Squirrel

Accidentally committed your API keys into your public repo? Worry not anymore!

Comment

Logo

Inspiration

We've seen tons of other hackers (including ourselves) accidentally commit important API keys or other credentials into their public repos. Furthermore, in a fast-paced environment like hackathons, sharing API keys is a hassle and often done over insecure channels such as Discord.

What it does

Squirrel is a CLI and web service that encrypts secret keys before the users commit and allows them to store and share them in the public repo itself.

How we built it

CLI - Python, Frontend - Next.js, React, and Tailwind CSS, Backend - Express and Drizzle ORM

Challenges we ran into

Learning to develop CLI applications with Python, especially with parsing and writing file contents. Utilizing Drizzle ORM.

Accomplishments that we're proud of

Good looking frontend. Setting up pre-commit hooks.

What we learned

Python (for two of our members), utilizing GitHub actions, Drizzle ORM.

What's next for Squirrel

Improve UX for performing key rotations.

Built With

drizzle
express.js
firebase
next
python
react
tailwind

Updates

Owen Wang started this project — Jan 19, 2025 02:57 PM EST

Leave feedback in the comments!

Log in or sign up for Devpost to join the conversation.