Changelog

New features, improvements, and fixes in every release.

v1.0.128

March 30, 2026Latest

Dashboard polish sprint: onboarding flow, project settings, share link tracker, dark mode toggle, file scan telemetry, and mobile fixes.

Dashboard

  • Onboarding checklist for new users — steps through CLI install, first push, git audit, and AI protection with one-click copy snippets
  • Project Settings page — rename, update description, archive, or permanently delete a project (with confirmation gate)
  • Share Links tracker at /dashboard/share-links — lists all encrypted links with Pending / Accessed / Used / Expired status, read counts, and last access timestamps
  • Dark/light mode toggle in the sidebar footer and mobile top bar (keyboard shortcut D still works)
  • What's New banner on dashboard — dismissible, keyed per release version
  • Error boundaries around security panels — panel failures surface a clean error card instead of crashing the page
  • Mobile top bar improved — logo and theme toggle aligned, project sub-nav is horizontally scrollable

CLI

  • slickenv login now opens the dashboard in the browser immediately after authentication
  • slickenv scan silently stores results to the dashboard when the user is authenticated — no extra flags required

Backend

  • New fileScans table for storing slickenv scan results with per-project and per-user indexes
  • projects.update, projects.deleteProject, and projects.unarchive mutations with rate limiting
  • sharing.listMyLinks query returns access log metadata, expiry status, and exhaustion state for all share links

v1.0.127

March 27, 2026

Secret lifecycle security platform: scan, protect, share, and sync secrets — all from the CLI.

Secret Scanner

  • slickenv scan — 53 patterns covering AWS, Stripe, GitHub, OpenAI, Anthropic, JWT, database URLs, and more
  • Flags: --files, --git, --mcp, --ai-generated, --ci, --fix
  • Security score 0–100 with severity breakdown (critical / high / medium / info)
  • Scans files, git-tracked paths, MCP config files, and AI-generated code

Git History Protection

  • slickenv git scan — searches entire commit history for exposed secrets
  • slickenv git audit — visual timeline of secret-containing commits
  • slickenv git clean — guided BFG Repo-Cleaner wrapper: backup → clean → gc → force-push
  • slickenv git protect — installs pre-commit hook that blocks secrets before they reach git

AI Safety Layer

  • slickenv ai protect — generates .cursorignore, .claudeignore, .copilotignore, .aiexclude
  • slickenv ai status — shows which AI tools are protected and which ignore files exist
  • slickenv://KEY reference system — AI tools and logs never see real values

Encrypted Share Links

  • slickenv share --link — AES-256-GCM encrypted, one-time self-destructing share links
  • Flags: --expires (duration), --reads (max reads), --password (optional passphrase)
  • Per-link encryption key — server never holds plaintext values

Secret Reference System

  • slickenv run -- <command> — resolves slickenv://KEY references at runtime
  • Values exist only in process memory — never written to disk or logs

Env Linter

  • 11 rules run silently on every push and pull
  • 4 errors (block push): uppercase enforcement, duplicate keys, unquoted spaces, invalid format
  • 5 warnings: empty values, long values, missing example, suspicious value patterns
  • 2 info: key naming conventions, annotation suggestions

Smart Init

  • Auto-scans source code (process.env.X references) and pre-populates .env with detected keys
  • Interactive security wizard: choose Scan, Git Safety, AI Safety, or All of the Above

Backend

  • New Convex tables: shareLinks, gitScans, auditLog, secretMetadata
  • Share link access control with expiry, read limit, and password protection
  • Audit log entries created on push, pull, share, and rollback events

v1.0.125

March 16, 2026

Public GitHub repository, beta pricing, automated publishing, and community files.

Open Source

  • Public GitHub repository at github.com/SlickSpender/slickenv
  • MIT license under SlickSpender
  • Community files: Contributing guide, Code of Conduct, Security Policy, Changelog
  • Issue templates (bug report, feature request) and PR template
  • GitHub Sponsors funding link

CI/CD

  • Automated npm publishing with provenance on version bump
  • Automatic GitHub Releases with generated notes
  • Monorepo-to-public-repo sync workflow via git subtree

CLI

  • Comment preservation in .env files during push
  • Colorful README badges with distinct colors per badge
  • Standalone TypeScript configuration for independent builds

Website

  • Beta pricing mode. All features free, paid plans show “Contact Us”
  • Updated FAQs for beta context
  • Dashboard upgrade banners redirect to contact instead of payment

Backend

  • Hardened all Convex functions with rate limiting, input validation, and plan enforcement
  • Version pruning for free plan users
  • Archived project guards across all mutations

v1.0.124

March 14, 2026

SEO, branding, and developer experience improvements across the website and CLI.

Website

  • Dynamic OpenGraph images for all major pages (features, pricing, docs, security)
  • PNG logo assets at multiple sizes (64, 192, 512px)
  • Styled XML sitemap with XSL stylesheet for a polished browser view
  • RSS feed at /feed.xml
  • llms.txt for AI crawlers with full project description
  • JSON-LD structured data (Organization, WebSite, SoftwareApplication, FAQPage, BreadcrumbList)
  • Added npm package link to footer and hero section
  • Keywords and meta improvements across all public pages
  • Enhanced robots.txt with rules for GPTBot, Claude-Web, Amazonbot

CLI

  • E2E test suite for init, login, push, and pull commands

v1.0.122

March 10, 2026

Automatic browser login during init and dashboard redesign.

CLI

  • Automatic browser-based authentication flow during slickenv init, removing the need for a separate login step
  • Removed redundant token expiration check from the login command

Website

  • Redesigned dashboard statistics summary cards with new icons and detailed metrics
  • Improved dashboard component layouts, styling, and text truncation
  • Fixed login redirect race condition when authenticating from CLI callback

v1.0.121

March 6, 2026

CLI polish and website authentication improvements.

CLI

  • Enhanced output formatting with colored status indicators and clearer error messages
  • Improved push, status, and versions command output
  • Better .env file parser with support for annotations and export keyword prefix
  • Redundant push prevention, comparing local and remote before pushing

Website

  • CLI callback redirection for signup and login pages
  • Dynamic header navigation based on authentication status

v1.0.1

February 2026

Major dashboard overhaul, team management, and SEO foundations.

CLI

  • Member management commands: members list, members invite, members remove
  • Comprehensive README with branding and command documentation

Website

  • Full dashboard redesign with project listing, environment management, and sharing UI
  • Upgrade banners, plan usage tracking, and member invitation flows
  • Variables table with detail sheet and share dialog
  • Sidebar navigation for dashboard
  • Initial SEO and PWA setup: sitemap, robots.txt, favicons, web manifest
  • Migrated to SlickSpender domain across all references

v1.0.0

January 2026

The first public release of SlickEnv. Everything you need to manage environment variables across teams, projects, and environments.

CLI

  • 11 core commands: init, push, pull, status, versions, diff, rollback, share, export, login, logout
  • AES-256-GCM client-side encryption. Server never sees plaintext
  • Full version history with immutable snapshots
  • Conflict detection and interactive resolution
  • Metadata annotations: @description, @required, @sensitive, @format, @default, @example
  • One-time share links with configurable expiration
  • Export to .env, JSON, and YAML formats
  • Secure credential storage in system keychain with file fallback
  • CLI output masking for sensitive values

Website

  • Landing page with animated terminal demo and feature overview
  • Full documentation site: getting started, CLI reference, security, sync, metadata
  • Clerk OAuth integration (GitHub and Google sign-in)
  • Responsive mobile navigation
  • Features, pricing, how-it-works, security, blog, and about pages
  • Legal pages: privacy policy and terms of service

Backend

  • Convex serverless backend with 5 core tables
  • OAuth 2.0 authentication with JWT token validation
  • Role-based access control per project and environment
  • Full audit trail for every action
  • TLS 1.3 encryption in transit for all API calls
  • macOS, Linux, and Windows (WSL) support

Upcoming

Here is what we are working on next:

  • CI/CD integrations (GitHub Actions, GitLab CI, CircleCI)
  • VS Code extension for inline .env management
  • Webhook notifications for environment changes
  • Environment comparison across projects
  • SSO / SAML support for enterprise teams
  • Self-hosted deployment option

Have a feature request? Email us at hello@slickspender.com.

Ready to get started?