Shenvy Logo

Blog

Updates, announcements, and engineering notes from the Shenvy team.

Launch

Introducing Shenvy — Zero-Knowledge Secrets Management for Engineering Teams

March 14, 2026 · The Shenvy Team

Today we are publicly launching Shenvy — a CLI-first secrets management tool built for engineering teams that care about security and developer experience.

The problem we solve

Most teams manage environment variables the same way they did ten years ago: .env files shared over Slack, email, or a shared Notes document. This creates real security risks, onboarding friction, and broken builds when secrets go out of sync across machines and environments.

We built Shenvy to replace that workflow with something that is actually secure and actually fast to use.

How it works

Shenvy encrypts your secrets on your local machine before they ever leave your device — using Age (X25519 key exchange) with ChaCha20-Poly1305 authenticated encryption. We never see your plain-text values. Encrypted payloads are stored in Firebase and synced to every authorized team member with a single command.

shenvy push # encrypt and upload

shenvy pull # download and decrypt

shenvy run -- npm start # inject secrets into any process

What is available today

  • CLI for macOS and Linux (Go, open source)
  • Web dashboard at shenvy.app
  • Zero-knowledge E2EE with Age + ChaCha20-Poly1305
  • Role-based access control — MEMBER, ADMIN, READER roles per team
  • Full audit timeline — every push, pull, and role change is logged
  • Free tier for individual developers
  • Starter (€9/month) and Team (€30/month) plans for teams

Get started

Install the CLI, authenticate, and push your first .env file in under two minutes. Visit the documentation for a quick-start guide, or sign up free at shenvy.app.

Questions or feedback? Reach us at hi@shenvy.app.