Script/env.example at main · dhruvin-sarkar/Script · GitHub

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
# ── Database (Neon PostgreSQL) ──────────────────────────────────
DATABASE_URL=          # Neon pooled connection string — for runtime queries
DIRECT_URL=            # Neon direct connection string — for prisma migrate only

# ── Auth (Clerk) ───────────────────────────────────────────────
NEXT_PUBLIC_CLERK_PUBLISHABLE_KEY=  # Clerk publishable key (safe for client)
CLERK_SECRET_KEY=                    # Clerk secret key (server-side only)
CLERK_WEBHOOK_SECRET=                # Webhook signing secret from Clerk Dashboard

# ── Cache (Upstash Redis) ──────────────────────────────────────
UPSTASH_REDIS_REST_URL=    # Upstash Redis REST URL
UPSTASH_REDIS_REST_TOKEN=  # Upstash Redis REST token

# ── Storage (Cloudflare R2) ────────────────────────────────────
R2_ACCOUNT_ID=         # Cloudflare account ID
R2_ACCESS_KEY_ID=      # R2 API access key ID
R2_SECRET_ACCESS_KEY=  # R2 API secret access key
R2_BUCKET_NAME=        # R2 bucket name (e.g. "script-production")
R2_PUBLIC_URL=         # CDN-backed public URL for R2 bucket

# ── Search (Meilisearch) ──────────────────────────────────────
MEILISEARCH_URL=                        # Meilisearch instance URL
MEILISEARCH_API_KEY=                    # Admin/master key — server-side only
NEXT_PUBLIC_MEILISEARCH_SEARCH_KEY=     # Search-only key — safe to expose to client

# ── WakaTime ──────────────────────────────────────────────────
WAKATIME_CLIENT_ID=        # WakaTime OAuth app client ID
WAKATIME_CLIENT_SECRET=    # WakaTime OAuth app client secret

# ── GitHub ────────────────────────────────────────────────────
GITHUB_CLIENT_ID=          # GitHub OAuth app client ID
GITHUB_CLIENT_SECRET=      # GitHub OAuth app client secret

# ── Email (Resend) ────────────────────────────────────────────
RESEND_API_KEY=    # Resend API key for transactional emails
EMAIL_FROM=        # Sender address, e.g. "Script <noreply@script.dev>"

# ── Security ──────────────────────────────────────────────────
# 32-byte hex string for AES-256-GCM encryption of WakaTime/GitHub tokens
# Generate with: node -e "console.log(require('crypto').randomBytes(32).toString('hex'))"
ENCRYPTION_KEY=

# ── App ───────────────────────────────────────────────────────
NEXT_PUBLIC_APP_URL=   # e.g. https://script.dev or http://localhost:3000