OpenSkillIndex← back to search
claude-code

Harness-engineering node-environment-config

Node.js Environment Config

install
source · Clone the upstream repo
git clone https://github.com/Intense-Visions/harness-engineering
Claude Code · Install into ~/.claude/skills/
T=$(mktemp -d) && git clone --depth=1 https://github.com/Intense-Visions/harness-engineering "$T" && mkdir -p ~/.claude/skills && cp -r "$T/agents/skills/codex/node-environment-config" ~/.claude/skills/intense-visions-harness-engineering-node-environment-config-0018a3 && rm -rf "$T"
manifest: agents/skills/codex/node-environment-config/SKILL.md
source content

Node.js Environment Config

Manage environment configuration with process.env, dotenv, and validation for 12-factor apps

When to Use

  • Loading configuration from environment variables
  • Validating that all required environment variables are present at startup
  • Managing different configurations for development, staging, and production
  • Following 12-factor app principles for configuration

Instructions

  1. Load 
    .env
    files     with 
    dotenv
    (or Node.js 20.6+ built-in):
// Node.js 20.6+: use --env-file flag
// node --env-file=.env app.js

// Or with dotenv package
import 'dotenv/config';
  1. Validate with Zod at startup — fail fast on missing config:
import { z } from 'zod';

const EnvSchema = z.object({
  NODE_ENV: z.enum(['development', 'production', 'test']).default('development'),
  PORT: z.coerce.number().default(3000),
  DATABASE_URL: z.string().url(),
  REDIS_URL: z.string().url().optional(),
  API_KEY: z.string().min(1),
  LOG_LEVEL: z.enum(['debug', 'info', 'warn', 'error']).default('info'),
});

export const env = EnvSchema.parse(process.env);
// Throws at startup if any required variable is missing or invalid
  1. Type-safe access after validation:
// env.PORT is number, env.DATABASE_URL is string
// No more process.env.PORT! (which is always string | undefined)
const server = app.listen(env.PORT);
  1. Structure 
    .env
    files:
# .env — defaults for local development (committed)
NODE_ENV=development
PORT=3000
LOG_LEVEL=debug

# .env.local — local overrides and secrets (gitignored)
DATABASE_URL=postgresql://localhost:5432/myapp
API_KEY=dev-key-123
  1. Use 
    .env.example
     as documentation:
# .env.example — committed, shows all required variables
NODE_ENV=development
PORT=3000
DATABASE_URL=postgresql://user:pass@host:5432/db
API_KEY=your-api-key-here
  1. Environment-specific configs:
const config = {
  development: {
    logLevel: 'debug',
    corsOrigin: '*',
  },
  production: {
    logLevel: 'info',
    corsOrigin: 'https://myapp.com',
  },
  test: {
    logLevel: 'error',
    corsOrigin: '*',
  },
}[env.NODE_ENV];

  1. Never hardcode secrets. Use environment variables for:

    • Database connection strings
    • API keys and tokens
    • Encryption keys
    • Third-party service credentials

  2. Add to 

    .gitignore
    :

.env.local
.env.*.local
.env.production

Details

The 12-factor app methodology recommends storing configuration in environment variables. This separates config from code and enables different configurations per deployment without code changes.

process.env
limitations:

  • All values are 
    string | undefined
    — no numbers, booleans, or arrays
  • Missing variables are 
    undefined
    , not errors — code can run with missing config and fail later
  • No validation — typos in variable names are silent

Validation at startup with Zod solves all three problems. The application fails immediately with a clear error message if any required variable is missing.

Node.js 20.6+ 

--env-file
: Built-in 
.env
loading without the 
dotenv
package. Supports multiple files: 
node --env-file=.env --env-file=.env.local app.js
.

Trade-offs:

  • Env vars are simple and universal — but offer no structure (no nesting, no types)
  • Zod validation catches issues at startup — but adds a dependency
  • .env
    files are convenient for development — but should never be used in production (use the deployment platform's secrets management)
  • process.env
    is global — consider dependency injection for testability

Source

https://nodejs.org/api/process.html#processenv

Process

  1. Read the instructions and examples in this document.
  2. Apply the patterns to your implementation, adapting to your specific context.
  3. Verify your implementation against the details and edge cases listed above.

Harness Integration

  • Type: knowledge — this skill is a reference document, not a procedural workflow.
  • No tools or state — consumed as context by other skills and agents.

Success Criteria

  • The patterns described in this document are applied correctly in the implementation.
  • Edge cases and anti-patterns listed in this document are avoided.