Update .env.example

[Kitenite]

Description

Related Issues

Type of Change

• Bug fix
• New feature
• Documentation
• Refactor
• Other (please describe):

Testing

Screenshots (if applicable)

Additional Notes

Summary by CodeRabbit

• Chores
  • Updated environment configuration structure with improved organization and standardized sections.
  • Revised API endpoint and documentation URL variable names and mappings for better clarity.
  • Reset placeholder credentials and tokens to empty values for cleaner local development setup.

_{✏️ Tip: You can customize this high-level summary in your review settings.}

[coderabbitai]

Walkthrough

The .env.example file has been restructured with reorganized environment variables, sanitized credentials, and reordered sections. New public API and documentation URL variables were added, while existing web URL variables were replaced or removed, with placeholder values converted to empty defaults for sensitive keys.

Changes

Cohort / File(s)	Summary
Environment Configuration \.env\.example	Restructured environment variables with comment-driven sectioning; added NEXT_PUBLIC_API_URL and NEXT_PUBLIC_DOCS_URL; replaced NEXT_PUBLIC_WEB_URL, NEXT_PUBLIC_ADMIN_URL, and NEXT_PUBLIC_MARKETING_URL; sanitized credentials and placeholder values to blanks; consolidated local dev configuration for Neon, database, and cross-app URLs

Estimated code review effort

🎯 2 (Simple) | ⏱️ ~12 minutes

• Verify all renamed and newly added variables are correctly referenced throughout the codebase
• Confirm that sanitized/emptied credential keys don't break existing local development workflows
• Check that the reordered sections maintain logical grouping and clarity for developers

Possibly related PRs

• docs: update .env.example with all required variables #347: Modifies the same .env.example file with overlapping environment variables including Neon, Clerk, and NEXT_PUBLIC_* app URLs.

Poem

🐰 Variables shuffled, clean and neat,
Old configs meet their new heartbeat,
URLs reorganized with care,
Secrets hidden everywhere,
The warren's env now fits just right!

Pre-merge checks and finishing touches

❌ Failed checks (1 warning, 1 inconclusive)

Check name	Status	Explanation	Resolution
Description check	⚠️ Warning	The pull request description is essentially blank, containing only the template structure with all sections empty or unchecked, providing no actual context about the changes.	Complete the description by filling in what changed, why, any related issues, the type of change, and testing performed. At minimum, describe the restructuring and credential sanitization done to the environment file.
Title check	❓ Inconclusive	The title 'Update .env.example' is vague and generic, using non-descriptive terms that don't convey the specific nature of the changes made to the configuration file.	Consider a more descriptive title that highlights the key changes, such as 'Reorganize .env.example with API URLs and sanitized credentials' or 'Restructure .env.example with standardized sections and local defaults'.

✅ Passed checks (1 passed)

Check name	Status	Explanation
Docstring Coverage	✅ Passed	No functions found in the changed files to evaluate docstring coverage. Skipping docstring coverage check.

✨ Finishing touches

🧪 Generate unit tests (beta)

• Create PR with unit tests
• Post copyable unit tests in a comment
• Commit unit tests in branch zygotic-vicuna-2392b3

---

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

• X
• Mastodon
• Reddit
• LinkedIn

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[coderabbitai]

Actionable comments posted: 1

🧹 Nitpick comments (6)

.env.example (6)

8-14: Neon credential keys look fine; optional ordering tweak for linter

Names are clear and values are correctly left blank in this example. Dotenv‑linter prefers alphabetical ordering and currently flags NEON_API_KEY coming after NEON_ORG_ID. If lint is enforced in CI, consider reordering to NEON_API_KEY, NEON_ORG_ID, NEON_PROJECT_ID.

---

15-20: Database URL section is clear; consider documenting expected format

DATABASE_URL and DATABASE_URL_UNPOOLED are well named and blank, which is good for an example file. Optionally, you could add a short comment with an example DSN format (e.g., Postgres URI) to make onboarding a bit smoother for new devs.

---

21-28: Cross‑app URLs: ports/hosts look consistent; key ordering may trip dotenv‑linter

The localhost URLs and port mapping across API/web/admin/marketing/docs look coherent for local dev. Dotenv‑linter, however, is warning about key order here; it wants these roughly alphabetized (e.g., NEXT_PUBLIC_ADMIN_URL, NEXT_PUBLIC_API_URL, NEXT_PUBLIC_DOCS_URL, NEXT_PUBLIC_MARKETING_URL, NEXT_PUBLIC_WEB_URL). If .env linting is part of CI, a simple reordering will silence those warnings.

---

30-37: Clerk envs: good separation of public vs secret; consider order and cookie-domain guidance

The split between NEXT_PUBLIC_CLERK_PUBLISHABLE_KEY and the secret keys is correct, and values are blank. Dotenv‑linter wants the private keys before the public one for alphabetical ordering; reordering them (CLERK_SECRET_KEY, CLERK_WEBHOOK_SECRET, NEXT_PUBLIC_CLERK_PUBLISHABLE_KEY) would satisfy it. Also, NEXT_PUBLIC_COOKIE_DOMAIN=localhost is fine for local dev, but maybe add a brief comment noting that production should use the real cookie domain (e.g., .example.com) so people don’t accidentally copy localhost into prod.

---

38-42: Blob token placeholder is safe; may benefit from a brief format hint

Leaving BLOB_READ_WRITE_TOKEN empty is appropriate for an example. If the token has a specific expected format or is optional in some environments, a one‑line comment would make this clearer for contributors wiring things up the first time.

---

43-49: PostHog section mixes analytics and desktop auth; consider regrouping and key order

The PostHog keys are clearly labeled and blank, which is good. DESKTOP_AUTH_SECRET logically belongs to the desktop app/auth rather than analytics, so it might be clearer to move it under its own “Desktop App” section. That regrouping would also let you reorder keys to satisfy dotenv‑linter’s preference (it currently warns that DESKTOP_AUTH_SECRET should come before the PostHog keys).

📜 Review details

Configuration used: CodeRabbit UI

Review profile: CHILL

Plan: Pro

📥 Commits

Reviewing files that changed from the base of the PR and between 417c275 and 0465faa.

📒 Files selected for processing (1)

• .env.example (1 hunks)

🧰 Additional context used

🪛 dotenv-linter (4.0.0)

.env.example

[warning] 2-2: [ExtraBlankLine] Extra blank line detected

(ExtraBlankLine)

---

[warning] 13-13: [UnorderedKey] The NEON_API_KEY key should go before the NEON_ORG_ID key

(UnorderedKey)

---

[warning] 26-26: [UnorderedKey] The NEXT_PUBLIC_ADMIN_URL key should go before the NEXT_PUBLIC_API_URL key

(UnorderedKey)

---

[warning] 27-27: [UnorderedKey] The NEXT_PUBLIC_MARKETING_URL key should go before the NEXT_PUBLIC_WEB_URL key

(UnorderedKey)

---

[warning] 28-28: [UnorderedKey] The NEXT_PUBLIC_DOCS_URL key should go before the NEXT_PUBLIC_MARKETING_URL key

(UnorderedKey)

---

[warning] 34-34: [UnorderedKey] The CLERK_SECRET_KEY key should go before the NEXT_PUBLIC_CLERK_PUBLISHABLE_KEY key

(UnorderedKey)

---

[warning] 35-35: [UnorderedKey] The CLERK_WEBHOOK_SECRET key should go before the NEXT_PUBLIC_CLERK_PUBLISHABLE_KEY key

(UnorderedKey)

---

[warning] 49-49: [UnorderedKey] The DESKTOP_AUTH_SECRET key should go before the NEXT_PUBLIC_POSTHOG_KEY key

(UnorderedKey)

⏰ Context from checks skipped due to timeout of 90000ms. You can increase the timeout in your CodeRabbit configuration to a maximum of 15 minutes (900000ms). (6)

• GitHub Check: Deploy Marketing
• GitHub Check: Deploy Web
• GitHub Check: Deploy Docs
• GitHub Check: Deploy API
• GitHub Check: Deploy Admin
• GitHub Check: Build

[coderabbitai]

⚠️ Potential issue | 🟡 Minor

Header still mentions direnv, likely stale after moving to dotenv

Comment says “Shared by all worktrees via direnv”, but PR history indicates env loading was refactored to dotenv. Suggest updating this wording (or making it tool-agnostic) to avoid confusing new contributors. You may also want to drop the extra blank line at the very top to satisfy dotenv‑linter’s ExtraBlankLine warning.

🤖 Prompt for AI Agents

In .env.example around lines 3 to 7, the header still references "direnv" and
there is an extra blank line at the top; update the header text to remove or
make tool-agnostic (e.g., "Shared by all worktrees" or "Loaded by dotenv") and
remove the leading blank line so the file starts with the header immediately to
satisfy dotenv-linter's ExtraBlankLine rule.

[github-actions]

🚀 Preview Deployment

🔗 Preview Links

Service	Status	Link
Database (Neon)	✅	View Branch
API (Vercel)	✅	Open Preview
Web (Vercel)	✅	Open Preview
Marketing (Vercel)	✅	Open Preview
Admin (Vercel)	✅	Open Preview
Docs (Vercel)	✅	Open Preview

---

Preview updates automatically with new commits