I personally use self hosted infisical instances for both work and personal projects and it has been the best tech I’ve integrated. The cli, sdk and api works all the way from dev env till kubernetes in production
nix-env installation is pretty much going agains everything that nix stands for by bringing back the imperativeness they aimed to get rid. it's discouraged even in the docs.
@@devopstoolbox that's what nix shells are for. Polluting your profile is non maintainable long term. You of course can do it but by doing it you forfit all the benefits that come with declarative approach. I just don't want you to make a video in few weeks that "nix is not solving anything" based on your misuse of it. Especially when I saw in your other videos that you know better and yet you still promote bad practices. Remember that you have a lot of influence and therefore should be held to higher standards. Cheers
@@snieguzary "misuse" :D It's not misuse if it's still an available option. Nix guys should remove it if it's misuse but they focus on creating an OS instead of improving as a package manager. Cheers :)
@@EmiNNsoNify maybe wording was not too great but my point is: nix guarantees X only if you follow A,B and C. While you can skip any of those it's not recommended. And I have seen too many times people ignoring e.g. A and claiming that they didn't get the X.
@@snieguzary maybe my wording wasn't the best. I know what nix offers, my point is you should get off your high horse. It doesn't matter which nix style he uses to install the tool. Using nix in the video is the biggest promo for nix and for people that are after "A and B and C must be done fox X" will find that for themselves. RTFM. Though to be honest Nix manual is not really friendly.
But it does. Or at it least from it's own config format. Better yet, it supports multiple environments you can easily switch between with. In my experience, it even handles the environment variable loading better then direnv (I used it in the past).
@@ristomatti now - yes, it does, but from .mise.toml, not .env file, which is quite sad for me, cause pushing .mise.toml for entire team, when everyone uses .env is a but awkward
Then devbox (nix behind the scenes, and has direnv integration when enabled) could be interesting to cover in a future video (I am using it myself in some projects).
mise does this as well and in my experience does it better. Not only that, it can replace pyenv, nvm, etc. among other things. The only thing that annoys me with it, is the fact I watch the repo for new releases of which it can have several in a single day!
you know i have seen people using direnv etc but we use Makefiles where we declare everything within it and we run them only on the context of the executable the makefile might call there's other ways but eg `ENV=prod ./binary` , i never really found the need for direnv yet
@@garciajero valid point 👌 Most people don’t use makefiles tho, not sure why, maybe because of how many JS devs out there loving env files and don’t share the love for makefiles 🤷♂️ BTW I recently started working with Just and Task (the Rust / Go alternatives to make) and they’re awesome if you don’t need them to run on random remote machine you don’t control
if you enjoy make you should check out just/justfile. just uses the recipe idiom of make, while adding features and removing things like phony. I’ve been using it for a while as a script runner that’s independent of any build tool and i think it’s really nice
Is your keyboard truly ergonomic? Thumb's seems to be bend and looks painful... wow, i never though direnv is so powerful, i pnly used it for loading nix dev shells
@@vaisakh_km the bend makes it actually more “natural” for the thumb. I can’t say I use the entire thumb cluster often, mainly the two closer keys but I do like it. If I’d redesign I’d bring it a tiny bit closer
He has a video on his terminal workflow and tools, iirc it is wezterm with a catpuccin variation and the same theme on tmux. Just look his name with with tmux config and you should find it.
@@GordeyStrokin I’ve been asked multiple times and I promise I’ll do it soon with a video covering it, because ATM it’s a pile of mess that won’t make sense to most
Dont save secrets in dot envelopes, instead encrypt? And where is that encryption key getting stored? Must be somewhere in the app or another file adding complexity for nothing. Just store stuff in dot envelopes without fear, if someone has access to that file encrypted or not you are in big trouble already coz if they can access that they can definitely access the decryption key. Just dont push it online and give necessary file permission that’s it, if u push it online simply change the secrets and u r good to go.
@@BarakaAndrew so it comes down to use case and process. Saying “just don’t push the key” is practical but GitHub is FILLED with leaked keys… I prefer secret stores within my CI system or a 3rd party. For small projects I’d either encrypt them or use the deployment platform to store them. Whatever I chose, I always try to avoid a situation where I have to remember to not push them or hide them in an ignore file. To me, this is calling for trouble
Looks good and I will probably use it, but not at work because corporations seem to go by the adage "if it works, don't use it"
Actually using it at work
Direnv is a game changer. I also love the eMacs package which integrates with it seamlessly.
I personally use self hosted infisical instances for both work and personal projects and it has been the best tech I’ve integrated. The cli, sdk and api works all the way from dev env till kubernetes in production
Same here. I like it more than Hashicorp Vault but have to use Vault at work so I just use Infisical for personal projects
i use it to set up utility scripts that i only need in certain environments, is a great tool.
nix-env installation is pretty much going agains everything that nix stands for by bringing back the imperativeness they aimed to get rid. it's discouraged even in the docs.
It's a nice-to-have at this point. I'll use it rarely when I test something or need a temp installation of a cli
@@devopstoolbox that's what nix shells are for. Polluting your profile is non maintainable long term. You of course can do it but by doing it you forfit all the benefits that come with declarative approach. I just don't want you to make a video in few weeks that "nix is not solving anything" based on your misuse of it. Especially when I saw in your other videos that you know better and yet you still promote bad practices. Remember that you have a lot of influence and therefore should be held to higher standards. Cheers
@@snieguzary "misuse" :D It's not misuse if it's still an available option. Nix guys should remove it if it's misuse but they focus on creating an OS instead of improving as a package manager. Cheers :)
@@EmiNNsoNify maybe wording was not too great but my point is: nix guarantees X only if you follow A,B and C. While you can skip any of those it's not recommended. And I have seen too many times people ignoring e.g. A and claiming that they didn't get the X.
@@snieguzary maybe my wording wasn't the best. I know what nix offers, my point is you should get off your high horse. It doesn't matter which nix style he uses to install the tool. Using nix in the video is the biggest promo for nix and for people that are after "A and B and C must be done fox X" will find that for themselves. RTFM. Though to be honest Nix manual is not really friendly.
Prefer mise for these purposes
Yeah, it still doesn’t load just .env on cd, but the other functions good enough
But it does. Or at it least from it's own config format. Better yet, it supports multiple environments you can easily switch between with. In my experience, it even handles the environment variable loading better then direnv (I used it in the past).
@@ristomatti now - yes, it does, but from .mise.toml, not .env file, which is quite sad for me, cause pushing .mise.toml for entire team, when everyone uses .env is a but awkward
@@Tony_Sol I have to agree on this. I've just copied stuff over and have the mise config files on global gitignore. :D
Then devbox (nix behind the scenes, and has direnv integration when enabled) could be interesting to cover in a future video (I am using it myself in some projects).
I'm totally on it!
the parts about adding adding things to your shell init are so painful to watch being a home-manager user.
How does dotenvx compare to something like sops?
I’m downloading now …
mise does this as well and in my experience does it better. Not only that, it can replace pyenv, nvm, etc. among other things. The only thing that annoys me with it, is the fact I watch the repo for new releases of which it can have several in a single day!
Good video, brw subscriber here! Which switches do you use in your keyboard?, they sound so nice!
@@jaimeHMol these are the Gateron Milky Yellow, they come pre lubed too!
you know i have seen people using direnv etc but we use Makefiles where we declare everything within it and we run them only on the context of the executable the makefile might call there's other ways but eg `ENV=prod ./binary` , i never really found the need for direnv yet
@@garciajero valid point 👌
Most people don’t use makefiles tho, not sure why, maybe because of how many JS devs out there loving env files and don’t share the love for makefiles 🤷♂️
BTW I recently started working with Just and Task (the Rust / Go alternatives to make) and they’re awesome if you don’t need them to run on random remote machine you don’t control
if you enjoy make you should check out just/justfile. just uses the recipe idiom of make, while adding features and removing things like phony. I’ve been using it for a while as a script runner that’s independent of any build tool and i think it’s really nice
it's time to change the stack
You can configure direnv to I load a .env file if a .envrc file doesn’t exist
@@TheBurntHoney 100%. But that would make a long title 😅
@@devopstoolbox fair enough
Awesome title!
@typecraft_dev got this as recommendation 😄
oh heyyy
@@typecraft_dev but where’s the thumbnail??
@@devopstoolbox but why are you also here
Is your keyboard truly ergonomic? Thumb's seems to be bend and looks painful...
wow, i never though direnv is so powerful, i pnly used it for loading nix dev shells
@@vaisakh_km the bend makes it actually more “natural” for the thumb. I can’t say I use the entire thumb cluster often, mainly the two closer keys but I do like it. If I’d redesign I’d bring it a tiny bit closer
I wonder which terminal he is using on video, it look good.
pimped tmux
He has a video on his terminal workflow and tools, iirc it is wezterm with a catpuccin variation and the same theme on tmux. Just look his name with with tmux config and you should find it.
@@MADhatter_AIM true!
@@bikramtuladhar Wezterm and tmux magic. Do note that while you can achieve the “glossy” transparent look, it’s part video editing tricks
what nvim config are you using?
@@dagoberttrump9290 it’s all here:
dotfiles.omerxx.com
And I made a video recently covering my setup from scratch
Heya! Which font do you use?
@@Slonegful Jetbrains Mono
I've been using direnv for so long now that I cannot believe so many people still don't know or use it.
Or just use nix-env
@@phb17 1:0 😅
can you share your zsa layouts link please?
@@GordeyStrokin I’ve been asked multiple times and I promise I’ll do it soon with a video covering it, because ATM it’s a pile of mess that won’t make sense to most
Dont save secrets in dot envelopes, instead encrypt? And where is that encryption key getting stored? Must be somewhere in the app or another file adding complexity for nothing. Just store stuff in dot envelopes without fear, if someone has access to that file encrypted or not you are in big trouble already coz if they can access that they can definitely access the decryption key. Just dont push it online and give necessary file permission that’s it, if u push it online simply change the secrets and u r good to go.
@@BarakaAndrew so it comes down to use case and process. Saying “just don’t push the key” is practical but GitHub is FILLED with leaked keys…
I prefer secret stores within my CI system or a 3rd party.
For small projects I’d either encrypt them or use the deployment platform to store them. Whatever I chose, I always try to avoid a situation where I have to remember to not push them or hide them in an ignore file. To me, this is calling for trouble
So how does .env.keys solve this? You still need to add it to .gitignore, same as you would with .env?@@devopstoolbox
Huh… so like how I’ve been using Zsh with Python virtualenv for nearly 10 years… 😗
Join 2000+ subscribers getting one dev/sec/ops tip every Friday: signup.omerxx.com
I didn't view the video yet but I assume it is about direnv. Let me see if I'm correct.
@@AqgvP07r-hq3vu 👏
You guys need to discover containers 😑 never added env to my personal user space. Use an isolated environment
I suppose you hard code the config 😅
Fella looks like a really tired Adam Thielen
@@CNSH-u9j 😂 had to google that!
Is this a good thing?
I did shoot this at 4:30AM so definitely tired 😅
@@devopstoolbox not good or bad just an observation! Get some sleep man!
@@CNSH-u9j 😆
I reached direnv after discarding devenv