Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

bug: start-database.sh creates non-ignored .env-e file with exposed AUTH_SECRET on macOS #2060

Open
maieutiquer opened this issue Feb 22, 2025 · 0 comments · May be fixed by #2061
Open

bug: start-database.sh creates non-ignored .env-e file with exposed AUTH_SECRET on macOS #2060

maieutiquer opened this issue Feb 22, 2025 · 0 comments · May be fixed by #2061
Labels
🐞❔ unconfirmed bug

Comments

@maieutiquer
Copy link

maieutiquer commented Feb 22, 2025
edited
Loading

Provide environment information

  System:
    OS: macOS 15.3.1
    CPU: (8) arm64 Apple M2
    Memory: 788.16 MB / 16.00 GB
    Shell: 5.9 - /bin/zsh
  Binaries:
    Node: 22.14.0 - ~/.local/state/fnm_multishells/3780_1740227054580/bin/node
    npm: 10.9.2 - ~/.local/state/fnm_multishells/3780_1740227054580/bin/npm

Describe the bug

Running ./start-database.sh generates an .env-e file, which is not gitignored and which contains AUTH_SECRET with the same value as the generated .env file

Reproduction repo

https://github.com/t3-oss/create-t3-app

To reproduce

  1. Run npm create t3-app@latest and selected Yes to everything, NextAuth.js, Prisma and PostgreSQL.
  2. cd into the new project
  3. run ./start-database.sh
Image

Additional information

Image Image

Potential solution

I tested that removing the -e from the sed command and replacing it with '' prevents this file from being created.
@maieutiquer maieutiquer changed the title bug: non-ignored .env-e file created with exposed AUTH_SECRET bug: start-database.sh creates non-ignored .env-e file with exposed AUTH_SECRET Feb 22, 2025
@maieutiquer maieutiquer changed the title bug: start-database.sh creates non-ignored .env-e file with exposed AUTH_SECRET bug: start-database.sh creates non-ignored .env-e file with exposed AUTH_SECRET on macOS Feb 22, 2025
maieutiquer added a commit to maieutiquer/create-t3-app that referenced this issue Feb 22, 2025
@maieutiquer
fix: prevent start-database.sh from creating .env-e, fixes t3-oss#2060
cd0f89d
@maieutiquer maieutiquer linked a pull request Feb 22, 2025 that will close this issue
Open
3 tasks
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
🐞❔ unconfirmed bug
Projects
None yet
Milestone
No milestone
Development

Successfully merging a pull request may close this issue.

fix: prevent start-database.sh from creating .env-e, fixes #2060 maieutiquer/create-t3-app
1 participant
@maieutiquer