault, plus a one-shot export when CI needs the values. The vault never leaves the laptop, but a short script writes the values into the CI provider's secret store on rotation:

# Rotate prod key once, push the new value to GitHub Actions
tene set STRIPE_SECRET sk_live_new_xxx --env prod
gh secret set STRIPE_SECRET --body "$(tene get STRIPE_SECRET --env prod --raw)"

The rotation lives in shell history, not in a SaaS dashboard, and there is no monthly subscription per project.

Common mistakes (and how `tene whoami` saves you)

The traps below are the ones that show up in week three, not week one:

Running prod by accident. You meant to test against dev but the active env is still prod from this morning. Run tene whoami before any destructive command — it prints the active environment in one line.
Same value across all envs. If OPENAI_API_KEY is identical in dev and prod, put it in default only. Environments are for values that actually differ; over-segmenting just creates more rotation work.
Forgetting --env on writes. tene set X y writes to the active env. If you wanted prod, you needed --env prod. The vault tells you what is set with tene list --env prod — verify after every batch of writes.

Summary

One encrypted vault replaces N plaintext .env.* files; environments are namespaces inside it, not separate files.
The same application code runs against any environment via tene run --env <name> -- <command>.
Three operating patterns cover most projects: local-only, branch-based, and CI inject. Pick by deployment shape, not by team size.
tene whoami and tene list --env <name> are the two commands that prevent the multi-env mistakes that show up in week three.