Skill

Node.js Environment Config

Manages Node.js environment configuration using process.env, dotenv, and Zod validation for 12-factor apps. Validates required variables at startup and enables type-safe access across dev, staging, and production.

Node

Typescript

backend

deployment

npx claudepluginhub intense-visions/harness-engineering --plugin harness-claude

Tool Access

This skill uses the workspace's default tool permissions.

Preview

> Manage environment configuration with process.env, dotenv, and validation for 12-factor apps

Supporting Assets

skill.yaml

SKILL.md

Similar Skills

Next.js Environment Configuration

Configures and validates Next.js environment variables securely with Zod and t3-env, enforces server-only boundaries, exposes safe client vars, and handles multi-environment setups.

1 file

harness-claude

env-manager

Analyzes environment variables in code, generates .env.example templates, validates configurations and types, documents variables with examples, and provides naming and security best practices.

devkit

env-management

Manages env vars with better-env: typed config schemas, Vercel sync from local files, prebuild validation. Useful for type-safe envs in Vercel deploys.

andrelandgraf-fullstackrecipes

Stats

Stars12

Forks6

Last CommitApr 9, 2026

Actions

View Source View Plugin View on GitHub View README

Help us improve

Share bugs, ideas, or general feedback.

Node.js Environment Config

Manage environment configuration with process.env, dotenv, and validation for 12-factor apps

When to Use

Loading configuration from environment variables
Validating that all required environment variables are present at startup
Managing different configurations for development, staging, and production
Following 12-factor app principles for configuration

Instructions

Load .env files with dotenv (or Node.js 20.6+ built-in):

// Node.js 20.6+: use --env-file flag
// node --env-file=.env app.js

// Or with dotenv package
import 'dotenv/config';

Validate with Zod at startup — fail fast on missing config:

import { z } from 'zod';

const EnvSchema = z.object({
  NODE_ENV: z.enum(['development', 'production', 'test']).default('development'),
  PORT: z.coerce.number().default(3000),
  DATABASE_URL: z.string().url(),
  REDIS_URL: z.string().url().optional(),
  API_KEY: z.string().min(1),
  LOG_LEVEL: z.enum(['debug', 'info', 'warn', 'error']).default('info'),
});

export const env = EnvSchema.parse(process.env);
// Throws at startup if any required variable is missing or invalid

Type-safe access after validation:

// env.PORT is number, env.DATABASE_URL is string
// No more process.env.PORT! (which is always string | undefined)
const server = app.listen(env.PORT);

Structure .env files:

# .env — defaults for local development (committed)
NODE_ENV=development
PORT=3000
LOG_LEVEL=debug

# .env.local — local overrides and secrets (gitignored)
DATABASE_URL=postgresql://localhost:5432/myapp
API_KEY=dev-key-123

Use .env.example as documentation:

# .env.example — committed, shows all required variables
NODE_ENV=development
PORT=3000
DATABASE_URL=postgresql://user:pass@host:5432/db
API_KEY=your-api-key-here

Environment-specific configs:

const config = {
  development: {
    logLevel: 'debug',
    corsOrigin: '*',
  },
  production: {
    logLevel: 'info',
    corsOrigin: 'https://myapp.com',
  },
  test: {
    logLevel: 'error',
    corsOrigin: '*',
  },
}[env.NODE_ENV];

Never hardcode secrets. Use environment variables for:
- Database connection strings
- API keys and tokens
- Encryption keys
- Third-party service credentials
Add to .gitignore:

.env.local
.env.*.local
.env.production

Details

The 12-factor app methodology recommends storing configuration in environment variables. This separates config from code and enables different configurations per deployment without code changes.

process.env limitations:

All values are string | undefined — no numbers, booleans, or arrays
Missing variables are undefined, not errors — code can run with missing config and fail later
No validation — typos in variable names are silent

Validation at startup with Zod solves all three problems. The application fails immediately with a clear error message if any required variable is missing.

Node.js 20.6+ --env-file: Built-in .env loading without the dotenv package. Supports multiple files: node --env-file=.env --env-file=.env.local app.js.

Trade-offs:

Env vars are simple and universal — but offer no structure (no nesting, no types)
Zod validation catches issues at startup — but adds a dependency
.env files are convenient for development — but should never be used in production (use the deployment platform's secrets management)
process.env is global — consider dependency injection for testability

Source

https://nodejs.org/api/process.html#processenv

Process

Read the instructions and examples in this document.
Apply the patterns to your implementation, adapting to your specific context.
Verify your implementation against the details and edge cases listed above.

Harness Integration

Type: knowledge — this skill is a reference document, not a procedural workflow.
No tools or state — consumed as context by other skills and agents.

Success Criteria

The patterns described in this document are applied correctly in the implementation.
Edge cases and anti-patterns listed in this document are avoided.