Secrets
Use mise to manage sensitive environment variables securely. There are multiple supported approaches:
- fnox recommended — Full-featured secret manager with remote secret storage (e.g.: 1Password, AWS Secrets Manager) and remote encryption (e.g.: AWS KMS). This is a separate project by @jdx that works well alongside mise. There's no direct integration with mise and fnox, you set it up separately.
- sops experimental — Encrypt entire files and load them via
env._.file - Direct age encryption experimental — Encrypt individual env vars inline in
mise.toml