Envoke

Per-command secret injection for development teams.

Secrets are fetched from your vault and injected into a subprocess. Nothing persists. Nothing leaks sideways.

$ ee -- make dev
$ ee -- psql -h $DB_HOST -U $DB_USER
$ ee -- aider --model claude-sonnet-4-6