{{ result.summaryTitle }}
{{ result.primary }}
{{ result.summaryLine }}
{{ badge.label }}
Paste KEY=value rows or drop one .env/.txt file; output refreshes locally.
Drop ENV or TXT onto the textarea.
{{ sourceStatus }}
Choose the parser family that will read this file.
Upper snake keeps generated keys portable across common dotenv parsers.
Auto protects spaces, comments, quotes, and multiline values without over-quoting simple values.
Literal protects dollar signs in auto mode; interpolation leaves references readable for Compose-style substitution.
Turn off for the smallest possible file.
{{ include_comments ? 'Included' : 'Omitted' }}
Last declaration wins matches common dotenv override behavior.
Keep off when source order carries section meaning.
{{ sort_keys ? 'On' : 'Off' }}
Leave blank to emit the keys exactly after the selected key style.
Empty assignment keeps KEY=; commented placeholder leaves a safer prompt for required values.
Safe placeholders keeps non-secret defaults and blanks secret-like values.
Keep on before screenshots or shared CSV previews.
{{ mask_secret_previews ? 'On' : 'Off' }} 
{{ result.envText }}
{{ result.exampleText }}
Key Value preview Quote Source Comment Copy
{{ row.key }} {{ row.preview }} {{ row.quote }} {{ row.source }} {{ row.comment }}
Severity Check Finding Action Copy
{{ row.severity }} {{ row.check }} {{ row.finding }} {{ row.action }}
Tags: Devtools, Sysadmin
Export to PDF Fullscreen
Customize
Advanced
:

Dotenv files turn deployment configuration into plain name-value rows that an application, container tool, or shell helper can read at startup. They are often used for database URLs, cache endpoints, feature flags, service origins, and credentials that change between development, staging, and production. A good file is easy to scan, but small syntax choices can change how a loader reads the same value.

The most common mistakes are not dramatic. A key starts with a digit, a value contains a space but is left unquoted, a # becomes a comment, a duplicate key hides an earlier value, or a password with $TOKEN expands in a parser that treats dollar references specially. Those details matter because dotenv formats are widely used but not governed by one universal standard.

Source rows KEY=value comments export or CSV Generation rules normalize keys choose quotes handle dollars resolve duplicates Review outputs .env and .env.example variable ledger warnings and JSON
A useful dotenv draft keeps parsing, quoting, example placeholders, and review warnings visible before the real values are copied.

A generator is most useful when configuration starts as pasted rows, a small text file, or a spreadsheet-like list and needs to become a cleaner dotenv artifact. It can reduce copy mistakes and make risky rows easier to review, but it does not prove that the final application, container, or shell session will load the file exactly as intended. The real loader still deserves a final check.

Technical Details:

Dotenv parsing is a family of related conventions rather than one single specification. The safest shared shape is a variable name, an equals sign, and a text value. Names commonly use letters, digits, and underscores, with the first character limited to a letter or underscore. Values remain strings even when they look like numbers, booleans, JSON, URLs, or connection strings.

Quoting decides whether spaces, comments, quotes, escapes, and dollar references survive as literal value text. Unquoted values are compact but fragile when a value includes whitespace, #, quotes, backslashes, or newlines. Double quotes can preserve more characters with escaping. Single quotes are often the safer way to keep dollar-style references literal in parsers that would otherwise expand $VAR or ${VAR}.

Rule Core

The generator reads assignment rows, optional export prefixes, colon-delimited rows, and simple comma or pipe-delimited rows. Full-line comments can become notes for the next variable, and inline comments after a space and # can become variable comments when comments are included in the generated output.

Rule Behavior Why it matters
Key style Keys can be normalized to UPPER_SNAKE or preserved when they already match the valid name rule. Portable names avoid loader surprises and make review diffs easier to read.
Compatibility profile Profiles are available for Node.js dotenv, Docker Compose, Python dotenv, and shell-compatible export output. Quote and dollar guidance changes because parser families do not treat every value the same way.
Quote policy Auto safe quotes only values that need protection; fixed modes force double quotes, single quotes, or no quotes. Under-quoting can turn value text into comments, escapes, or separate tokens.
Duplicate policy Duplicate normalized keys can keep the first declaration, keep the last declaration, or keep duplicates. Different loaders and humans may disagree about which duplicate value wins.
Example template The example output can blank every value, preserve non-secret values, or keep safe placeholders for secret-like names. The committed template should document required keys without exposing production values.
Review checks Rows can report errors, warnings, info messages, or a pass state for syntax and review posture. The output is easier to trust when risky rows are visible before copying.

Transformation Core

A typical row moves through a short deterministic path: parse the source key and value, normalize the key when requested, choose the winning declaration when duplicates exist, select a quote style, then emit the final assignment line. Empty values can stay as KEY= or become commented placeholders in the real output. The example output uses the selected placeholder strategy instead of blindly copying every value.

source row:
DATABASE_URL=postgres://app:change-me@db:5432/app # primary database

generated assignment:
DATABASE_URL=postgres://app:change-me@db:5432/app

example placeholder:
DATABASE_URL=postgres://user:password@host:5432/database

Secret detection is heuristic. Names containing tokens such as SECRET, TOKEN, PASSWORD, API_KEY, or CREDENTIAL are treated as secret-like, and long high-entropy mixed strings can also be flagged. Masked previews affect review tables only; generated files keep the actual values chosen from the source rows.

Everyday Use & Decision Guide:

Start with Variable rows in the form you already have. Plain KEY=value rows are the clearest input, but a small text file, colon-separated row, comma row, pipe row, or line that begins with export can also be parsed. Use Normalize keys when copied labels such as api-url or database url should become portable names like API_URL and DATABASE_URL.

Choose Compatibility profile before judging warnings. Use Node.js dotenv for a Node loader, Docker Compose when the file feeds Compose interpolation, Python dotenv for Python loaders, and shell-compatible export when the output should include export KEY=value. Then leave Quote policy on Auto safe unless your target loader or team convention requires one fixed style.

  • Keep Dollar handling on literal when passwords, DSNs, or tokens contain $ text that should not expand.
  • Use Last declaration wins when matching common dotenv override behavior, but read duplicate warnings before copying.
  • Turn on Sort keys for stable review diffs. Keep it off when row order carries section meaning.
  • Use Key prefix only when every emitted name should gain the same uppercase prefix.
  • Keep Mask secret previews on before sharing ledger screenshots or CSV review rows.

The real .env File output may contain secrets because it keeps the selected values. The .env.example output is the safer handoff for repositories, onboarding notes, and release tickets because it can replace secret-like values with placeholders while keeping useful non-secret defaults. Review the Variable Ledger before copying either file so source lines, normalized names, quote choices, and comments match the configuration you meant to ship.

Do not treat a clean review as proof that the target runtime will accept the file. It means the parser accepted the supplied rows and no active warnings or errors were found under the selected settings. Run the final file through the actual loader, Compose command, Python dotenv call, or shell session before relying on it in a deployment path.

Step-by-Step Guide:

  1. Paste rows into Variable rows, click Browse file, drop a supported file onto the textarea, or use Load sample to inspect the expected shape.
  2. Set Compatibility profile to the loader family that will read the file. Confirm the summary badge shows the intended profile.
  3. Choose Key style. Use Normalize to UPPER_SNAKE for messy source labels or Preserve valid source keys when casing is already intentional.
  4. Leave Quote policy at Auto safe for the first pass, then adjust Dollar handling when dollar references should expand or remain literal.
  5. Open Advanced for duplicate policy, sorting, prefixes, blank-value behavior, example-template style, and secret preview masking.
  6. Read the blocker alert and Review Checklist. Fix red errors before copying, and clear warnings for duplicate keys, quote safety, secret posture, or literal-dollar behavior when they matter to the target runtime.
  7. Open Variable Ledger to confirm each emitted key, value preview, quote type, source line, and comment.
  8. Copy or download .env File, .env.example, CSV review rows, DOCX review tables when available, or JSON only after the warnings match your intended handoff.

Interpreting Results:

The summary number reports how many valid variables can be emitted. A higher count is not automatically better. It may include duplicate declarations if Keep duplicates is selected, or it may drop earlier duplicates when first-wins or last-wins behavior is selected.

The most important review rows are errors and warnings. A Variable name error means a source row could not produce a valid dotenv key. A Quote safety warning means an unquoted value contains characters that may be read incorrectly. A Secret posture warning means the name or value looks sensitive and should be kept out of casual handoffs.

Result tab Best use Limit
.env File Copying the real assignment lines for the selected parser profile. It may contain the actual values from the source rows.
.env.example Preparing a template with placeholders or preserved non-secret defaults. It is a template, not proof that the real deployment values exist.
Variable Ledger Reviewing key normalization, quote choice, source line, and masked previews. Masked previews do not change the generated real file.
Review Checklist Finding errors, warnings, duplicate handling notes, blank values, and secret posture. A pass only covers the supplied text and selected settings.
JSON Saving a structured snapshot of settings, generated text, variables, and review rows. It can include raw values, so treat it like the real output.

When the result looks unexpectedly clean, check the source row count, duplicate policy, and ledger source lines. A missing row, a normalized duplicate, or a commented placeholder can make the final file look tidy while still carrying the wrong deployment setting.

Worked Examples:

Application runtime draft

A team pastes APP_ENV=production, APP_URL=https://app.example.com, DATABASE_URL=postgres://app:change-me@db:5432/app # primary database, and API_TOKEN=replace-with-secret. With Node.js dotenv, Auto safe, and comments included, the .env File includes a generated header and the database comment above the assignment. Review Checklist flags the token as secret-like, so the team uses .env.example for the repository and keeps the real file in its deployment secret path.

Dollar reference that should not expand

A password value contains $SERVICE. Under Docker Compose with Dollar handling set to literal, the generator tries to protect the value with a quote style that keeps the dollar text from becoming interpolation. If Allow variable interpolation is selected instead, Review Checklist reports an interpolation note so the user can confirm that runtime expansion is intentional.

Duplicate key after cleanup

Rows named api-url and API_URL can both normalize to API_URL. With Last declaration wins, the emitted .env File keeps the later value and Review Checklist reports the duplicate. If the earlier value was the correct one, switching Duplicate keys to first-wins changes the emitted assignment while keeping the warning visible.

Blank value for a required setting

A row such as SENTRY_DSN= is accepted as an empty value. With Blank values set to empty assignment, the output keeps SENTRY_DSN= and the review table adds a blank-value note. With commented placeholders, the real output comments the empty assignment so the missing value is harder to ship by accident.

FAQ:

Which row formats can I paste?

Plain KEY=value rows work best. The parser also handles optional export prefixes, colon assignment, simple comma or pipe rows, blank lines, full-line comments, and inline comments after a space and #.

Does the example output remove all secrets?

It replaces secret-like values when the selected example style calls for placeholders, but detection is heuristic. Review the .env.example output before committing or sharing it.

Why did my key name change?

Normalize to UPPER_SNAKE rewrites labels into portable dotenv names and can add an optional prefix. Use Preserve valid source keys when the original casing already follows the valid key rule and should remain unchanged.

Why did a dollar sign trigger a warning?

Dollar-style text such as $VAR or ${VAR} can be interpolation in some parser profiles. Choose literal handling when the dollar text belongs to a password, DSN, or token value.

Is generation local to the browser page?

Yes. The parsing and generation logic runs in the browser after the page loads. The values can still appear in the textarea, page state, URL parameters, copied text, downloads, CSV, DOCX, JSON, or screenshots, so treat generated real files as sensitive when they contain secrets.

Glossary:

Dotenv file
A plain text file containing environment variable assignments such as APP_ENV=production.
Compatibility profile
The selected parser family used to guide quote and review behavior.
Interpolation
Expansion of dollar-style references such as $VAR or ${VAR} by a loader or shell-like parser.
Secret-like value
A value or key name that resembles a token, password, credential, API key, or high-entropy secret.
Variable ledger
The review table showing emitted keys, value previews, quote choices, source lines, comments, and copyable rows.

References: