fatima

safe secrets from anywhere

Safe secrets from anywhere.

Fatima loads secrets from `.env`, cloud providers, or the local encrypted Vault, validates them, and generates SDKs your app can import safely.

install

curl -fsSL https://cdn.fatima.dev/install | bash
  • Generate SDKs for TypeScript, JavaScript, and Python.
  • Validate secrets before they reach runtime.
  • Use the local encrypted Vault when a cloud secret manager is too much.
fatima.json
{
  "generator": "typescript",
  "providers": {
    "development": [
      { "provider": "file", "file": ".env" }
    ]
  },
  "model": {
    "DATABASE_URL": "url"
  }
}
route.ts
import { env } from "./env";

export const GET = async (req, res) => {
  const client = await db(env.DATABASE_URL)

  return await db.getUser(req.userId)
};