CLI
The DepVault CLI (depvault) is a .NET 10 Native AOT binary — a single self-contained executable with no runtime dependencies.
Installation
Quick Install
Linux / macOS:
curl -fsSL https://get.depvault.com | bashWindows (PowerShell):
irm https://get.depvault.com | iexThe installer detects your platform, downloads the latest release, and adds it to PATH. Installed to ~/.depvault/bin/ by default. Set DEPVAULT_INSTALL_DIR to customize.
Manual Download
Pre-built binaries on the GitHub Releases page:
| Platform | Archive |
|---|---|
| Linux x64 | depvault-linux-x64.tar.gz |
| macOS x64 | depvault-osx-x64.tar.gz |
| macOS ARM64 | depvault-osx-arm64.tar.gz |
| Windows x64 | depvault-win-x64.zip |
Build from Source
Requires .NET 10 SDK .
git clone https://github.com/suxrobGM/depvault.git
cd depvault/apps/cli
dotnet publish -c Release -r <rid>Replace <rid> with linux-x64, osx-x64, osx-arm64, or win-x64.
Configuration
The CLI stores configuration in ~/.depvault/:
config.json— Server URL, active project, default output format.credentials.json— JWT tokens from interactive login. Created bydepvault login, removed bydepvault logout. Never commit this file.
depvault config set server https://depvault.example.com
depvault config set output jsonAuthentication Modes
| Mode | How it works | Use case |
|---|---|---|
| Interactive | depvault login with email and password | Local development |
| CI Token | DEPVAULT_TOKEN environment variable | CI/CD pipelines |
When DEPVAULT_TOKEN is set, the CLI uses it for all requests and blocks interactive login. See Authentication for details.
Command Tree
| Command | Description | Details |
|---|---|---|
depvault scan | Scan repo: analyze deps, push env, detect secrets | Scanning |
depvault pull | Pull env vars and secret files to local folders | Pull & Push |
depvault pull env | Pull only environment variables | Pull & Push |
depvault pull secrets | Pull only secret files | Pull & Push |
depvault push env | Push env vars from local files | Pull & Push |
depvault push secrets | Upload secret files | Pull & Push |
depvault env list | List environment variables | Env |
depvault env diff | Compare environments | Env |
depvault secrets list | List secret file metadata | Secret Files |
depvault analyze | Analyze a dependency file | Analysis |
depvault ci pull | Fetch secrets with CI token | CI/CD |
depvault login | Authenticate with email/password | Auth |
depvault logout | Clear stored credentials | Auth |
depvault whoami | Show current user | Auth |
depvault project list | List all projects | Projects |
depvault project select | Set active project | Projects |
depvault project info | Show project details | Projects |
depvault update | Update CLI to latest version | |
depvault version | Print CLI version | |
depvault config set <k> <v> | Set a configuration value |