Every AI coding agent — Claude Code, Cursor, Windsurf — reads your entire project directory, includingenv files. Your API keys and database passwords are sent to AI models as plaintext. Tene is an open-source CLI that encrypts secrets locally and injects them as environment variables at runtime. AI agents can use your secrets without ever seeing them.
Hi Product Hunt! I'm the maker of Tene.
I built Tene because I realized every AI coding assistant I use — Claude Code, Cursor, Windsurf —reads my entire project, including .env files. My API keys were being sent to AI models as plaintext.
That felt wrong.
Tene solves this with a simple idea: encrypt secrets locally, inject them at runtime. The AI agent gets the environment variables it needs, but never sees the actual values.
What makes Tene different from Vault, Doppler, or Infisical:
- No server required — everything runs locally
- No signup — just tene init and you're done
- AI-aware — auto-generates context files so AI editors know to use tene run instead of reading .env
- Free forever — MIT open source
I'd love your feedback — especially if you're using AI coding tools daily. What's your current approach to keeping secrets safe from AI agents?
How it works:
1. tene init — creates an encrypted vault and auto-configures AI editor rules
2. tene set STRIPE_KEY sk_test_xxx — stores secrets with XChaCha20-Poly1305 encryption
3. tene run -- claude — injects secrets as env vars, AI never sees values
Why Tene over .env?
- Secrets encrypted at rest with XChaCha20-Poly1305
- Master key stored in OS keychain (macOS Keychain, libsecret)
- Auto-generates context files for 5 AI editors (CLAUDE.md, .cursor/rules, etc.)
- Multi-environment support (dev, staging, prod)
- .env migration in one command: tene import .env
- 100% offline, no signup, no server, no telemetry
Free and open source. MIT licensed. Setup takes 90 seconds.
No comment highlights available yet. Please check back later!
About Tene on Product Hunt
“Your .env is not a secret. Tene hides it from AI agents.”
Tene was submitted on Product Hunt and earned 0 upvotes and 1 comments, placing #148 on the daily leaderboard. Every AI coding agent — Claude Code, Cursor, Windsurf — reads your entire project directory, includingenv files. Your API keys and database passwords are sent to AI models as plaintext. Tene is an open-source CLI that encrypts secrets locally and injects them as environment variables at runtime. AI agents can use your secrets without ever seeing them.
Tene was featured in Open Source (68.3k followers), Developer Tools (511k followers), Artificial Intelligence (466.2k followers) and GitHub (41.2k followers) on Product Hunt. Together, these topics include over 182.6k products, making this a competitive space to launch in.
Who hunted Tene?
Tene was hunted by Kim Kay. A “hunter” on Product Hunt is the community member who submits a product to the platform — uploading the images, the link, and tagging the makers behind it. Hunters typically write the first comment explaining why a product is worth attention, and their followers are notified the moment they post. Around 79% of featured launches on Product Hunt are self-hunted by their makers, but a well-known hunter still acts as a signal of quality to the rest of the community. See the full all-time top hunters leaderboard to discover who is shaping the Product Hunt ecosystem.
Want to see how Tene stacked up against nearby launches in real time? Check out the live launch dashboard for upvote speed charts, proximity comparisons, and more analytics.
Kim Kay