Privacy Null

Redact .env Files

Automatically detect and mask sensitive environment variables before sending to AI.

Runs locally. Nothing uploaded.

# Database
DATABASE_URL=postgres://user:password123@localhost:5432/mydb
REDIS_URL=redis://:secretpassword@redis.example.com:6379

# API Keys
OPENAI_API_KEY=sk-proj-xxxxxxxxxxxx
STRIPE_SECRET_KEY=sk_live_xxxxxxxxxxxx

# Secrets
JWT_SECRET=my-super-secret-key-do-not-share
SESSION_SECRET=another-secret-value
PASSWORD=admin123

Features

Parses KEY=VALUE format

Detects sensitive key names (SECRET, PASSWORD, KEY, TOKEN)

Detects database connection strings

Works with quoted and unquoted values

Frequently Asked Questions

How do you determine which values are sensitive?

We look for key names containing words like SECRET, PASSWORD, KEY, TOKEN, API, AUTH, and similar. We also detect database URL patterns.

What about .env.local or .env.production?

The tool works with any text content. Simply paste your environment file content regardless of the filename.

Redact .env Files

Features

Frequently Asked Questions

How do you determine which values are sensitive?

What about .env.local or .env.production?

Related Tools